diff -Nru sssd-1.15.0/config.h.in sssd-1.15.2/config.h.in --- sssd-1.15.0/config.h.in 2017-01-25 15:42:53.000000000 +0000 +++ sssd-1.15.2/config.h.in 2017-03-15 16:57:39.000000000 +0000 @@ -9,6 +9,9 @@ /* Define if building universal (internal helper macro) */ #undef AC_APPLE_UNIVERSAL_BUILD +/* whether to build unconditionally enable files domain */ +#undef ADD_FILES_DOMAIN + /* "The default enforcing level for AD GPO access-control" */ #undef AD_GPO_ACCESS_MODE_DEFAULT @@ -278,6 +281,9 @@ /* Build with libcrypt crypto back end */ #undef HAVE_LIBCRYPTO +/* Build with libcurl support */ +#undef HAVE_LIBCURL + /* Define if you have the libdl library or equivalent. */ #undef HAVE_LIBDL @@ -617,6 +623,9 @@ /* "The default user to run SSSD as" */ #undef SSSD_USER +/* __attribute__((fallthrough)) if supported */ +#undef SSS_ATTRIBUTE_FALLTHROUGH + /* Define to 1 if you want ldb version check. */ #undef SSS_LDB_VERSION_CHECK diff -Nru sssd-1.15.0/configure sssd-1.15.2/configure --- sssd-1.15.0/configure 2017-01-25 15:42:52.508140521 +0000 +++ sssd-1.15.2/configure 2017-03-15 16:57:38.259670779 +0000 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for sssd 1.15.0. +# Generated by GNU Autoconf 2.69 for sssd 1.15.2. # # Report bugs to . # @@ -590,8 +590,8 @@ # Identity of this package. PACKAGE_NAME='sssd' PACKAGE_TARNAME='sssd' -PACKAGE_VERSION='1.15.0' -PACKAGE_STRING='sssd 1.15.0' +PACKAGE_VERSION='1.15.2' +PACKAGE_STRING='sssd 1.15.2' PACKAGE_BUGREPORT='sssd-devel@lists.fedorahosted.org' PACKAGE_URL='' @@ -663,6 +663,8 @@ DOXYGEN CHECK_LIBS CHECK_CFLAGS +HAVE_INOTIFY_FALSE +HAVE_INOTIFY_TRUE INOTIFY_LIBS CRYPTO_LIBS CRYPTO_CFLAGS @@ -740,6 +742,10 @@ JANSSON_LIBS HTTP_PARSER_CFLAGS HTTP_PARSER_LIBS +BUILD_WITH_LIBCURL_FALSE +BUILD_WITH_LIBCURL_TRUE +CURL_LIBS +CURL_CFLAGS PYTEST HAVE_FAKEROOT HAVE_LIBRESOLV_FALSE @@ -879,6 +885,8 @@ pidpath pluginpath dbpath +ADD_FILES_DOMAIN_FALSE +ADD_FILES_DOMAIN_TRUE BUILD_DBUS_TESTS_FALSE BUILD_DBUS_TESTS_TRUE BUILD_MANPAGES_FALSE @@ -1064,6 +1072,7 @@ enable_all_experimental_features enable_dbus_tests enable_sss_default_nss_plugin +enable_files_domain with_db_path with_plugin_path with_pid_path @@ -1113,6 +1122,7 @@ enable_krb5_locator_plugin enable_pac_responder enable_cifs_idmap_plugin +enable_curl with_unicode_lib with_libnl with_nscd_conf @@ -1177,6 +1187,8 @@ SASL_LIBS NFSIDMAP_CFLAGS NFSIDMAP_LIBS +CURL_CFLAGS +CURL_LIBS HTTP_PARSER_CFLAGS HTTP_PARSER_LIBS JANSSON_CFLAGS @@ -1740,7 +1752,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures sssd 1.15.0 to adapt to many kinds of systems. +\`configure' configures sssd 1.15.2 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1810,7 +1822,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of sssd 1.15.0:";; + short | recursive ) echo "Configuration of sssd 1.15.2:";; esac cat <<\_ACEOF @@ -1844,6 +1856,9 @@ plugin. If this option is enabled the sss nss plugin will behave as it was not in nsswitch.conf when sssd is not running. [default=no] + --enable-files-domain If this feature is enabled, then SSSD always enables + a domain with id_provider=files even if the domain + is not specified in the config file [default=no] --enable-ldb-version-check compile with ldb runtime version check [default=no] --disable-krb5-locator-plugin @@ -1851,6 +1866,7 @@ --enable-pac-responder build pac responder --disable-cifs-idmap-plugin do not build CIFS idmap plugin + --disable-curl-support do not build with libcurl support --enable-systemtap Enable inclusion of systemtap trace support --enable-intgcheck-reqs enable checking for integration test requirements [default=no] @@ -2150,6 +2166,8 @@ C compiler flags for NFSIDMAP, overriding pkg-config NFSIDMAP_LIBS linker flags for NFSIDMAP, overriding pkg-config + CURL_CFLAGS C compiler flags for CURL, overriding pkg-config + CURL_LIBS linker flags for CURL, overriding pkg-config HTTP_PARSER_CFLAGS C compiler flags for HTTP_PARSER, overriding pkg-config HTTP_PARSER_LIBS @@ -2252,7 +2270,7 @@ test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -sssd configure 1.15.0 +sssd configure 1.15.2 generated by GNU Autoconf 2.69 Copyright (C) 2012 Free Software Foundation, Inc. @@ -2961,7 +2979,7 @@ This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by sssd $as_me 1.15.0, which was +It was created by sssd $as_me 1.15.2, which was generated by GNU Autoconf 2.69. Invocation command line was $ $0 $@ @@ -5200,7 +5218,7 @@ # Define the identity of the package. PACKAGE='sssd' - VERSION='1.15.0' + VERSION='1.15.2' cat >>confdefs.h <<_ACEOF @@ -16140,6 +16158,29 @@ +# Check whether --enable-files-domain was given. +if test "${enable_files_domain+set}" = set; then : + enableval=$enable_files_domain; enable_files_domain=$enableval +else + enable_files_domain=no +fi + +if test x$enable_files_domain = xyes; then : + +cat >>confdefs.h <<_ACEOF +#define ADD_FILES_DOMAIN 1 +_ACEOF + +fi + if test x$enable_files_domain = xyes; then + ADD_FILES_DOMAIN_TRUE= + ADD_FILES_DOMAIN_FALSE='#' +else + ADD_FILES_DOMAIN_TRUE='#' + ADD_FILES_DOMAIN_FALSE= +fi + + # Check whether --with-db-path was given. if test "${with_db_path+set}" = set; then : @@ -21623,6 +21664,152 @@ +# Check whether --enable-curl was given. +if test "${enable_curl+set}" = set; then : + enableval=$enable_curl; enable_libcurl=$enableval +else + enable_libcurl=yes +fi + + +found_libcurl="no" +if test x$enable_libcurl = xyes; then : + +pkg_failed=no +{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for CURL" >&5 +$as_echo_n "checking for CURL... " >&6; } + +if test -n "$PKG_CONFIG"; then + if test -n "$CURL_CFLAGS"; then + pkg_cv_CURL_CFLAGS="$CURL_CFLAGS" + else + if test -n "$PKG_CONFIG" && \ + { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libcurl\""; } >&5 + ($PKG_CONFIG --exists --print-errors "libcurl") 2>&5 + ac_status=$? + $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 + test $ac_status = 0; }; then + pkg_cv_CURL_CFLAGS=`$PKG_CONFIG --cflags "libcurl" 2>/dev/null` +else + pkg_failed=yes +fi + fi +else + pkg_failed=untried +fi +if test -n "$PKG_CONFIG"; then + if test -n "$CURL_LIBS"; then + pkg_cv_CURL_LIBS="$CURL_LIBS" + else + if test -n "$PKG_CONFIG" && \ + { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libcurl\""; } >&5 + ($PKG_CONFIG --exists --print-errors "libcurl") 2>&5 + ac_status=$? + $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 + test $ac_status = 0; }; then + pkg_cv_CURL_LIBS=`$PKG_CONFIG --libs "libcurl" 2>/dev/null` +else + pkg_failed=yes +fi + fi +else + pkg_failed=untried +fi + + + +if test $pkg_failed = yes; then + +if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then + _pkg_short_errors_supported=yes +else + _pkg_short_errors_supported=no +fi + if test $_pkg_short_errors_supported = yes; then + CURL_PKG_ERRORS=`$PKG_CONFIG --short-errors --errors-to-stdout --print-errors "libcurl"` + else + CURL_PKG_ERRORS=`$PKG_CONFIG --errors-to-stdout --print-errors "libcurl"` + fi + # Put the nasty error message in config.log where it belongs + echo "$CURL_PKG_ERRORS" >&5 + + { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 +$as_echo "no" >&6; } + { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: +The libcurl development library was not found. Some features will be disabled." >&5 +$as_echo "$as_me: WARNING: +The libcurl development library was not found. Some features will be disabled." >&2;} + +elif test $pkg_failed = untried; then + { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: +The libcurl development library was not found. Some features will be disabled." >&5 +$as_echo "$as_me: WARNING: +The libcurl development library was not found. Some features will be disabled." >&2;} + +else + CURL_CFLAGS=$pkg_cv_CURL_CFLAGS + CURL_LIBS=$pkg_cv_CURL_LIBS + { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 +$as_echo "yes" >&6; } + found_libcurl=yes +fi +fi + +if test x"$found_libcurl" = xyes; then : + CFLAGS="$CFLAGS $CURL_CFLAGS" + + { $as_echo "$as_me:${as_lineno-$LINENO}: checking For CURLOPT_UNIX_SOCKET_PATH support in libcurl" >&5 +$as_echo_n "checking For CURLOPT_UNIX_SOCKET_PATH support in libcurl... " >&6; } + cat confdefs.h - <<_ACEOF >conftest.$ac_ext +/* end confdefs.h. */ +#include + CURLoption opt = CURLOPT_UNIX_SOCKET_PATH; + +int +main () +{ + + ; + return 0; +} +_ACEOF +if ac_fn_c_try_compile "$LINENO"; then : + have_curlopt_unix_sockpath=yes + { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 +$as_echo "yes" >&6; } +else + have_curlopt_unix_sockpath=no + { $as_echo "$as_me:${as_lineno-$LINENO}: result: no +elif libcurl support will be disabled" >&5 +$as_echo "no; then : + libcurl support will be disabled" >&6; } +fi +rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext + + CFLAGS=$SAVE_CFLAGS + +fi + + + + + if test x"$have_curlopt_unix_sockpath" = xyes; then + BUILD_WITH_LIBCURL_TRUE= + BUILD_WITH_LIBCURL_FALSE='#' +else + BUILD_WITH_LIBCURL_TRUE='#' + BUILD_WITH_LIBCURL_FALSE= +fi + + +if test -z "$BUILD_WITH_LIBCURL_TRUE"; then : + +cat >>confdefs.h <<_ACEOF +#define HAVE_LIBCURL 1 +_ACEOF + +fi + if test x$with_secrets = xyes; then @@ -25877,6 +26064,15 @@ fi + if test x"$inotify_works" = xyes; then + HAVE_INOTIFY_TRUE= + HAVE_INOTIFY_FALSE='#' +else + HAVE_INOTIFY_TRUE='#' + HAVE_INOTIFY_FALSE= +fi + + { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether compiler supports __attribute__((destructor))" >&5 $as_echo_n "checking whether compiler supports __attribute__((destructor))... " >&6; } @@ -25965,6 +26161,43 @@ fi +SAFE_CFLAGS=$CFLAGS +CFLAGS="-Werror" +{ $as_echo "$as_me:${as_lineno-$LINENO}: checking whether compiler supports __attribute__((fallthrough))" >&5 +$as_echo_n "checking whether compiler supports __attribute__((fallthrough))... " >&6; } +if ${sss_cv_attribute_fallthrough+:} false; then : + $as_echo_n "(cached) " >&6 +else + cat confdefs.h - <<_ACEOF >conftest.$ac_ext +/* end confdefs.h. */ + __attribute__ ((fallthrough)); + +_ACEOF +if ac_fn_c_try_compile "$LINENO"; then : + + sss_cv_attribute_fallthrough=yes + sss_cv_attribute_fallthrough_val="__attribute__ ((fallthrough))" + +else + + sss_cv_attribute_fallthrough=no + sss_cv_attribute_fallthrough_val= + +fi +rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext + +fi +{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $sss_cv_attribute_fallthrough" >&5 +$as_echo "$sss_cv_attribute_fallthrough" >&6; } +CFLAGS=$SAFE_CFLAGS + + +cat >>confdefs.h <<_ACEOF +#define SSS_ATTRIBUTE_FALLTHROUGH $sss_cv_attribute_fallthrough_val +_ACEOF + + + pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for CHECK" >&5 @@ -26740,6 +26973,10 @@ as_fn_error $? "conditional \"BUILD_DBUS_TESTS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi +if test -z "${ADD_FILES_DOMAIN_TRUE}" && test -z "${ADD_FILES_DOMAIN_FALSE}"; then + as_fn_error $? "conditional \"ADD_FILES_DOMAIN\" was never defined. +Usually this means the macro was only invoked conditionally." "$LINENO" 5 +fi if test -z "${BUILD_PYTHON2_BINDINGS_TRUE}" && test -z "${BUILD_PYTHON2_BINDINGS_FALSE}"; then as_fn_error $? "conditional \"BUILD_PYTHON2_BINDINGS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 @@ -26828,6 +27065,10 @@ as_fn_error $? "conditional \"HAVE_LIBRESOLV\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi +if test -z "${BUILD_WITH_LIBCURL_TRUE}" && test -z "${BUILD_WITH_LIBCURL_FALSE}"; then + as_fn_error $? "conditional \"BUILD_WITH_LIBCURL\" was never defined. +Usually this means the macro was only invoked conditionally." "$LINENO" 5 +fi if test -z "${WITH_LIBUNISTRING_TRUE}" && test -z "${WITH_LIBUNISTRING_FALSE}"; then as_fn_error $? "conditional \"WITH_LIBUNISTRING\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 @@ -26860,6 +27101,10 @@ as_fn_error $? "conditional \"BUILD_PYTHON_BINDINGS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi +if test -z "${HAVE_INOTIFY_TRUE}" && test -z "${HAVE_INOTIFY_FALSE}"; then + as_fn_error $? "conditional \"HAVE_INOTIFY\" was never defined. +Usually this means the macro was only invoked conditionally." "$LINENO" 5 +fi if test -z "${HAVE_DOXYGEN_TRUE}" && test -z "${HAVE_DOXYGEN_FALSE}"; then as_fn_error $? "conditional \"HAVE_DOXYGEN\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 @@ -27293,7 +27538,7 @@ # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by sssd $as_me 1.15.0, which was +This file was extended by sssd $as_me 1.15.2, which was generated by GNU Autoconf 2.69. Invocation command line was CONFIG_FILES = $CONFIG_FILES @@ -27359,7 +27604,7 @@ cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`" ac_cs_version="\\ -sssd config.status 1.15.0 +sssd config.status 1.15.2 configured by $0, generated by GNU Autoconf 2.69, with options \\"\$ac_cs_config\\" diff -Nru sssd-1.15.0/configure.ac sssd-1.15.2/configure.ac --- sssd-1.15.0/configure.ac 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/configure.ac 2017-03-15 16:53:24.000000000 +0000 @@ -193,6 +193,7 @@ m4_include([src/external/intgcheck.m4]) m4_include([src/external/systemtap.m4]) m4_include([src/external/service.m4]) +m4_include([src/external/libcurl.m4]) if test x$with_secrets = xyes; then m4_include([src/external/libhttp_parser.m4]) @@ -418,6 +419,30 @@ [whether compiler supports __attribute__((warn_unused_result))]) fi +SAFE_CFLAGS=$CFLAGS +CFLAGS="-Werror" +AC_CACHE_CHECK( + [whether compiler supports __attribute__((fallthrough))], + [sss_cv_attribute_fallthrough], + [AC_COMPILE_IFELSE( + [AC_LANG_SOURCE( + [ __attribute__ ((fallthrough)); ]) + ],[ + sss_cv_attribute_fallthrough=yes + sss_cv_attribute_fallthrough_val="__attribute__ ((fallthrough))" + ],[ + sss_cv_attribute_fallthrough=no + sss_cv_attribute_fallthrough_val= + ]) + ]) +CFLAGS=$SAFE_CFLAGS + +AC_DEFINE_UNQUOTED( + [SSS_ATTRIBUTE_FALLTHROUGH], + [$sss_cv_attribute_fallthrough_val], + [__attribute__((fallthrough)) if supported]) + + PKG_CHECK_MODULES([CHECK], [check >= 0.9.5], [have_check=1], [have_check=]) if test x$have_check = x; then AC_MSG_WARN([Without the 'CHECK' libraries, you will be unable to run all tests in the 'make check' suite]) diff -Nru sssd-1.15.0/contrib/ci/deps.sh sssd-1.15.2/contrib/ci/deps.sh --- sssd-1.15.0/contrib/ci/deps.sh 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/contrib/ci/deps.sh 2017-03-15 16:53:24.000000000 +0000 @@ -46,6 +46,7 @@ rpm-build uid_wrapper python-requests + curl-devel ) _DEPS_LIST_SPEC=` sed -e 's/@PACKAGE_VERSION@/0/g' \ @@ -120,6 +121,7 @@ systemtap-sdt-dev libhttp-parser-dev libjansson-dev + libcurl4-openssl-dev ) DEPS_INTGCHECK_SATISFIED=true fi diff -Nru sssd-1.15.0/contrib/sssd.spec.in sssd-1.15.2/contrib/sssd.spec.in --- sssd-1.15.0/contrib/sssd.spec.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/contrib/sssd.spec.in 2017-03-15 16:53:24.000000000 +0000 @@ -118,7 +118,7 @@ Group: Applications/System Summary: System Security Services Daemon License: GPLv3+ -URL: http://fedorahosted.org/sssd/ +URL: https://pagure.io/SSSD/sssd/ Source0: %{name}-%{version}.tar.gz BuildRoot: %(mktemp -ud %{_tmppath}/%{name}-%{version}-%{release}-XXXXXX) @@ -828,6 +828,9 @@ %{_libexecdir}/%{servicename}/sssd_ssh %{_libexecdir}/%{servicename}/sssd_sudo %{_libexecdir}/%{servicename}/p11_child +%if (0%{?use_systemd} == 1) +%{_libexecdir}/%{servicename}/sssd_check_socket_activated_responders +%endif %dir %{_libdir}/%{name} %{_libdir}/%{name}/libsss_simple.so @@ -848,6 +851,10 @@ %{_sbindir}/sss_cache %{_libexecdir}/%{servicename}/sss_signal +# The files provider is intentionally packaged in -common +%{_libdir}/%{name}/libsss_files.so +%{_mandir}/man5/sssd-files.5* + %dir %{sssdstatedir} %dir %{_localstatedir}/cache/krb5rcache %attr(700,sssd,sssd) %dir %{dbpath} diff -Nru sssd-1.15.0/contrib/suse/sssd.spec.in sssd-1.15.2/contrib/suse/sssd.spec.in --- sssd-1.15.0/contrib/suse/sssd.spec.in 2017-04-06 10:29:20.000000000 +0000 +++ sssd-1.15.2/contrib/suse/sssd.spec.in 2017-04-06 10:29:21.000000000 +0000 @@ -8,7 +8,7 @@ Summary: System Security Services Daemon # The entire source code is GPLv3+ except replace/ which is LGPLv3+ License: GPLv3+ and LGPLv3+ -URL: http://fedorahosted.org/sssd/ +URL: https://pagure.io/SSSD/sssd/ Source0: %{name}-%{version}.tar.gz BuildRoot: %(mktemp -ud %{_tmppath}/%{name}-%{version}-%{release}-XXXXXX) diff -Nru sssd-1.15.0/debian/changelog sssd-1.15.2/debian/changelog --- sssd-1.15.0/debian/changelog 2017-04-06 10:29:20.000000000 +0000 +++ sssd-1.15.2/debian/changelog 2017-04-06 10:29:21.000000000 +0000 @@ -1,3 +1,21 @@ +sssd (1.15.2-1ubuntu1) zesty; urgency=medium + + * Merge from Debian. + - new bugfix release + + -- Timo Aaltonen Thu, 06 Apr 2017 12:45:49 +0300 + +sssd (1.15.2-1) unstable; urgency=medium + + * New upstream release. + * control: Demote adcli to sssd-ad suggests. + * rules, common.install: Fix sssd_krb5_locator_plugin install path. + (LP: #1664566) + * control, copyright, watch: Update upstream URLs. + * common.install: Add libsss_files and socket activation helper. + + -- Timo Aaltonen Mon, 20 Mar 2017 15:17:19 +0200 + sssd (1.15.0-3ubuntu4) zesty; urgency=medium * Rebuild against new samba/libldb. (LP: #1664785) diff -Nru sssd-1.15.0/debian/control sssd-1.15.2/debian/control --- sssd-1.15.0/debian/control 2017-04-06 10:29:20.000000000 +0000 +++ sssd-1.15.2/debian/control 2017-04-06 10:29:21.000000000 +0000 @@ -65,7 +65,7 @@ Standards-Version: 3.9.6 Vcs-Git: git://anonscm.debian.org/pkg-sssd/sssd.git Vcs-Browser: http://anonscm.debian.org/cgit/pkg-sssd/sssd.git -Homepage: https://fedorahosted.org/sssd/ +Homepage: https://pagure.io/SSSD/sssd/ Package: sssd Section: metapackages diff -Nru sssd-1.15.0/debian/copyright sssd-1.15.2/debian/copyright --- sssd-1.15.0/debian/copyright 2017-04-06 10:29:20.000000000 +0000 +++ sssd-1.15.2/debian/copyright 2017-04-06 10:29:21.000000000 +0000 @@ -1,7 +1,7 @@ This package was debianized by Mathias Gug on Wed, 05 Aug 2009 08:58:56 +0100. -It was downloaded from https://fedorahosted.org/sssd/ +It was downloaded from https://pagure.io/SSSD/sssd/ Upstream Authors: Dmitri Pal diff -Nru sssd-1.15.0/debian/patches/ipa-terminate-if-view-name-fails.diff sssd-1.15.2/debian/patches/ipa-terminate-if-view-name-fails.diff --- sssd-1.15.0/debian/patches/ipa-terminate-if-view-name-fails.diff 2017-04-06 10:29:20.000000000 +0000 +++ sssd-1.15.2/debian/patches/ipa-terminate-if-view-name-fails.diff 1970-01-01 00:00:00.000000000 +0000 @@ -1,37 +0,0 @@ -From 1e052649e15f5830ffbc6ba0dc4a78c49a3a95ba Mon Sep 17 00:00:00 2001 -From: Sumit Bose -Date: Tue, 19 Apr 2016 15:07:18 +0200 -Subject: [PATCH] IPA: terminate properly if view name lookup fails - -Since commit 5a5f1e1053415efaa99bb4d5bc7ce7ac0a95b757 the view name -lookup is the last step in the subdomain lookup request. In case of an -error the request should be finished and no previous step should be -called again. - -Resolves https://fedorahosted.org/sssd/ticket/2993 ---- - src/providers/ipa/ipa_subdomains.c | 8 +------- - 1 file changed, 1 insertion(+), 7 deletions(-) - -diff --git a/src/providers/ipa/ipa_subdomains.c b/src/providers/ipa/ipa_subdomains.c -index bcc6347fa0c53939bb60cff2e903e1db6e2bb6b6..bfe770be6f8c94478baecd1bb88cedc222586187 100644 ---- a/src/providers/ipa/ipa_subdomains.c -+++ b/src/providers/ipa/ipa_subdomains.c -@@ -840,13 +840,7 @@ static void ipa_get_view_name_done(struct tevent_req *req) - if (ret == EOPNOTSUPP || ret == EIO) { - DEBUG(SSSDBG_TRACE_FUNC, "get_view_name request failed, looks " \ - "like server does not support views.\n"); -- ret = ipa_check_master(ctx); -- if (ret == EAGAIN) { -- return; -- } else if (ret != EOK) { -- goto done; -- } -- -+ ret = EOK; - } else { - DEBUG(SSSDBG_OP_FAILURE, "get_view_name request failed.\n"); - } --- -2.1.0 - diff -Nru sssd-1.15.0/debian/rules sssd-1.15.2/debian/rules --- sssd-1.15.0/debian/rules 2017-04-06 10:29:20.000000000 +0000 +++ sssd-1.15.2/debian/rules 2017-04-06 10:29:21.000000000 +0000 @@ -28,7 +28,7 @@ --datadir=/usr/share/ \ --with-environment-file=/etc/default/sssd \ --with-ldb-lib-dir=/usr/lib/$(DEB_HOST_MULTIARCH)/ldb/modules/ldb \ - --with-krb5-plugin-path=/usr/lib/$(DEB_HOST_MULTIARCH)/krb5/plugins/krb5 \ + --with-krb5-plugin-path=/usr/lib/$(DEB_HOST_MULTIARCH)/krb5/plugins/libkrb5 \ --enable-nsslibdir=/lib/$(DEB_HOST_MULTIARCH) \ --enable-pammoddir=/lib/$(DEB_HOST_MULTIARCH)/security \ --disable-static \ diff -Nru sssd-1.15.0/debian/sssd-common.install sssd-1.15.2/debian/sssd-common.install --- sssd-1.15.0/debian/sssd-common.install 2017-04-06 10:29:20.000000000 +0000 +++ sssd-1.15.2/debian/sssd-common.install 2017-04-06 10:29:21.000000000 +0000 @@ -14,7 +14,7 @@ usr/bin/sss_ssh_knownhostsproxy usr/lib/*/cifs-utils/cifs_idmap_sss.so usr/lib/*/krb5/plugins/authdata/sssd_pac_plugin.so -usr/lib/*/krb5/plugins/krb5/sssd_krb5_locator_plugin.so +usr/lib/*/krb5/plugins/libkrb5/sssd_krb5_locator_plugin.so usr/lib/*/ldb/modules/ldb/memberof.so usr/lib/*/libnfsidmap/sss.so usr/lib/*/samba/idmap/sss.so @@ -22,6 +22,7 @@ usr/lib/*/sssd/libsss_child.so usr/lib/*/sssd/libsss_crypt.so usr/lib/*/sssd/libsss_debug.so +usr/lib/*/sssd/libsss_files.so usr/lib/*/sssd/libsss_krb5_common.so usr/lib/*/sssd/libsss_ldap_common.so usr/lib/*/sssd/libsss_semanage.so @@ -33,6 +34,7 @@ usr/lib/*/sssd/sss_signal usr/lib/*/sssd/sssd_autofs usr/lib/*/sssd/sssd_be +usr/lib/*/sssd/sssd_check_socket_activated_responders usr/lib/*/sssd/sssd_nss usr/lib/*/sssd/sssd_pam usr/lib/*/sssd/sssd_ssh @@ -42,6 +44,7 @@ usr/share/man/man1/sss_ssh_authorizedkeys.1* usr/share/man/man1/sss_ssh_knownhostsproxy.1* usr/share/man/man5/sss_rpcidmapd.5* +usr/share/man/man5/sssd-files.5* usr/share/man/man5/sssd-simple.5* usr/share/man/man5/sssd-sudo.5* usr/share/man/man5/sssd.conf.5* diff -Nru sssd-1.15.0/debian/watch sssd-1.15.2/debian/watch --- sssd-1.15.0/debian/watch 2017-04-06 10:29:20.000000000 +0000 +++ sssd-1.15.2/debian/watch 2017-04-06 10:29:21.000000000 +0000 @@ -1,4 +1,4 @@ -#git=git://git.fedorahosted.org/sssd.git +#git=git://pagure.io/SSSD/sssd.git version=3 opts="uversionmangle=s/alpha/~alpha/;s/beta/~beta/,pgpsigurlmangle=s/$/.asc/" \ -https://fedorahosted.org/released/sssd/sssd-(.*)\.tar\.gz +https://releases.pagure.org/SSSD/sssd/sssd-(.*)\.tar\.gz diff -Nru sssd-1.15.0/.git-commit-template sssd-1.15.2/.git-commit-template --- sssd-1.15.0/.git-commit-template 2017-04-06 10:29:20.000000000 +0000 +++ sssd-1.15.2/.git-commit-template 2017-04-06 10:29:21.000000000 +0000 @@ -3,7 +3,7 @@ Explanation Resolves: -https://fedorahosted.org/sssd/ticket/XXXX +https://pagure.io/SSSD/sssd/issue/XXXX # Try to keep the subject line within 52 chars ----| # Also please try to not exceed 72 characters of length for the body --| diff -Nru sssd-1.15.0/Makefile.am sssd-1.15.2/Makefile.am --- sssd-1.15.0/Makefile.am 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/Makefile.am 2017-03-15 16:53:24.000000000 +0000 @@ -190,6 +190,9 @@ if BUILD_PAC_RESPONDER sssdlibexec_PROGRAMS += sssd_pac endif +if HAVE_SYSTEMD_UNIT +sssdlibexec_PROGRAMS += sssd_check_socket_activated_responders +endif if HAVE_CHECK non_interactive_check_based_tests = \ @@ -274,6 +277,7 @@ test_ipa_dn \ simple-access-tests \ krb5_common_test \ + test_iobuf \ $(NULL) if HAVE_LIBRESOLV @@ -284,11 +288,16 @@ non_interactive_cmocka_based_tests += ifp_tests endif # BUILD_IFP +if HAVE_INOTIFY +non_interactive_cmocka_based_tests += test_inotify +endif # HAVE_INOTIFY + if BUILD_SAMBA non_interactive_cmocka_based_tests += \ ad_access_filter_tests \ ad_gpo_tests \ ad_common_tests \ + test_sdap_initgr \ test_ad_subdom \ test_ipa_subdom_server \ $(NULL) @@ -334,7 +343,8 @@ libsss_ldap.la \ libsss_krb5.la \ libsss_proxy.la \ - libsss_simple.la + libsss_simple.la \ + $(NULL) if BUILD_SAMBA sssdlib_LTLIBRARIES += \ @@ -342,6 +352,12 @@ libsss_ad.la endif +if HAVE_INOTIFY +sssdlib_LTLIBRARIES += \ + libsss_files.la \ + $(NULL) +endif # HAVE_INOTIFY + ldblib_LTLIBRARIES = \ memberof.la @@ -473,7 +489,6 @@ -DSSSDDATADIR=\"$(sssddatadir)\" \ -DSSSD_LIBEXEC_PATH=\"$(sssdlibexecdir)\" \ -DSSSD_CONF_DIR=\"$(sssdconfdir)\" \ - -DSSSD_DEFAULT_CONF_DIR=\"$(sssddefaultconfdir)\" \ -DSSS_NSS_MCACHE_DIR=\"$(mcpath)\" \ -DSSS_NSS_SOCKET_NAME=\"$(pipepath)/nss\" \ -DSSS_PAM_SOCKET_NAME=\"$(pipepath)/pam\" \ @@ -491,6 +506,7 @@ SSSD_CACHE_REQ_OBJ = \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -513,14 +529,23 @@ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ $(NULL) +SSSD_RESPONDER_IFACE_OBJ = \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ + $(NULL) + SSSD_RESPONDER_OBJ = \ src/responder/common/negcache_files.c \ src/responder/common/negcache.c \ src/responder/common/responder_cmd.c \ src/responder/common/responder_common.c \ src/responder/common/responder_dp.c \ + src/responder/common/responder_dp_ssh.c \ src/responder/common/responder_packet.c \ src/responder/common/responder_get_domains.c \ src/responder/common/responder_utils.c \ @@ -528,6 +553,7 @@ src/responder/common/data_provider/rdp_client.c \ src/monitor/monitor_iface_generated.c \ src/providers/data_provider_req.c \ + $(SSSD_RESPONDER_IFACE_OBJ) \ $(SSSD_CACHE_REQ_OBJ) \ $(NULL) @@ -632,12 +658,17 @@ src/util/util_safealign.h \ src/util/util_sss_idmap.h \ src/util/util_creds.h \ + src/util/inotify.h \ + src/util/sss_iobuf.h \ + src/util/tev_curl.h \ src/monitor/monitor.h \ src/monitor/monitor_interfaces.h \ src/monitor/monitor_iface_generated.h \ src/responder/common/responder.h \ src/responder/common/responder_packet.h \ src/responder/common/responder_sbus.h \ + src/responder/common/iface/responder_iface.h \ + src/responder/common/iface/responder_iface_generated.h \ src/responder/common/cache_req/cache_req.h \ src/responder/common/cache_req/cache_req_plugin.h \ src/responder/common/cache_req/cache_req_private.h \ @@ -654,7 +685,7 @@ src/responder/common/negcache.h \ src/responder/sudo/sudosrv_private.h \ src/responder/autofs/autofs_private.h \ - src/responder/ssh/sshsrv_private.h \ + src/responder/ssh/ssh_private.h \ src/responder/ifp/ifp_iface_generated.h \ src/responder/ifp/ifp_iface.h \ src/responder/ifp/ifp_private.h \ @@ -754,6 +785,7 @@ src/providers/ad/ad_subdomains.h \ src/providers/proxy/proxy.h \ src/providers/proxy/proxy_iface_generated.h \ + src/providers/files/files_private.h \ src/tools/tools_util.h \ src/tools/sss_sync_ops.h \ src/resolv/async_resolv.h \ @@ -1219,7 +1251,9 @@ $(srcdir)/src/providers/data_provider/dp_iface.xml \ $(srcdir)/src/providers/proxy/proxy_iface.xml \ $(srcdir)/src/responder/ifp/ifp_iface.xml \ - $(srcdir)/src/responder/nss/nss_iface.xml + $(srcdir)/src/responder/nss/nss_iface.xml \ + $(srcdir)/src/responder/common/iface/responder_iface.xml \ + $(NULL) SBUS_CODEGEN = src/sbus/sbus_codegen @@ -1252,8 +1286,7 @@ src/confdb/confdb_setup.c \ src/monitor/monitor_iface_generated.c \ src/util/nscd.c \ - src/tools/files.c \ - src/tools/selinux.c \ + src/util/inotify.c \ $(NULL) sssd_LDADD = \ $(SSSD_LIBS) \ @@ -1333,8 +1366,10 @@ if BUILD_SSH sssd_ssh_SOURCES = \ src/responder/ssh/sshsrv.c \ - src/responder/ssh/sshsrv_dp.c \ - src/responder/ssh/sshsrv_cmd.c \ + src/responder/ssh/ssh_cmd.c \ + src/responder/ssh/ssh_known_hosts.c \ + src/responder/ssh/ssh_protocol.c \ + src/responder/ssh/ssh_reply.c \ $(SSSD_RESPONDER_OBJ) \ $(NULL) sssd_ssh_LDADD = \ @@ -1450,6 +1485,7 @@ src/providers/data_provider/dp_iface_backend.c \ src/providers/data_provider/dp_iface_failover.c \ src/providers/data_provider/dp_client.c \ + src/providers/data_provider/dp_resp_client.c \ src/providers/data_provider/dp_iface_generated.c \ src/providers/data_provider/dp_request.c \ src/providers/data_provider/dp_request_reply.c \ @@ -1659,6 +1695,22 @@ $(CLIENT_LIBS) $(TALLOC_LIBS) $(POPT_LIBS) endif +if HAVE_SYSTEMD_UNIT +sssd_check_socket_activated_responders_SOURCES = \ + src/tools/sssd_check_socket_activated_responders.c \ + $(NULL) +sssd_check_socket_activated_responders_CFLAGS = \ + $(AM_CFLAGS) \ + $(NULL) +sssd_check_socket_activated_responders_LDADD = \ + $(SSSD_INTERNAL_LTLIBS) \ + $(LTLIBINTL) \ + $(TALLOC_LIBS) \ + $(POPT_LIBS) \ + $(INI_CONFIG_LIBS) \ + $(NULL) +endif + ################# # Feature Tests # ################# @@ -1791,6 +1843,7 @@ src/providers/krb5/krb5_common.c \ src/providers/krb5/krb5_opts.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ src/providers/data_provider_fo.c \ src/providers/data_provider_opts.c \ src/providers/data_provider_callbacks.c \ @@ -1833,6 +1886,7 @@ FILES_TESTS_LIBS += $(SEMANAGE_LIBS) endif +if HAVE_INOTIFY files_tests_SOURCES = \ src/tests/files-tests.c \ src/util/check_and_open.c \ @@ -1846,6 +1900,7 @@ $(FILES_TESTS_LIBS) \ libsss_test_common.la \ $(SSSD_INTERNAL_LTLIBS) +endif # HAVE_INOTIFY SSSD_RESOLV_TESTS_OBJ = \ $(SSSD_RESOLV_OBJ) @@ -2036,7 +2091,9 @@ src/responder/common/responder_packet.c \ src/responder/common/responder_cmd.c \ src/responder/common/data_provider/rdp_message.c \ - src/responder/common/data_provider/rdp_client.c + src/responder/common/data_provider/rdp_client.c \ + $(SSSD_RESPONDER_IFACE_OBJ) \ + $(NULL) responder_socket_access_tests_CFLAGS = \ $(AM_CFLAGS) \ $(CHECK_CFLAGS) @@ -2062,6 +2119,7 @@ src/providers/krb5/krb5_common.c \ src/providers/krb5/krb5_opts.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ src/providers/data_provider_fo.c \ src/providers/data_provider_opts.c \ src/providers/data_provider_callbacks.c \ @@ -2123,6 +2181,7 @@ src/responder/common/data_provider/rdp_client.c \ src/responder/common/responder_utils.c \ $(SSSD_CACHE_REQ_OBJ) \ + $(SSSD_RESPONDER_IFACE_OBJ) \ $(NULL) TEST_MOCK_PROVIDER_OBJ = \ @@ -2158,6 +2217,7 @@ $(AM_CFLAGS) nss_srv_tests_LDFLAGS = \ -Wl,-wrap,sss_ncache_check_user \ + -Wl,-wrap,sss_ncache_check_upn \ -Wl,-wrap,sss_ncache_check_uid \ -Wl,-wrap,sss_ncache_check_sid \ -Wl,-wrap,sss_ncache_check_cert \ @@ -2703,6 +2763,7 @@ -Wl,-wrap,sss_nss_getnamebysid \ $(NULL) test_wbc_calls_LDADD = \ + $(CLIENT_LIBS) \ $(CMOCKA_LIBS) \ $(POPT_LIBS) \ $(TALLOC_LIBS) \ @@ -2730,6 +2791,7 @@ src/tests/cmocka/test_copy_ccache.c \ src/providers/krb5/krb5_ccache.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ $(NULL) test_copy_ccache_CFLAGS = \ $(AM_CFLAGS) \ @@ -2748,6 +2810,7 @@ src/tests/cmocka/test_copy_keytab.c \ src/providers/krb5/krb5_keytab.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ $(NULL) test_copy_keytab_CFLAGS = \ $(AM_CFLAGS) \ @@ -2864,6 +2927,28 @@ libsss_test_common.la \ $(NULL) +test_sdap_initgr_SOURCES = \ + src/tests/cmocka/common_mock_sdap.c \ + src/tests/cmocka/common_mock_sysdb_objects.c \ + src/tests/cmocka/test_sdap_initgr.c \ + $(NULL) +test_sdap_initgr_CFLAGS = \ + $(AM_CFLAGS) \ + $(NDR_NBT_CFLAGS) \ + $(NULL) +test_sdap_initgr_LDADD = \ + $(CMOCKA_LIBS) \ + $(POPT_LIBS) \ + $(DHASH_LIBS) \ + $(TALLOC_LIBS) \ + $(TEVENT_LIBS) \ + $(LDB_LIBS) \ + $(SSSD_INTERNAL_LTLIBS) \ + libsss_ldap_common.la \ + libsss_test_common.la \ + libdlopen_test_providers.la \ + $(NULL) + test_ad_subdom_SOURCES = \ src/tests/cmocka/test_ad_subdomains.c \ $(NULL) @@ -3088,6 +3173,19 @@ libsss_test_common.la \ $(NULL) +test_iobuf_SOURCES = \ + src/util/sss_iobuf.c \ + src/tests/cmocka/test_iobuf.c \ + $(NULL) +test_iobuf_CFLAGS = \ + $(AM_CFLAGS) \ + $(NULL) +test_iobuf_LDADD = \ + $(CMOCKA_LIBS) \ + $(SSSD_LIBS) \ + $(NULL) + + EXTRA_simple_access_tests_DEPENDENCIES = \ $(ldblib_LTLIBRARIES) simple_access_tests_SOURCES = \ @@ -3126,6 +3224,21 @@ libdlopen_test_providers.la \ $(NULL) +test_inotify_SOURCES = \ + src/util/inotify.c \ + src/tests/cmocka/test_inotify.c \ + $(NULL) +test_inotify_CFLAGS = \ + $(AM_CFLAGS) \ + $(NULL) +test_inotify_LDADD = \ + $(CMOCKA_LIBS) \ + $(SSSD_LIBS) \ + $(SSSD_INTERNAL_LTLIBS) \ + $(LIBADD_DL) \ + libsss_test_common.la \ + $(NULL) + endif # HAVE_CMOCKA noinst_PROGRAMS = pam_test_client @@ -3135,6 +3248,9 @@ if BUILD_AUTOFS noinst_PROGRAMS += autofs_test_client endif +if BUILD_WITH_LIBCURL +noinst_PROGRAMS += tcurl-test-tool +endif pam_test_client_SOURCES = src/sss_client/pam_test_client.c pam_test_client_LDADD = $(PAM_LIBS) $(PAM_MISC_LIBS) @@ -3148,6 +3264,23 @@ autofs_test_client_LDADD = -lpopt $(CLIENT_LIBS) endif +if BUILD_WITH_LIBCURL +tcurl_test_tool_SOURCES = \ + src/tests/tcurl_test_tool.c \ + src/util/tev_curl.c \ + src/util/sss_iobuf.c \ + $(NULL) +tcurl_test_tool_CFLAGS = \ + $(AM_CFLAGS) \ + $(CURL_CFLAGS) \ + $(NULL) +tcurl_test_tool_LDADD = \ + $(CURL_LIBS) \ + $(SSSD_LIBS) \ + $(SSSD_INTERNAL_LTLIBS) \ + $(NULL) +endif + ##################### # Integration tests # ##################### @@ -3167,6 +3300,7 @@ --with-ldb-lib-dir="$$prefix"/lib/ldb \ --enable-intgcheck-reqs \ --without-semanage \ + --enable-files-domain \ $(INTGCHECK_CONFIGURE_FLAGS); \ $(MAKE) $(AM_MAKEFLAGS); \ : Force single-thread install to workaround concurrency issues; \ @@ -3404,6 +3538,7 @@ src/providers/krb5/krb5_init_shared.c \ src/providers/krb5/krb5_ccache.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ src/util/become_user.c \ $(NULL) libsss_krb5_common_la_CFLAGS = \ @@ -3449,6 +3584,23 @@ -avoid-version \ -module +libsss_files_la_SOURCES = \ + src/providers/files/files_init.c \ + src/providers/files/files_id.c \ + src/providers/files/files_ops.c \ + src/util/inotify.c \ + $(NULL) +libsss_files_la_CFLAGS = \ + $(AM_CFLAGS) \ + $(NULL) +libsss_files_la_LIBADD = \ + $(PAM_LIBS) \ + $(NULL) +libsss_files_la_LDFLAGS = \ + -avoid-version \ + -module \ + $(NULL) + libsss_simple_la_SOURCES = \ src/providers/simple/simple_access_check.c \ src/providers/simple/simple_access.c @@ -3616,6 +3768,7 @@ src/providers/dp_pam_data_util.c \ src/util/user_info_msg.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ src/util/find_uid.c \ src/util/atomic_io.c \ src/util/authtok.c \ @@ -3649,6 +3802,7 @@ src/providers/ldap/ldap_child.c \ src/providers/krb5/krb5_keytab.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ src/util/atomic_io.c \ src/util/authtok.c \ src/util/authtok-utils.c \ diff -Nru sssd-1.15.0/Makefile.in sssd-1.15.2/Makefile.in --- sssd-1.15.0/Makefile.in 2017-01-25 15:42:56.238155751 +0000 +++ sssd-1.15.2/Makefile.in 2017-03-15 16:57:41.987685636 +0000 @@ -114,10 +114,10 @@ sss_override$(EXEEXT) sss_seed$(EXEEXT) sssctl$(EXEEXT) sssdlibexec_PROGRAMS = sssd_nss$(EXEEXT) sssd_pam$(EXEEXT) \ sssd_be$(EXEEXT) krb5_child$(EXEEXT) ldap_child$(EXEEXT) \ - proxy_child$(EXEEXT) sss_signal$(EXEEXT) $(am__EXEEXT_11) \ - $(am__EXEEXT_12) $(am__EXEEXT_13) $(am__EXEEXT_14) \ - $(am__EXEEXT_15) $(am__EXEEXT_16) $(am__EXEEXT_17) \ - $(am__EXEEXT_18) $(am__EXEEXT_19) + proxy_child$(EXEEXT) sss_signal$(EXEEXT) $(am__EXEEXT_13) \ + $(am__EXEEXT_14) $(am__EXEEXT_15) $(am__EXEEXT_16) \ + $(am__EXEEXT_17) $(am__EXEEXT_18) $(am__EXEEXT_19) \ + $(am__EXEEXT_20) $(am__EXEEXT_21) $(am__EXEEXT_22) @BUILD_SUDO_TRUE@am__append_7 = sssd_sudo @BUILD_AUTOFS_TRUE@am__append_8 = sssd_autofs @BUILD_SSH_TRUE@am__append_9 = sssd_ssh @@ -127,131 +127,139 @@ @HAVE_NSS_TRUE@am__append_13 = p11_child @BUILD_SECRETS_TRUE@am__append_14 = sssd_secrets @BUILD_PAC_RESPONDER_TRUE@am__append_15 = sssd_pac -@BUILD_SSH_TRUE@@HAVE_CHECK_TRUE@am__append_16 = sysdb_ssh-tests -@BUILD_DBUS_TESTS_TRUE@@HAVE_CHECK_TRUE@am__append_17 = \ +@HAVE_SYSTEMD_UNIT_TRUE@am__append_16 = sssd_check_socket_activated_responders +@BUILD_SSH_TRUE@@HAVE_CHECK_TRUE@am__append_17 = sysdb_ssh-tests +@BUILD_DBUS_TESTS_TRUE@@HAVE_CHECK_TRUE@am__append_18 = \ @BUILD_DBUS_TESTS_TRUE@@HAVE_CHECK_TRUE@ sbus_tests \ @BUILD_DBUS_TESTS_TRUE@@HAVE_CHECK_TRUE@ sbus_codegen_tests -@HAVE_CMOCKA_TRUE@@HAVE_LIBRESOLV_TRUE@am__append_18 = test_resolv_fake -@BUILD_IFP_TRUE@@HAVE_CMOCKA_TRUE@am__append_19 = ifp_tests -@BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@am__append_20 = \ +@HAVE_CMOCKA_TRUE@@HAVE_LIBRESOLV_TRUE@am__append_19 = test_resolv_fake +@BUILD_IFP_TRUE@@HAVE_CMOCKA_TRUE@am__append_20 = ifp_tests +@HAVE_CMOCKA_TRUE@@HAVE_INOTIFY_TRUE@am__append_21 = test_inotify +@BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@am__append_22 = \ @BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ ad_access_filter_tests \ @BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ ad_gpo_tests \ @BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ ad_common_tests \ +@BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ test_sdap_initgr \ @BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ test_ad_subdom \ @BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ test_ipa_subdom_server \ @BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ $(NULL) check_PROGRAMS = stress-tests$(EXEEXT) krb5-child-test$(EXEEXT) \ - $(am__EXEEXT_4) $(am__EXEEXT_7) $(am__EXEEXT_8) -@HAVE_CMOCKA_TRUE@am__append_21 = dummy-child -@BUILD_PYTHON2_BINDINGS_TRUE@am__append_22 = src/config/SSSDConfigTest.py2.sh \ + $(am__EXEEXT_5) $(am__EXEEXT_8) $(am__EXEEXT_9) +@HAVE_CMOCKA_TRUE@am__append_23 = dummy-child +@BUILD_PYTHON2_BINDINGS_TRUE@am__append_24 = src/config/SSSDConfigTest.py2.sh \ @BUILD_PYTHON2_BINDINGS_TRUE@ src/tests/pyhbac-test.py2.sh \ @BUILD_PYTHON2_BINDINGS_TRUE@ src/tests/pysss_murmur-test.py2.sh \ @BUILD_PYTHON2_BINDINGS_TRUE@ $(NULL) -@BUILD_PYTHON3_BINDINGS_TRUE@am__append_23 = src/config/SSSDConfigTest.py3.sh \ +@BUILD_PYTHON3_BINDINGS_TRUE@am__append_25 = src/config/SSSDConfigTest.py3.sh \ @BUILD_PYTHON3_BINDINGS_TRUE@ src/tests/pyhbac-test.py3.sh \ @BUILD_PYTHON3_BINDINGS_TRUE@ src/tests/pysss_murmur-test.py3.sh \ @BUILD_PYTHON3_BINDINGS_TRUE@ $(NULL) -TESTS = $(am__EXEEXT_22) $(am__EXEEXT_4) $(am__EXEEXT_7) \ +TESTS = $(am__EXEEXT_25) $(am__EXEEXT_5) $(am__EXEEXT_8) \ src/tests/whitespace_test src/tests/double_semicolon_test -@BUILD_SAMBA_TRUE@am__append_24 = \ +@BUILD_SAMBA_TRUE@am__append_26 = \ @BUILD_SAMBA_TRUE@ libsss_ipa.la \ @BUILD_SAMBA_TRUE@ libsss_ad.la -@BUILD_SELINUX_TRUE@am__append_25 = $(SELINUX_LIBS) -@BUILD_SELINUX_TRUE@am__append_26 = $(SELINUX_LIBS) -@HAVE_NSS_TRUE@am__append_27 = src/util/crypto/nss/nss_util.h \ +@HAVE_INOTIFY_TRUE@am__append_27 = \ +@HAVE_INOTIFY_TRUE@ libsss_files.la \ +@HAVE_INOTIFY_TRUE@ $(NULL) + +@BUILD_SELINUX_TRUE@am__append_28 = $(SELINUX_LIBS) +@BUILD_SELINUX_TRUE@am__append_29 = $(SELINUX_LIBS) +@HAVE_NSS_TRUE@am__append_30 = src/util/crypto/nss/nss_util.h \ @HAVE_NSS_TRUE@ src/util/crypto/nss/nss_crypto.h -@BUILD_IFP_TRUE@am__append_28 = sss_simpleifp_doc -@BUILD_SUDO_TRUE@am__append_29 = src/db/sysdb_sudo.c -@BUILD_SSH_TRUE@am__append_30 = \ +@BUILD_IFP_TRUE@am__append_31 = sss_simpleifp_doc +@BUILD_SUDO_TRUE@am__append_32 = src/db/sysdb_sudo.c +@BUILD_SSH_TRUE@am__append_33 = \ @BUILD_SSH_TRUE@ src/db/sysdb_ssh.c \ @BUILD_SSH_TRUE@ src/util/sss_ssh.c -@BUILD_SYSTEMTAP_TRUE@am__append_31 = stap_generated_probes.lo -@BUILD_SEMANAGE_TRUE@am__append_32 = $(SEMANAGE_LIBS) -@BUILD_LIBWBCLIENT_TRUE@am__append_33 = src/sss_client/libwbclient/wbclient_sssd.pc -@BUILD_LIBWBCLIENT_TRUE@am__append_34 = src/sss_client/libwbclient/wbclient.exports \ +@BUILD_SYSTEMTAP_TRUE@am__append_34 = stap_generated_probes.lo +@BUILD_SEMANAGE_TRUE@am__append_35 = $(SEMANAGE_LIBS) +@BUILD_LIBWBCLIENT_TRUE@am__append_36 = src/sss_client/libwbclient/wbclient_sssd.pc +@BUILD_LIBWBCLIENT_TRUE@am__append_37 = src/sss_client/libwbclient/wbclient.exports \ @BUILD_LIBWBCLIENT_TRUE@ $(NULL) -@BUILD_LIBWBCLIENT_TRUE@am__append_35 = src/sss_client/libwbclient/wbclient_sssd.h -@BUILD_IFP_TRUE@am__append_36 = libsss_simpleifp.la -@BUILD_IFP_TRUE@am__append_37 = src/lib/sifp/sss_simpleifp.pc -@BUILD_IFP_TRUE@am__append_38 = src/lib/sifp/sss_simpleifp.exports -@BUILD_IFP_TRUE@am__append_39 = \ +@BUILD_LIBWBCLIENT_TRUE@am__append_38 = src/sss_client/libwbclient/wbclient_sssd.h +@BUILD_IFP_TRUE@am__append_39 = libsss_simpleifp.la +@BUILD_IFP_TRUE@am__append_40 = src/lib/sifp/sss_simpleifp.pc +@BUILD_IFP_TRUE@am__append_41 = src/lib/sifp/sss_simpleifp.exports +@BUILD_IFP_TRUE@am__append_42 = \ @BUILD_IFP_TRUE@ src/lib/sifp/sss_sifp.h \ @BUILD_IFP_TRUE@ src/lib/sifp/sss_sifp_dbus.h -@BUILD_SYSTEMTAP_TRUE@am__append_40 = stap_generated_probes.h -@BUILD_SYSTEMTAP_TRUE@am__append_41 = stap_generated_probes.h \ +@BUILD_SYSTEMTAP_TRUE@am__append_43 = stap_generated_probes.h +@BUILD_SYSTEMTAP_TRUE@am__append_44 = stap_generated_probes.h \ @BUILD_SYSTEMTAP_TRUE@ stap_generated_probes.o \ @BUILD_SYSTEMTAP_TRUE@ stap_generated_probes.lo \ @BUILD_SYSTEMTAP_TRUE@ $(NULL) -@BUILD_IFP_TRUE@am__append_42 = \ +@BUILD_IFP_TRUE@am__append_45 = \ @BUILD_IFP_TRUE@ src/responder/ifp/org.freedesktop.sssd.infopipe.service.in \ @BUILD_IFP_TRUE@ $(NULL) -@HAVE_CHECK_TRUE@am__append_43 = \ +@HAVE_CHECK_TRUE@am__append_46 = \ @HAVE_CHECK_TRUE@ src/tests/common_check.c -@HAVE_CHECK_TRUE@am__append_44 = \ +@HAVE_CHECK_TRUE@am__append_47 = \ @HAVE_CHECK_TRUE@ libdlopen_test_providers.la \ @HAVE_CHECK_TRUE@ libsss_nss_idmap_tests.la \ @HAVE_CHECK_TRUE@ $(NULL) -@BUILD_SAMBA_TRUE@@HAVE_CHECK_TRUE@am__append_45 = \ +@BUILD_SAMBA_TRUE@@HAVE_CHECK_TRUE@am__append_48 = \ @BUILD_SAMBA_TRUE@@HAVE_CHECK_TRUE@ libsss_ad_tests.la \ @BUILD_SAMBA_TRUE@@HAVE_CHECK_TRUE@ libdlopen_test_winbind_idmap.la \ @BUILD_SAMBA_TRUE@@HAVE_CHECK_TRUE@ $(NULL) -@HAVE_CHECK_TRUE@am__append_46 = src/sss_client/idmap/sss_nss_idmap.unit_tests -@BUILD_SELINUX_TRUE@@HAVE_CHECK_TRUE@am__append_47 = $(SELINUX_LIBS) -@BUILD_SEMANAGE_TRUE@@HAVE_CHECK_TRUE@am__append_48 = $(SEMANAGE_LIBS) -@BUILD_SYSTEMTAP_TRUE@@HAVE_CMOCKA_TRUE@am__append_49 = stap_generated_probes.lo -noinst_PROGRAMS = pam_test_client$(EXEEXT) $(am__EXEEXT_9) \ - $(am__EXEEXT_10) -@BUILD_SUDO_TRUE@am__append_50 = sss_sudo_cli -@BUILD_AUTOFS_TRUE@am__append_51 = autofs_test_client -@BUILD_SUDO_TRUE@am__append_52 = src/sss_client/sss_sudo.exports -@BUILD_AUTOFS_TRUE@am__append_53 = src/sss_client/autofs/sss_autofs.exports -@BUILD_SYSTEMTAP_TRUE@am__append_54 = stap_generated_probes.lo -@BUILD_SUDO_TRUE@am__append_55 = \ +@HAVE_CHECK_TRUE@am__append_49 = src/sss_client/idmap/sss_nss_idmap.unit_tests +@BUILD_SELINUX_TRUE@@HAVE_CHECK_TRUE@am__append_50 = $(SELINUX_LIBS) +@BUILD_SEMANAGE_TRUE@@HAVE_CHECK_TRUE@am__append_51 = $(SEMANAGE_LIBS) +@BUILD_SYSTEMTAP_TRUE@@HAVE_CMOCKA_TRUE@am__append_52 = stap_generated_probes.lo +noinst_PROGRAMS = pam_test_client$(EXEEXT) $(am__EXEEXT_10) \ + $(am__EXEEXT_11) $(am__EXEEXT_12) +@BUILD_SUDO_TRUE@am__append_53 = sss_sudo_cli +@BUILD_AUTOFS_TRUE@am__append_54 = autofs_test_client +@BUILD_WITH_LIBCURL_TRUE@am__append_55 = tcurl-test-tool +@BUILD_SUDO_TRUE@am__append_56 = src/sss_client/sss_sudo.exports +@BUILD_AUTOFS_TRUE@am__append_57 = src/sss_client/autofs/sss_autofs.exports +@BUILD_SYSTEMTAP_TRUE@am__append_58 = stap_generated_probes.lo +@BUILD_SUDO_TRUE@am__append_59 = \ @BUILD_SUDO_TRUE@ src/providers/ldap/sdap_async_sudo.c \ @BUILD_SUDO_TRUE@ src/providers/ldap/sdap_async_sudo_hostinfo.c \ @BUILD_SUDO_TRUE@ src/providers/ldap/sdap_sudo_refresh.c \ @BUILD_SUDO_TRUE@ src/providers/ldap/sdap_sudo_shared.c \ @BUILD_SUDO_TRUE@ src/providers/ldap/sdap_sudo.c -@BUILD_AUTOFS_TRUE@am__append_56 = \ +@BUILD_AUTOFS_TRUE@am__append_60 = \ @BUILD_AUTOFS_TRUE@ src/providers/ldap/sdap_autofs.c \ @BUILD_AUTOFS_TRUE@ src/providers/ldap/sdap_async_autofs.c -@BUILD_AUTOFS_TRUE@am__append_57 = \ +@BUILD_AUTOFS_TRUE@am__append_61 = \ @BUILD_AUTOFS_TRUE@ src/providers/ipa/ipa_autofs.c -@BUILD_SUDO_TRUE@am__append_58 = \ +@BUILD_SUDO_TRUE@am__append_62 = \ @BUILD_SUDO_TRUE@ src/providers/ipa/ipa_sudo.c \ @BUILD_SUDO_TRUE@ src/providers/ipa/ipa_sudo_refresh.c \ @BUILD_SUDO_TRUE@ src/providers/ipa/ipa_sudo_conversion.c \ @BUILD_SUDO_TRUE@ src/providers/ipa/ipa_sudo_async.c -@BUILD_SEMANAGE_TRUE@am__append_59 = \ +@BUILD_SEMANAGE_TRUE@am__append_63 = \ @BUILD_SEMANAGE_TRUE@ src/providers/ipa/ipa_selinux.c \ @BUILD_SEMANAGE_TRUE@ src/providers/ipa/ipa_selinux_maps.c -@BUILD_SSH_TRUE@am__append_60 = src/providers/ipa/ipa_hostid.c -@BUILD_SUDO_TRUE@am__append_61 = \ +@BUILD_SSH_TRUE@am__append_64 = src/providers/ipa/ipa_hostid.c +@BUILD_SUDO_TRUE@am__append_65 = \ @BUILD_SUDO_TRUE@ src/providers/ad/ad_sudo.c -@BUILD_AUTOFS_TRUE@am__append_62 = \ +@BUILD_AUTOFS_TRUE@am__append_66 = \ @BUILD_AUTOFS_TRUE@ src/providers/ad/ad_autofs.c -@HAVE_SYSTEMD_UNIT_TRUE@am__append_63 = \ +@HAVE_SYSTEMD_UNIT_TRUE@am__append_67 = \ @HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd.service \ @HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-nss.socket \ @HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-nss.service \ @@ -262,62 +270,62 @@ @HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-secrets.service \ @HAVE_SYSTEMD_UNIT_TRUE@ $(NULL) -@BUILD_AUTOFS_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@am__append_64 = \ +@BUILD_AUTOFS_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@am__append_68 = \ @BUILD_AUTOFS_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-autofs.socket \ @BUILD_AUTOFS_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-autofs.service \ @BUILD_AUTOFS_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ $(NULL) -@BUILD_IFP_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@am__append_65 = \ +@BUILD_IFP_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@am__append_69 = \ @BUILD_IFP_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-ifp.service \ @BUILD_IFP_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ $(NULL) -@BUILD_PAC_RESPONDER_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@am__append_66 = \ +@BUILD_PAC_RESPONDER_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@am__append_70 = \ @BUILD_PAC_RESPONDER_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-pac.socket \ @BUILD_PAC_RESPONDER_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-pac.service \ @BUILD_PAC_RESPONDER_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ $(NULL) -@BUILD_SSH_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@am__append_67 = \ +@BUILD_SSH_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@am__append_71 = \ @BUILD_SSH_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-ssh.socket \ @BUILD_SSH_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-ssh.service \ @BUILD_SSH_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ $(NULL) -@BUILD_SUDO_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@am__append_68 = \ +@BUILD_SUDO_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@am__append_72 = \ @BUILD_SUDO_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-sudo.socket \ @BUILD_SUDO_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ src/sysv/systemd/sssd-sudo.service \ @BUILD_SUDO_TRUE@@HAVE_SYSTEMD_UNIT_TRUE@ $(NULL) -@HAVE_SYSTEMD_UNIT_TRUE@@WITH_JOURNALD_TRUE@am__append_69 = \ +@HAVE_SYSTEMD_UNIT_TRUE@@WITH_JOURNALD_TRUE@am__append_73 = \ @HAVE_SYSTEMD_UNIT_TRUE@@WITH_JOURNALD_TRUE@ src/sysv/systemd/journal.conf -@HAVE_SUSE_TRUE@@HAVE_SYSTEMD_UNIT_FALSE@am__append_70 = \ +@HAVE_SUSE_TRUE@@HAVE_SYSTEMD_UNIT_FALSE@am__append_74 = \ @HAVE_SUSE_TRUE@@HAVE_SYSTEMD_UNIT_FALSE@ src/sysv/SUSE/sssd -@HAVE_GENTOO_TRUE@@HAVE_SUSE_FALSE@@HAVE_SYSTEMD_UNIT_FALSE@am__append_71 = \ +@HAVE_GENTOO_TRUE@@HAVE_SUSE_FALSE@@HAVE_SYSTEMD_UNIT_FALSE@am__append_75 = \ @HAVE_GENTOO_TRUE@@HAVE_SUSE_FALSE@@HAVE_SYSTEMD_UNIT_FALSE@ src/sysv/gentoo/sssd -@HAVE_GENTOO_FALSE@@HAVE_SUSE_FALSE@@HAVE_SYSTEMD_UNIT_FALSE@am__append_72 = \ +@HAVE_GENTOO_FALSE@@HAVE_SUSE_FALSE@@HAVE_SYSTEMD_UNIT_FALSE@am__append_76 = \ @HAVE_GENTOO_FALSE@@HAVE_SUSE_FALSE@@HAVE_SYSTEMD_UNIT_FALSE@ src/sysv/sssd -@BUILD_AUTOFS_TRUE@am__append_73 = \ +@BUILD_AUTOFS_TRUE@am__append_77 = \ @BUILD_AUTOFS_TRUE@ src/sysv/systemd/sssd-autofs.socket.in \ @BUILD_AUTOFS_TRUE@ src/sysv/systemd/sssd-autofs.service.in \ @BUILD_AUTOFS_TRUE@ $(NULL) -@BUILD_IFP_TRUE@am__append_74 = \ +@BUILD_IFP_TRUE@am__append_78 = \ @BUILD_IFP_TRUE@ src/sysv/systemd/sssd-ifp.service.in \ @BUILD_IFP_TRUE@ $(NULL) -@BUILD_PAC_RESPONDER_TRUE@am__append_75 = \ +@BUILD_PAC_RESPONDER_TRUE@am__append_79 = \ @BUILD_PAC_RESPONDER_TRUE@ src/sysv/systemd/sssd-pac.socket.in \ @BUILD_PAC_RESPONDER_TRUE@ src/sysv/systemd/sssd-pac.service.in \ @BUILD_PAC_RESPONDER_TRUE@ $(NULL) -@BUILD_SSH_TRUE@am__append_76 = \ +@BUILD_SSH_TRUE@am__append_80 = \ @BUILD_SSH_TRUE@ src/sysv/systemd/sssd-ssh.socket.in \ @BUILD_SSH_TRUE@ src/sysv/systemd/sssd-ssh.service.in \ @BUILD_SSH_TRUE@ $(NULL) -@BUILD_SUDO_TRUE@am__append_77 = \ +@BUILD_SUDO_TRUE@am__append_81 = \ @BUILD_SUDO_TRUE@ src/sysv/systemd/sssd-sudo.socket.in \ @BUILD_SUDO_TRUE@ src/sysv/systemd/sssd-sudo.service.in \ @BUILD_SUDO_TRUE@ $(NULL) @@ -371,6 +379,7 @@ $(top_srcdir)/src/external/intgcheck.m4 \ $(top_srcdir)/src/external/systemtap.m4 \ $(top_srcdir)/src/external/service.m4 \ + $(top_srcdir)/src/external/libcurl.m4 \ $(top_srcdir)/src/external/libhttp_parser.m4 \ $(top_srcdir)/src/external/libjansson.m4 \ $(top_srcdir)/src/external/libunistring.m4 \ @@ -612,6 +621,7 @@ src/providers/data_provider/dp_iface_backend.c \ src/providers/data_provider/dp_iface_failover.c \ src/providers/data_provider/dp_client.c \ + src/providers/data_provider/dp_resp_client.c \ src/providers/data_provider/dp_iface_generated.c \ src/providers/data_provider/dp_request.c \ src/providers/data_provider/dp_request_reply.c \ @@ -651,6 +661,7 @@ src/providers/data_provider/libdlopen_test_providers_la-dp_iface_backend.lo \ src/providers/data_provider/libdlopen_test_providers_la-dp_iface_failover.lo \ src/providers/data_provider/libdlopen_test_providers_la-dp_client.lo \ + src/providers/data_provider/libdlopen_test_providers_la-dp_resp_client.lo \ src/providers/data_provider/libdlopen_test_providers_la-dp_iface_generated.lo \ src/providers/data_provider/libdlopen_test_providers_la-dp_request.lo \ src/providers/data_provider/libdlopen_test_providers_la-dp_request_reply.lo \ @@ -868,6 +879,18 @@ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(AM_CFLAGS) $(CFLAGS) $(libsss_debug_la_LDFLAGS) $(LDFLAGS) \ -o $@ +libsss_files_la_DEPENDENCIES = $(am__DEPENDENCIES_1) +am_libsss_files_la_OBJECTS = \ + src/providers/files/libsss_files_la-files_init.lo \ + src/providers/files/libsss_files_la-files_id.lo \ + src/providers/files/libsss_files_la-files_ops.lo \ + src/util/libsss_files_la-inotify.lo +libsss_files_la_OBJECTS = $(am_libsss_files_la_OBJECTS) +libsss_files_la_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ + $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ + $(libsss_files_la_CFLAGS) $(CFLAGS) $(libsss_files_la_LDFLAGS) \ + $(LDFLAGS) -o $@ +@HAVE_INOTIFY_TRUE@am_libsss_files_la_rpath = -rpath $(sssdlibdir) libsss_idmap_la_LIBADD = am_libsss_idmap_la_OBJECTS = src/lib/idmap/sss_idmap.lo \ src/lib/idmap/sss_idmap_conv.lo src/util/murmurhash3.lo @@ -992,6 +1015,7 @@ src/providers/krb5/libsss_krb5_common_la-krb5_init_shared.lo \ src/providers/krb5/libsss_krb5_common_la-krb5_ccache.lo \ src/util/libsss_krb5_common_la-sss_krb5.lo \ + src/util/libsss_krb5_common_la-sss_iobuf.lo \ src/util/libsss_krb5_common_la-become_user.lo libsss_krb5_common_la_OBJECTS = $(am_libsss_krb5_common_la_OBJECTS) libsss_krb5_common_la_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ @@ -1011,7 +1035,7 @@ $(LDFLAGS) -o $@ libsss_ldap_common_la_DEPENDENCIES = $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) libsss_krb5_common.la libsss_idmap.la \ - libsss_util.la $(am__append_54) + libsss_util.la $(am__append_58) am__libsss_ldap_common_la_SOURCES_DIST = src/providers/ldap/ldap_id.c \ src/providers/ldap/ldap_id_enum.c \ src/providers/ldap/sdap_async_enum.c \ @@ -1213,7 +1237,7 @@ libsss_util_la_DEPENDENCIES = $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_5) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) libsss_debug.la libsss_child.la \ - libsss_crypt.la libsss_cert.la $(am__append_31) + libsss_crypt.la libsss_cert.la $(am__append_34) am__libsss_util_la_SOURCES_DIST = src/confdb/confdb.c src/db/sysdb.c \ src/db/sysdb_ops.c src/db/sysdb_search.c \ src/db/sysdb_selinux.c src/db/sysdb_upgrade.c \ @@ -1452,12 +1476,15 @@ @BUILD_SAMBA_TRUE@ $(winbindplugindir) @HAVE_CMOCKA_TRUE@@HAVE_LIBRESOLV_TRUE@am__EXEEXT_1 = test_resolv_fake$(EXEEXT) @BUILD_IFP_TRUE@@HAVE_CMOCKA_TRUE@am__EXEEXT_2 = ifp_tests$(EXEEXT) -@BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@am__EXEEXT_3 = ad_access_filter_tests$(EXEEXT) \ +@HAVE_CMOCKA_TRUE@@HAVE_INOTIFY_TRUE@am__EXEEXT_3 = \ +@HAVE_CMOCKA_TRUE@@HAVE_INOTIFY_TRUE@ test_inotify$(EXEEXT) +@BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@am__EXEEXT_4 = ad_access_filter_tests$(EXEEXT) \ @BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ ad_gpo_tests$(EXEEXT) \ @BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ ad_common_tests$(EXEEXT) \ +@BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ test_sdap_initgr$(EXEEXT) \ @BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ test_ad_subdom$(EXEEXT) \ @BUILD_SAMBA_TRUE@@HAVE_CMOCKA_TRUE@ test_ipa_subdom_server$(EXEEXT) -@HAVE_CMOCKA_TRUE@am__EXEEXT_4 = nss-srv-tests$(EXEEXT) \ +@HAVE_CMOCKA_TRUE@am__EXEEXT_5 = nss-srv-tests$(EXEEXT) \ @HAVE_CMOCKA_TRUE@ test-find-uid$(EXEEXT) test-io$(EXEEXT) \ @HAVE_CMOCKA_TRUE@ test-negcache$(EXEEXT) test-authtok$(EXEEXT) \ @HAVE_CMOCKA_TRUE@ sss_nss_idmap-tests$(EXEEXT) \ @@ -1497,14 +1524,16 @@ @HAVE_CMOCKA_TRUE@ test_dp_builtin$(EXEEXT) \ @HAVE_CMOCKA_TRUE@ test_ipa_dn$(EXEEXT) \ @HAVE_CMOCKA_TRUE@ simple-access-tests$(EXEEXT) \ -@HAVE_CMOCKA_TRUE@ krb5_common_test$(EXEEXT) $(am__EXEEXT_1) \ -@HAVE_CMOCKA_TRUE@ $(am__EXEEXT_2) $(am__EXEEXT_3) -@BUILD_SSH_TRUE@@HAVE_CHECK_TRUE@am__EXEEXT_5 = \ +@HAVE_CMOCKA_TRUE@ krb5_common_test$(EXEEXT) \ +@HAVE_CMOCKA_TRUE@ test_iobuf$(EXEEXT) $(am__EXEEXT_1) \ +@HAVE_CMOCKA_TRUE@ $(am__EXEEXT_2) $(am__EXEEXT_3) \ +@HAVE_CMOCKA_TRUE@ $(am__EXEEXT_4) +@BUILD_SSH_TRUE@@HAVE_CHECK_TRUE@am__EXEEXT_6 = \ @BUILD_SSH_TRUE@@HAVE_CHECK_TRUE@ sysdb_ssh-tests$(EXEEXT) -@BUILD_DBUS_TESTS_TRUE@@HAVE_CHECK_TRUE@am__EXEEXT_6 = \ +@BUILD_DBUS_TESTS_TRUE@@HAVE_CHECK_TRUE@am__EXEEXT_7 = \ @BUILD_DBUS_TESTS_TRUE@@HAVE_CHECK_TRUE@ sbus_tests$(EXEEXT) \ @BUILD_DBUS_TESTS_TRUE@@HAVE_CHECK_TRUE@ sbus_codegen_tests$(EXEEXT) -@HAVE_CHECK_TRUE@am__EXEEXT_7 = dlopen-tests$(EXEEXT) \ +@HAVE_CHECK_TRUE@am__EXEEXT_8 = dlopen-tests$(EXEEXT) \ @HAVE_CHECK_TRUE@ sysdb-tests$(EXEEXT) strtonum-tests$(EXEEXT) \ @HAVE_CHECK_TRUE@ resolv-tests$(EXEEXT) \ @HAVE_CHECK_TRUE@ krb5-utils-tests$(EXEEXT) \ @@ -1518,20 +1547,22 @@ @HAVE_CHECK_TRUE@ debug-tests$(EXEEXT) ipa_hbac-tests$(EXEEXT) \ @HAVE_CHECK_TRUE@ sss_idmap-tests$(EXEEXT) \ @HAVE_CHECK_TRUE@ responder_socket_access-tests$(EXEEXT) \ -@HAVE_CHECK_TRUE@ safe-format-tests$(EXEEXT) $(am__EXEEXT_5) \ -@HAVE_CHECK_TRUE@ $(am__EXEEXT_6) -@HAVE_CMOCKA_TRUE@am__EXEEXT_8 = dummy-child$(EXEEXT) -@BUILD_SUDO_TRUE@am__EXEEXT_9 = sss_sudo_cli$(EXEEXT) -@BUILD_AUTOFS_TRUE@am__EXEEXT_10 = autofs_test_client$(EXEEXT) -@BUILD_SUDO_TRUE@am__EXEEXT_11 = sssd_sudo$(EXEEXT) -@BUILD_AUTOFS_TRUE@am__EXEEXT_12 = sssd_autofs$(EXEEXT) -@BUILD_SSH_TRUE@am__EXEEXT_13 = sssd_ssh$(EXEEXT) -@BUILD_IFP_TRUE@am__EXEEXT_14 = sssd_ifp$(EXEEXT) -@BUILD_SAMBA_TRUE@am__EXEEXT_15 = gpo_child$(EXEEXT) -@BUILD_SEMANAGE_TRUE@am__EXEEXT_16 = selinux_child$(EXEEXT) -@HAVE_NSS_TRUE@am__EXEEXT_17 = p11_child$(EXEEXT) -@BUILD_SECRETS_TRUE@am__EXEEXT_18 = sssd_secrets$(EXEEXT) -@BUILD_PAC_RESPONDER_TRUE@am__EXEEXT_19 = sssd_pac$(EXEEXT) +@HAVE_CHECK_TRUE@ safe-format-tests$(EXEEXT) $(am__EXEEXT_6) \ +@HAVE_CHECK_TRUE@ $(am__EXEEXT_7) +@HAVE_CMOCKA_TRUE@am__EXEEXT_9 = dummy-child$(EXEEXT) +@BUILD_SUDO_TRUE@am__EXEEXT_10 = sss_sudo_cli$(EXEEXT) +@BUILD_AUTOFS_TRUE@am__EXEEXT_11 = autofs_test_client$(EXEEXT) +@BUILD_WITH_LIBCURL_TRUE@am__EXEEXT_12 = tcurl-test-tool$(EXEEXT) +@BUILD_SUDO_TRUE@am__EXEEXT_13 = sssd_sudo$(EXEEXT) +@BUILD_AUTOFS_TRUE@am__EXEEXT_14 = sssd_autofs$(EXEEXT) +@BUILD_SSH_TRUE@am__EXEEXT_15 = sssd_ssh$(EXEEXT) +@BUILD_IFP_TRUE@am__EXEEXT_16 = sssd_ifp$(EXEEXT) +@BUILD_SAMBA_TRUE@am__EXEEXT_17 = gpo_child$(EXEEXT) +@BUILD_SEMANAGE_TRUE@am__EXEEXT_18 = selinux_child$(EXEEXT) +@HAVE_NSS_TRUE@am__EXEEXT_19 = p11_child$(EXEEXT) +@BUILD_SECRETS_TRUE@am__EXEEXT_20 = sssd_secrets$(EXEEXT) +@BUILD_PAC_RESPONDER_TRUE@am__EXEEXT_21 = sssd_pac$(EXEEXT) +@HAVE_SYSTEMD_UNIT_TRUE@am__EXEEXT_22 = sssd_check_socket_activated_responders$(EXEEXT) PROGRAMS = $(bin_PROGRAMS) $(noinst_PROGRAMS) $(sbin_PROGRAMS) \ $(sssdlibexec_PROGRAMS) am__ad_access_filter_tests_SOURCES_DIST = \ @@ -1554,7 +1585,8 @@ src/providers/krb5/krb5_child_handler.c \ src/providers/krb5/krb5_init_shared.c \ src/providers/krb5/krb5_ccache.c src/util/sss_krb5.c \ - src/util/become_user.c src/tests/cmocka/common_mock_krb5.c \ + src/util/sss_iobuf.c src/util/become_user.c \ + src/tests/cmocka/common_mock_krb5.c \ src/tests/cmocka/test_ad_common.c src/providers/ad/ad_opts.c \ src/providers/ad/ad_pac.c src/providers/ad/ad_pac_common.c \ src/providers/ad/ad_domain_info.c \ @@ -1572,6 +1604,7 @@ src/providers/krb5/ad_common_tests-krb5_init_shared.$(OBJEXT) \ src/providers/krb5/ad_common_tests-krb5_ccache.$(OBJEXT) \ src/util/ad_common_tests-sss_krb5.$(OBJEXT) \ + src/util/ad_common_tests-sss_iobuf.$(OBJEXT) \ src/util/ad_common_tests-become_user.$(OBJEXT) @HAVE_CMOCKA_TRUE@am_ad_common_tests_OBJECTS = $(am__objects_31) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/ad_common_tests-common_mock_krb5.$(OBJEXT) \ @@ -1739,12 +1772,11 @@ am__files_tests_SOURCES_DIST = src/tests/files-tests.c \ src/util/check_and_open.c src/util/atomic_io.c \ src/tools/selinux.c src/tools/files.c -@HAVE_CHECK_TRUE@am_files_tests_OBJECTS = \ -@HAVE_CHECK_TRUE@ src/tests/files_tests-files-tests.$(OBJEXT) \ -@HAVE_CHECK_TRUE@ src/util/files_tests-check_and_open.$(OBJEXT) \ -@HAVE_CHECK_TRUE@ src/util/files_tests-atomic_io.$(OBJEXT) \ -@HAVE_CHECK_TRUE@ src/tools/files_tests-selinux.$(OBJEXT) \ -@HAVE_CHECK_TRUE@ src/tools/files_tests-files.$(OBJEXT) +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@am_files_tests_OBJECTS = src/tests/files_tests-files-tests.$(OBJEXT) \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ src/util/files_tests-check_and_open.$(OBJEXT) \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ src/util/files_tests-atomic_io.$(OBJEXT) \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ src/tools/files_tests-selinux.$(OBJEXT) \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ src/tools/files_tests-files.$(OBJEXT) files_tests_OBJECTS = $(am_files_tests_OBJECTS) @BUILD_SELINUX_TRUE@@HAVE_CHECK_TRUE@am__DEPENDENCIES_12 = \ @BUILD_SELINUX_TRUE@@HAVE_CHECK_TRUE@ $(am__DEPENDENCIES_1) @@ -1754,8 +1786,10 @@ @HAVE_CHECK_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @HAVE_CHECK_TRUE@ libsss_test_common.la $(am__DEPENDENCIES_12) \ @HAVE_CHECK_TRUE@ $(am__DEPENDENCIES_13) -@HAVE_CHECK_TRUE@files_tests_DEPENDENCIES = $(am__DEPENDENCIES_14) \ -@HAVE_CHECK_TRUE@ libsss_test_common.la $(am__DEPENDENCIES_2) +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@files_tests_DEPENDENCIES = \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ $(am__DEPENDENCIES_14) \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ libsss_test_common.la \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ $(am__DEPENDENCIES_2) files_tests_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(files_tests_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ @@ -1806,6 +1840,7 @@ src/responder/common/data_provider/rdp_client.c \ src/responder/common/responder_utils.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -1828,11 +1863,17 @@ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/tests/cmocka/test_ifp.c src/responder/ifp/ifpsrv_cmd.c \ src/responder/ifp/ifp_iface_generated.c \ src/responder/ifp/ifpsrv_util.c am__objects_35 = \ src/responder/common/cache_req/ifp_tests-cache_req.$(OBJEXT) \ + src/responder/common/cache_req/ifp_tests-cache_req_result.$(OBJEXT) \ src/responder/common/cache_req/ifp_tests-cache_req_search.$(OBJEXT) \ src/responder/common/cache_req/ifp_tests-cache_req_data.$(OBJEXT) \ src/responder/common/cache_req/plugins/ifp_tests-cache_req_common.$(OBJEXT) \ @@ -1854,8 +1895,13 @@ src/responder/common/cache_req/plugins/ifp_tests-cache_req_object_by_id.$(OBJEXT) \ src/responder/common/cache_req/plugins/ifp_tests-cache_req_svc_by_name.$(OBJEXT) \ src/responder/common/cache_req/plugins/ifp_tests-cache_req_svc_by_port.$(OBJEXT) \ - src/responder/common/cache_req/plugins/ifp_tests-cache_req_netgroup_by_name.$(OBJEXT) -@HAVE_CMOCKA_TRUE@am__objects_36 = src/tests/cmocka/ifp_tests-common_mock_resp.$(OBJEXT) \ + src/responder/common/cache_req/plugins/ifp_tests-cache_req_netgroup_by_name.$(OBJEXT) \ + src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.$(OBJEXT) +am__objects_36 = src/responder/common/iface/ifp_tests-responder_iface.$(OBJEXT) \ + src/responder/common/iface/ifp_tests-responder_domain.$(OBJEXT) \ + src/responder/common/iface/ifp_tests-responder_ncache.$(OBJEXT) \ + src/responder/common/iface/ifp_tests-responder_iface_generated.$(OBJEXT) +@HAVE_CMOCKA_TRUE@am__objects_37 = src/tests/cmocka/ifp_tests-common_mock_resp.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/ifp_tests-common_mock_resp_dp.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/ifp_tests-responder_packet.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/ifp_tests-responder_cmd.$(OBJEXT) \ @@ -1865,9 +1911,9 @@ @HAVE_CMOCKA_TRUE@ src/responder/common/data_provider/ifp_tests-rdp_message.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/data_provider/ifp_tests-rdp_client.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/ifp_tests-responder_utils.$(OBJEXT) \ -@HAVE_CMOCKA_TRUE@ $(am__objects_35) +@HAVE_CMOCKA_TRUE@ $(am__objects_35) $(am__objects_36) @BUILD_IFP_TRUE@@HAVE_CMOCKA_TRUE@am_ifp_tests_OBJECTS = \ -@BUILD_IFP_TRUE@@HAVE_CMOCKA_TRUE@ $(am__objects_36) \ +@BUILD_IFP_TRUE@@HAVE_CMOCKA_TRUE@ $(am__objects_37) \ @BUILD_IFP_TRUE@@HAVE_CMOCKA_TRUE@ src/tests/cmocka/ifp_tests-test_ifp.$(OBJEXT) \ @BUILD_IFP_TRUE@@HAVE_CMOCKA_TRUE@ src/responder/ifp/ifp_tests-ifpsrv_cmd.$(OBJEXT) \ @BUILD_IFP_TRUE@@HAVE_CMOCKA_TRUE@ src/responder/ifp/ifp_tests-ifp_iface_generated.$(OBJEXT) \ @@ -1920,11 +1966,11 @@ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(ipa_ldap_opt_tests_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ -am__objects_37 = src/resolv/krb5_child_test-async_resolv.$(OBJEXT) \ +am__objects_38 = src/resolv/krb5_child_test-async_resolv.$(OBJEXT) \ src/resolv/krb5_child_test-async_resolv_utils.$(OBJEXT) -am__objects_38 = src/providers/krb5_child_test-fail_over.$(OBJEXT) \ +am__objects_39 = src/providers/krb5_child_test-fail_over.$(OBJEXT) \ src/providers/krb5_child_test-fail_over_srv.$(OBJEXT) \ - $(am__objects_37) + $(am__objects_38) am_krb5_child_test_OBJECTS = \ src/tests/krb5_child_test-krb5_child-test.$(OBJEXT) \ src/providers/krb5/krb5_child_test-krb5_utils.$(OBJEXT) \ @@ -1933,11 +1979,12 @@ src/providers/krb5/krb5_child_test-krb5_common.$(OBJEXT) \ src/providers/krb5/krb5_child_test-krb5_opts.$(OBJEXT) \ src/util/krb5_child_test-sss_krb5.$(OBJEXT) \ + src/util/krb5_child_test-sss_iobuf.$(OBJEXT) \ src/providers/krb5_child_test-data_provider_fo.$(OBJEXT) \ src/providers/krb5_child_test-data_provider_opts.$(OBJEXT) \ src/providers/krb5_child_test-data_provider_callbacks.$(OBJEXT) \ src/util/krb5_child_test-become_user.$(OBJEXT) \ - $(am__objects_38) + $(am__objects_39) krb5_child_test_OBJECTS = $(am_krb5_child_test_OBJECTS) krb5_child_test_DEPENDENCIES = $(am__DEPENDENCIES_5) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @@ -1952,27 +1999,28 @@ src/providers/krb5/krb5_ccache.c \ src/providers/krb5/krb5_common.c \ src/providers/krb5/krb5_opts.c src/util/sss_krb5.c \ - src/providers/data_provider_fo.c \ + src/util/sss_iobuf.c src/providers/data_provider_fo.c \ src/providers/data_provider_opts.c \ src/providers/data_provider_callbacks.c src/util/become_user.c \ src/providers/fail_over.c src/providers/fail_over_srv.c \ src/resolv/async_resolv.c src/resolv/async_resolv_utils.c -am__objects_39 = src/resolv/krb5_utils_tests-async_resolv.$(OBJEXT) \ +am__objects_40 = src/resolv/krb5_utils_tests-async_resolv.$(OBJEXT) \ src/resolv/krb5_utils_tests-async_resolv_utils.$(OBJEXT) -am__objects_40 = src/providers/krb5_utils_tests-fail_over.$(OBJEXT) \ +am__objects_41 = src/providers/krb5_utils_tests-fail_over.$(OBJEXT) \ src/providers/krb5_utils_tests-fail_over_srv.$(OBJEXT) \ - $(am__objects_39) + $(am__objects_40) @HAVE_CHECK_TRUE@am_krb5_utils_tests_OBJECTS = src/tests/krb5_utils_tests-krb5_utils-tests.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/providers/krb5/krb5_utils_tests-krb5_utils.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/providers/krb5/krb5_utils_tests-krb5_ccache.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/providers/krb5/krb5_utils_tests-krb5_common.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/providers/krb5/krb5_utils_tests-krb5_opts.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/util/krb5_utils_tests-sss_krb5.$(OBJEXT) \ +@HAVE_CHECK_TRUE@ src/util/krb5_utils_tests-sss_iobuf.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/providers/krb5_utils_tests-data_provider_fo.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/providers/krb5_utils_tests-data_provider_opts.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/providers/krb5_utils_tests-data_provider_callbacks.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/util/krb5_utils_tests-become_user.$(OBJEXT) \ -@HAVE_CHECK_TRUE@ $(am__objects_40) +@HAVE_CHECK_TRUE@ $(am__objects_41) krb5_utils_tests_OBJECTS = $(am_krb5_utils_tests_OBJECTS) @HAVE_CHECK_TRUE@krb5_utils_tests_DEPENDENCIES = \ @HAVE_CHECK_TRUE@ $(am__DEPENDENCIES_5) $(am__DEPENDENCIES_1) \ @@ -1989,6 +2037,7 @@ src/providers/krb5_child-dp_pam_data_util.$(OBJEXT) \ src/util/krb5_child-user_info_msg.$(OBJEXT) \ src/util/krb5_child-sss_krb5.$(OBJEXT) \ + src/util/krb5_child-sss_iobuf.$(OBJEXT) \ src/util/krb5_child-find_uid.$(OBJEXT) \ src/util/krb5_child-atomic_io.$(OBJEXT) \ src/util/krb5_child-authtok.$(OBJEXT) \ @@ -2024,6 +2073,7 @@ src/providers/ldap/ldap_child-ldap_child.$(OBJEXT) \ src/providers/krb5/ldap_child-krb5_keytab.$(OBJEXT) \ src/util/ldap_child-sss_krb5.$(OBJEXT) \ + src/util/ldap_child-sss_iobuf.$(OBJEXT) \ src/util/ldap_child-atomic_io.$(OBJEXT) \ src/util/ldap_child-authtok.$(OBJEXT) \ src/util/ldap_child-authtok-utils.$(OBJEXT) \ @@ -2051,7 +2101,7 @@ src/tests/cmocka/common_mock_be.c \ src/providers/ldap/sdap_async_nested_groups.c \ src/providers/ldap/sdap_ad_groups.c src/providers/ipa/ipa_dn.c -@HAVE_CMOCKA_TRUE@am__objects_41 = src/util/nestedgroups_tests-sss_sockets.$(OBJEXT) \ +@HAVE_CMOCKA_TRUE@am__objects_42 = src/util/nestedgroups_tests-sss_sockets.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/util/nestedgroups_tests-sss_ldap.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/providers/nestedgroups_tests-data_provider_opts.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/providers/ldap/nestedgroups_tests-ldap_opts.$(OBJEXT) \ @@ -2062,7 +2112,7 @@ @HAVE_CMOCKA_TRUE@ src/providers/ldap/nestedgroups_tests-sdap_range.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/nestedgroups_tests-common_mock_sdap.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/nestedgroups_tests-common_mock_sysdb_objects.$(OBJEXT) -@HAVE_CMOCKA_TRUE@am_nestedgroups_tests_OBJECTS = $(am__objects_41) \ +@HAVE_CMOCKA_TRUE@am_nestedgroups_tests_OBJECTS = $(am__objects_42) \ @HAVE_CMOCKA_TRUE@ src/providers/ldap/nestedgroups_tests-sdap_idmap.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/nestedgroups_tests-test_nested_groups.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/nestedgroups_tests-common_mock_be.$(OBJEXT) \ @@ -2073,7 +2123,7 @@ @HAVE_CMOCKA_TRUE@nestedgroups_tests_DEPENDENCIES = \ @HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_5) \ @HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_2) libsss_idmap.la \ -@HAVE_CMOCKA_TRUE@ libsss_test_common.la $(am__append_49) +@HAVE_CMOCKA_TRUE@ libsss_test_common.la $(am__append_52) nestedgroups_tests_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(nestedgroups_tests_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ @@ -2089,6 +2139,7 @@ src/responder/common/data_provider/rdp_client.c \ src/responder/common/responder_utils.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -2111,6 +2162,11 @@ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/tests/cmocka/test_nss_srv.c src/responder/nss/nss_cmd.c \ src/responder/nss/nss_enum.c \ src/responder/nss/nss_get_object.c \ @@ -2122,7 +2178,8 @@ src/responder/nss/nss_protocol_sid.c \ src/responder/nss/nss_utils.c \ src/responder/nss/nsssrv_mmap_cache.c -am__objects_42 = src/responder/common/cache_req/nss_srv_tests-cache_req.$(OBJEXT) \ +am__objects_43 = src/responder/common/cache_req/nss_srv_tests-cache_req.$(OBJEXT) \ + src/responder/common/cache_req/nss_srv_tests-cache_req_result.$(OBJEXT) \ src/responder/common/cache_req/nss_srv_tests-cache_req_search.$(OBJEXT) \ src/responder/common/cache_req/nss_srv_tests-cache_req_data.$(OBJEXT) \ src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_common.$(OBJEXT) \ @@ -2144,8 +2201,13 @@ src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_object_by_id.$(OBJEXT) \ src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_svc_by_name.$(OBJEXT) \ src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_svc_by_port.$(OBJEXT) \ - src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_netgroup_by_name.$(OBJEXT) -@HAVE_CMOCKA_TRUE@am__objects_43 = src/tests/cmocka/nss_srv_tests-common_mock_resp.$(OBJEXT) \ + src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_netgroup_by_name.$(OBJEXT) \ + src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.$(OBJEXT) +am__objects_44 = src/responder/common/iface/nss_srv_tests-responder_iface.$(OBJEXT) \ + src/responder/common/iface/nss_srv_tests-responder_domain.$(OBJEXT) \ + src/responder/common/iface/nss_srv_tests-responder_ncache.$(OBJEXT) \ + src/responder/common/iface/nss_srv_tests-responder_iface_generated.$(OBJEXT) +@HAVE_CMOCKA_TRUE@am__objects_45 = src/tests/cmocka/nss_srv_tests-common_mock_resp.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/nss_srv_tests-common_mock_resp_dp.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/nss_srv_tests-responder_packet.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/nss_srv_tests-responder_cmd.$(OBJEXT) \ @@ -2155,8 +2217,8 @@ @HAVE_CMOCKA_TRUE@ src/responder/common/data_provider/nss_srv_tests-rdp_message.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/data_provider/nss_srv_tests-rdp_client.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/nss_srv_tests-responder_utils.$(OBJEXT) \ -@HAVE_CMOCKA_TRUE@ $(am__objects_42) -@HAVE_CMOCKA_TRUE@am_nss_srv_tests_OBJECTS = $(am__objects_43) \ +@HAVE_CMOCKA_TRUE@ $(am__objects_43) $(am__objects_44) +@HAVE_CMOCKA_TRUE@am_nss_srv_tests_OBJECTS = $(am__objects_45) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/nss_srv_tests-test_nss_srv.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/nss/nss_srv_tests-nss_cmd.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/nss/nss_srv_tests-nss_enum.$(OBJEXT) \ @@ -2199,6 +2261,7 @@ src/responder/common/data_provider/rdp_client.c \ src/responder/common/responder_utils.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -2221,11 +2284,17 @@ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/tests/cmocka/test_pam_srv.c src/sss_client/pam_message.c \ src/responder/pam/pamsrv_cmd.c src/responder/pam/pamsrv_p11.c \ src/responder/pam/pam_helpers.c src/responder/pam/pamsrv_dp.c \ src/responder/pam/pam_LOCAL_domain.c -am__objects_44 = src/responder/common/cache_req/pam_srv_tests-cache_req.$(OBJEXT) \ +am__objects_46 = src/responder/common/cache_req/pam_srv_tests-cache_req.$(OBJEXT) \ + src/responder/common/cache_req/pam_srv_tests-cache_req_result.$(OBJEXT) \ src/responder/common/cache_req/pam_srv_tests-cache_req_search.$(OBJEXT) \ src/responder/common/cache_req/pam_srv_tests-cache_req_data.$(OBJEXT) \ src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_common.$(OBJEXT) \ @@ -2247,8 +2316,13 @@ src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_object_by_id.$(OBJEXT) \ src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_svc_by_name.$(OBJEXT) \ src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_svc_by_port.$(OBJEXT) \ - src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_netgroup_by_name.$(OBJEXT) -@HAVE_CMOCKA_TRUE@am__objects_45 = src/tests/cmocka/pam_srv_tests-common_mock_resp.$(OBJEXT) \ + src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_netgroup_by_name.$(OBJEXT) \ + src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.$(OBJEXT) +am__objects_47 = src/responder/common/iface/pam_srv_tests-responder_iface.$(OBJEXT) \ + src/responder/common/iface/pam_srv_tests-responder_domain.$(OBJEXT) \ + src/responder/common/iface/pam_srv_tests-responder_ncache.$(OBJEXT) \ + src/responder/common/iface/pam_srv_tests-responder_iface_generated.$(OBJEXT) +@HAVE_CMOCKA_TRUE@am__objects_48 = src/tests/cmocka/pam_srv_tests-common_mock_resp.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/pam_srv_tests-common_mock_resp_dp.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/pam_srv_tests-responder_packet.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/pam_srv_tests-responder_cmd.$(OBJEXT) \ @@ -2258,8 +2332,8 @@ @HAVE_CMOCKA_TRUE@ src/responder/common/data_provider/pam_srv_tests-rdp_message.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/data_provider/pam_srv_tests-rdp_client.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/pam_srv_tests-responder_utils.$(OBJEXT) \ -@HAVE_CMOCKA_TRUE@ $(am__objects_44) -@HAVE_CMOCKA_TRUE@am_pam_srv_tests_OBJECTS = $(am__objects_45) \ +@HAVE_CMOCKA_TRUE@ $(am__objects_46) $(am__objects_47) +@HAVE_CMOCKA_TRUE@am_pam_srv_tests_OBJECTS = $(am__objects_48) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/pam_srv_tests-test_pam_srv.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/sss_client/pam_srv_tests-pam_message.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/pam/pam_srv_tests-pamsrv_cmd.$(OBJEXT) \ @@ -2301,12 +2375,12 @@ am__resolv_tests_SOURCES_DIST = src/tests/resolv-tests.c \ src/tests/common.c src/resolv/async_resolv.c \ src/resolv/async_resolv_utils.c -am__objects_46 = src/resolv/resolv_tests-async_resolv.$(OBJEXT) \ +am__objects_49 = src/resolv/resolv_tests-async_resolv.$(OBJEXT) \ src/resolv/resolv_tests-async_resolv_utils.$(OBJEXT) -@HAVE_CHECK_TRUE@am__objects_47 = $(am__objects_46) +@HAVE_CHECK_TRUE@am__objects_50 = $(am__objects_49) @HAVE_CHECK_TRUE@am_resolv_tests_OBJECTS = src/tests/resolv_tests-resolv-tests.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/tests/resolv_tests-common.$(OBJEXT) \ -@HAVE_CHECK_TRUE@ $(am__objects_47) +@HAVE_CHECK_TRUE@ $(am__objects_50) resolv_tests_OBJECTS = $(am_resolv_tests_OBJECTS) @HAVE_CHECK_TRUE@resolv_tests_DEPENDENCIES = $(am__DEPENDENCIES_5) \ @HAVE_CHECK_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @@ -2320,6 +2394,7 @@ src/responder/common/responder_cmd.c \ src/responder/common/responder_common.c \ src/responder/common/responder_dp.c \ + src/responder/common/responder_dp_ssh.c \ src/responder/common/responder_packet.c \ src/responder/common/responder_get_domains.c \ src/responder/common/responder_utils.c \ @@ -2327,7 +2402,12 @@ src/responder/common/data_provider/rdp_client.c \ src/monitor/monitor_iface_generated.c \ src/providers/data_provider_req.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -2350,9 +2430,15 @@ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ src/tests/cmocka/test_responder_common.c \ src/tests/cmocka/common_mock_resp.c -am__objects_48 = src/responder/common/cache_req/responder_get_domains_tests-cache_req.$(OBJEXT) \ +am__objects_51 = src/responder/common/iface/responder_get_domains_tests-responder_iface.$(OBJEXT) \ + src/responder/common/iface/responder_get_domains_tests-responder_domain.$(OBJEXT) \ + src/responder/common/iface/responder_get_domains_tests-responder_ncache.$(OBJEXT) \ + src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.$(OBJEXT) +am__objects_52 = src/responder/common/cache_req/responder_get_domains_tests-cache_req.$(OBJEXT) \ + src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.$(OBJEXT) \ src/responder/common/cache_req/responder_get_domains_tests-cache_req_search.$(OBJEXT) \ src/responder/common/cache_req/responder_get_domains_tests-cache_req_data.$(OBJEXT) \ src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_common.$(OBJEXT) \ @@ -2374,12 +2460,14 @@ src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_object_by_id.$(OBJEXT) \ src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_svc_by_name.$(OBJEXT) \ src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_svc_by_port.$(OBJEXT) \ - src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_netgroup_by_name.$(OBJEXT) -am__objects_49 = src/responder/common/responder_get_domains_tests-negcache_files.$(OBJEXT) \ + src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_netgroup_by_name.$(OBJEXT) \ + src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.$(OBJEXT) +am__objects_53 = src/responder/common/responder_get_domains_tests-negcache_files.$(OBJEXT) \ src/responder/common/responder_get_domains_tests-negcache.$(OBJEXT) \ src/responder/common/responder_get_domains_tests-responder_cmd.$(OBJEXT) \ src/responder/common/responder_get_domains_tests-responder_common.$(OBJEXT) \ src/responder/common/responder_get_domains_tests-responder_dp.$(OBJEXT) \ + src/responder/common/responder_get_domains_tests-responder_dp_ssh.$(OBJEXT) \ src/responder/common/responder_get_domains_tests-responder_packet.$(OBJEXT) \ src/responder/common/responder_get_domains_tests-responder_get_domains.$(OBJEXT) \ src/responder/common/responder_get_domains_tests-responder_utils.$(OBJEXT) \ @@ -2387,9 +2475,9 @@ src/responder/common/data_provider/responder_get_domains_tests-rdp_client.$(OBJEXT) \ src/monitor/responder_get_domains_tests-monitor_iface_generated.$(OBJEXT) \ src/providers/responder_get_domains_tests-data_provider_req.$(OBJEXT) \ - $(am__objects_48) + $(am__objects_51) $(am__objects_52) @HAVE_CMOCKA_TRUE@am_responder_get_domains_tests_OBJECTS = \ -@HAVE_CMOCKA_TRUE@ $(am__objects_49) \ +@HAVE_CMOCKA_TRUE@ $(am__objects_53) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/responder_get_domains_tests-test_responder_common.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/responder_get_domains_tests-common_mock_resp.$(OBJEXT) responder_get_domains_tests_OBJECTS = \ @@ -2414,6 +2502,7 @@ src/responder/common/data_provider/rdp_client.c \ src/responder/common/responder_utils.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -2436,8 +2525,14 @@ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/tests/cmocka/test_responder_cache_req.c -am__objects_50 = src/responder/common/cache_req/responder_cache_req_tests-cache_req.$(OBJEXT) \ +am__objects_54 = src/responder/common/cache_req/responder_cache_req_tests-cache_req.$(OBJEXT) \ + src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.$(OBJEXT) \ src/responder/common/cache_req/responder_cache_req_tests-cache_req_search.$(OBJEXT) \ src/responder/common/cache_req/responder_cache_req_tests-cache_req_data.$(OBJEXT) \ src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_common.$(OBJEXT) \ @@ -2459,8 +2554,13 @@ src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_object_by_id.$(OBJEXT) \ src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_svc_by_name.$(OBJEXT) \ src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_svc_by_port.$(OBJEXT) \ - src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_netgroup_by_name.$(OBJEXT) -@HAVE_CMOCKA_TRUE@am__objects_51 = src/tests/cmocka/responder_cache_req_tests-common_mock_resp.$(OBJEXT) \ + src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_netgroup_by_name.$(OBJEXT) \ + src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.$(OBJEXT) +am__objects_55 = src/responder/common/iface/responder_cache_req_tests-responder_iface.$(OBJEXT) \ + src/responder/common/iface/responder_cache_req_tests-responder_domain.$(OBJEXT) \ + src/responder/common/iface/responder_cache_req_tests-responder_ncache.$(OBJEXT) \ + src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.$(OBJEXT) +@HAVE_CMOCKA_TRUE@am__objects_56 = src/tests/cmocka/responder_cache_req_tests-common_mock_resp.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/responder_cache_req_tests-common_mock_resp_dp.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/responder_cache_req_tests-responder_packet.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/responder_cache_req_tests-responder_cmd.$(OBJEXT) \ @@ -2470,9 +2570,9 @@ @HAVE_CMOCKA_TRUE@ src/responder/common/data_provider/responder_cache_req_tests-rdp_message.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/data_provider/responder_cache_req_tests-rdp_client.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/responder/common/responder_cache_req_tests-responder_utils.$(OBJEXT) \ -@HAVE_CMOCKA_TRUE@ $(am__objects_50) +@HAVE_CMOCKA_TRUE@ $(am__objects_54) $(am__objects_55) @HAVE_CMOCKA_TRUE@am_responder_cache_req_tests_OBJECTS = \ -@HAVE_CMOCKA_TRUE@ $(am__objects_51) \ +@HAVE_CMOCKA_TRUE@ $(am__objects_56) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/responder_cache_req_tests-test_responder_cache_req.$(OBJEXT) responder_cache_req_tests_OBJECTS = \ $(am_responder_cache_req_tests_OBJECTS) @@ -2492,7 +2592,15 @@ src/responder/common/responder_packet.c \ src/responder/common/responder_cmd.c \ src/responder/common/data_provider/rdp_message.c \ - src/responder/common/data_provider/rdp_client.c + src/responder/common/data_provider/rdp_client.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c +am__objects_57 = src/responder/common/iface/responder_socket_access_tests-responder_iface.$(OBJEXT) \ + src/responder/common/iface/responder_socket_access_tests-responder_domain.$(OBJEXT) \ + src/responder/common/iface/responder_socket_access_tests-responder_ncache.$(OBJEXT) \ + src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.$(OBJEXT) @HAVE_CHECK_TRUE@am_responder_socket_access_tests_OBJECTS = src/tests/responder_socket_access_tests-responder_socket_access-tests.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/responder/common/responder_socket_access_tests-negcache_files.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/responder/common/responder_socket_access_tests-negcache.$(OBJEXT) \ @@ -2500,7 +2608,8 @@ @HAVE_CHECK_TRUE@ src/responder/common/responder_socket_access_tests-responder_packet.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/responder/common/responder_socket_access_tests-responder_cmd.$(OBJEXT) \ @HAVE_CHECK_TRUE@ src/responder/common/data_provider/responder_socket_access_tests-rdp_message.$(OBJEXT) \ -@HAVE_CHECK_TRUE@ src/responder/common/data_provider/responder_socket_access_tests-rdp_client.$(OBJEXT) +@HAVE_CHECK_TRUE@ src/responder/common/data_provider/responder_socket_access_tests-rdp_client.$(OBJEXT) \ +@HAVE_CHECK_TRUE@ $(am__objects_57) responder_socket_access_tests_OBJECTS = \ $(am_responder_socket_access_tests_OBJECTS) @HAVE_CHECK_TRUE@responder_socket_access_tests_DEPENDENCIES = \ @@ -2617,7 +2726,7 @@ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(simple_access_tests_CFLAGS) $(CFLAGS) \ $(simple_access_tests_LDFLAGS) $(LDFLAGS) -o $@ -am__objects_52 = src/tools/sss_cache-sss_sync_ops.$(OBJEXT) \ +am__objects_58 = src/tools/sss_cache-sss_sync_ops.$(OBJEXT) \ src/tools/sss_cache-tools_util.$(OBJEXT) \ src/tools/sss_cache-files.$(OBJEXT) \ src/tools/sss_cache-selinux.$(OBJEXT) \ @@ -2625,10 +2734,10 @@ src/tools/common/sss_cache-sss_process.$(OBJEXT) \ src/confdb/sss_cache-confdb_setup.$(OBJEXT) \ src/util/sss_cache-nscd.$(OBJEXT) -am__objects_53 = src/sss_client/sss_cache-common.$(OBJEXT) \ - src/tools/sss_cache-tools_mc_util.$(OBJEXT) $(am__objects_52) +am__objects_59 = src/sss_client/sss_cache-common.$(OBJEXT) \ + src/tools/sss_cache-tools_mc_util.$(OBJEXT) $(am__objects_58) am_sss_cache_OBJECTS = src/tools/sss_cache-sss_cache.$(OBJEXT) \ - $(am__objects_53) + $(am__objects_59) sss_cache_OBJECTS = $(am_sss_cache_OBJECTS) am__DEPENDENCIES_15 = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @@ -2642,23 +2751,23 @@ sss_cache_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(sss_cache_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ -am__objects_54 = src/tools/sss_sync_ops.$(OBJEXT) \ +am__objects_60 = src/tools/sss_sync_ops.$(OBJEXT) \ src/tools/tools_util.$(OBJEXT) src/tools/files.$(OBJEXT) \ src/tools/selinux.$(OBJEXT) \ src/tools/common/sss_tools.$(OBJEXT) \ src/tools/common/sss_process.$(OBJEXT) \ src/confdb/confdb_setup.$(OBJEXT) src/util/nscd.$(OBJEXT) am_sss_debuglevel_OBJECTS = src/tools/sss_debuglevel.$(OBJEXT) \ - $(am__objects_54) + $(am__objects_60) sss_debuglevel_OBJECTS = $(am_sss_debuglevel_OBJECTS) sss_debuglevel_DEPENDENCIES = $(am__DEPENDENCIES_15) \ $(am__DEPENDENCIES_2) am_sss_groupadd_OBJECTS = src/tools/sss_groupadd.$(OBJEXT) \ - $(am__objects_54) + $(am__objects_60) sss_groupadd_OBJECTS = $(am_sss_groupadd_OBJECTS) sss_groupadd_DEPENDENCIES = $(am__DEPENDENCIES_15) \ $(am__DEPENDENCIES_2) -am__objects_55 = src/tools/sss_groupdel-sss_sync_ops.$(OBJEXT) \ +am__objects_61 = src/tools/sss_groupdel-sss_sync_ops.$(OBJEXT) \ src/tools/sss_groupdel-tools_util.$(OBJEXT) \ src/tools/sss_groupdel-files.$(OBJEXT) \ src/tools/sss_groupdel-selinux.$(OBJEXT) \ @@ -2666,19 +2775,19 @@ src/tools/common/sss_groupdel-sss_process.$(OBJEXT) \ src/confdb/sss_groupdel-confdb_setup.$(OBJEXT) \ src/util/sss_groupdel-nscd.$(OBJEXT) -am__objects_56 = src/sss_client/sss_groupdel-common.$(OBJEXT) \ +am__objects_62 = src/sss_client/sss_groupdel-common.$(OBJEXT) \ src/tools/sss_groupdel-tools_mc_util.$(OBJEXT) \ - $(am__objects_55) + $(am__objects_61) am_sss_groupdel_OBJECTS = \ src/tools/sss_groupdel-sss_groupdel.$(OBJEXT) \ - $(am__objects_56) + $(am__objects_62) sss_groupdel_OBJECTS = $(am_sss_groupdel_OBJECTS) sss_groupdel_DEPENDENCIES = $(am__DEPENDENCIES_15) \ $(am__DEPENDENCIES_2) $(am__DEPENDENCIES_6) sss_groupdel_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(sss_groupdel_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ -am__objects_57 = src/tools/sss_groupmod-sss_sync_ops.$(OBJEXT) \ +am__objects_63 = src/tools/sss_groupmod-sss_sync_ops.$(OBJEXT) \ src/tools/sss_groupmod-tools_util.$(OBJEXT) \ src/tools/sss_groupmod-files.$(OBJEXT) \ src/tools/sss_groupmod-selinux.$(OBJEXT) \ @@ -2686,12 +2795,12 @@ src/tools/common/sss_groupmod-sss_process.$(OBJEXT) \ src/confdb/sss_groupmod-confdb_setup.$(OBJEXT) \ src/util/sss_groupmod-nscd.$(OBJEXT) -am__objects_58 = src/sss_client/sss_groupmod-common.$(OBJEXT) \ +am__objects_64 = src/sss_client/sss_groupmod-common.$(OBJEXT) \ src/tools/sss_groupmod-tools_mc_util.$(OBJEXT) \ - $(am__objects_57) + $(am__objects_63) am_sss_groupmod_OBJECTS = \ src/tools/sss_groupmod-sss_groupmod.$(OBJEXT) \ - $(am__objects_58) + $(am__objects_64) sss_groupmod_OBJECTS = $(am_sss_groupmod_OBJECTS) sss_groupmod_DEPENDENCIES = $(am__DEPENDENCIES_15) \ $(am__DEPENDENCIES_2) $(am__DEPENDENCIES_6) @@ -2699,7 +2808,7 @@ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(sss_groupmod_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ am_sss_groupshow_OBJECTS = src/tools/sss_groupshow.$(OBJEXT) \ - $(am__objects_54) + $(am__objects_60) sss_groupshow_OBJECTS = $(am_sss_groupshow_OBJECTS) sss_groupshow_DEPENDENCIES = $(am__DEPENDENCIES_15) \ $(am__DEPENDENCIES_2) @@ -2724,7 +2833,7 @@ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(sss_nss_idmap_tests_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ -am__objects_59 = src/tools/sss_override-sss_sync_ops.$(OBJEXT) \ +am__objects_65 = src/tools/sss_override-sss_sync_ops.$(OBJEXT) \ src/tools/sss_override-tools_util.$(OBJEXT) \ src/tools/sss_override-files.$(OBJEXT) \ src/tools/sss_override-selinux.$(OBJEXT) \ @@ -2735,14 +2844,14 @@ am_sss_override_OBJECTS = \ src/tools/sss_override-sss_override.$(OBJEXT) \ src/tools/common/sss_override-sss_colondb.$(OBJEXT) \ - $(am__objects_59) + $(am__objects_65) sss_override_OBJECTS = $(am_sss_override_OBJECTS) sss_override_DEPENDENCIES = $(am__DEPENDENCIES_15) \ $(am__DEPENDENCIES_2) sss_override_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(sss_override_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ -am_sss_seed_OBJECTS = src/tools/sss_seed.$(OBJEXT) $(am__objects_54) +am_sss_seed_OBJECTS = src/tools/sss_seed.$(OBJEXT) $(am__objects_60) sss_seed_OBJECTS = $(am_sss_seed_OBJECTS) sss_seed_DEPENDENCIES = $(am__DEPENDENCIES_15) $(am__DEPENDENCIES_2) am__sss_sifp_tests_SOURCES_DIST = src/tests/cmocka/test_sss_sifp.c \ @@ -2769,7 +2878,7 @@ $(sss_sifp_tests_CFLAGS) $(CFLAGS) $(sss_sifp_tests_LDFLAGS) \ $(LDFLAGS) -o $@ am_sss_signal_OBJECTS = src/tools/sss_signal.$(OBJEXT) \ - $(am__objects_54) + $(am__objects_60) sss_signal_OBJECTS = $(am_sss_signal_OBJECTS) sss_signal_DEPENDENCIES = $(am__DEPENDENCIES_15) $(am__DEPENDENCIES_2) am__sss_ssh_authorizedkeys_SOURCES_DIST = src/sss_client/common.c \ @@ -2816,11 +2925,11 @@ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(sss_sudo_cli_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ am_sss_useradd_OBJECTS = src/tools/sss_useradd.$(OBJEXT) \ - $(am__objects_54) + $(am__objects_60) sss_useradd_OBJECTS = $(am_sss_useradd_OBJECTS) sss_useradd_DEPENDENCIES = $(am__DEPENDENCIES_15) \ $(am__DEPENDENCIES_2) libsss_semanage.la -am__objects_60 = src/tools/sss_userdel-sss_sync_ops.$(OBJEXT) \ +am__objects_66 = src/tools/sss_userdel-sss_sync_ops.$(OBJEXT) \ src/tools/sss_userdel-tools_util.$(OBJEXT) \ src/tools/sss_userdel-files.$(OBJEXT) \ src/tools/sss_userdel-selinux.$(OBJEXT) \ @@ -2828,18 +2937,18 @@ src/tools/common/sss_userdel-sss_process.$(OBJEXT) \ src/confdb/sss_userdel-confdb_setup.$(OBJEXT) \ src/util/sss_userdel-nscd.$(OBJEXT) -am__objects_61 = src/sss_client/sss_userdel-common.$(OBJEXT) \ +am__objects_67 = src/sss_client/sss_userdel-common.$(OBJEXT) \ src/tools/sss_userdel-tools_mc_util.$(OBJEXT) \ - $(am__objects_60) + $(am__objects_66) am_sss_userdel_OBJECTS = src/tools/sss_userdel-sss_userdel.$(OBJEXT) \ - $(am__objects_61) + $(am__objects_67) sss_userdel_OBJECTS = $(am_sss_userdel_OBJECTS) sss_userdel_DEPENDENCIES = $(am__DEPENDENCIES_15) \ $(am__DEPENDENCIES_2) $(am__DEPENDENCIES_6) libsss_semanage.la sss_userdel_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(sss_userdel_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ -am__objects_62 = src/tools/sss_usermod-sss_sync_ops.$(OBJEXT) \ +am__objects_68 = src/tools/sss_usermod-sss_sync_ops.$(OBJEXT) \ src/tools/sss_usermod-tools_util.$(OBJEXT) \ src/tools/sss_usermod-files.$(OBJEXT) \ src/tools/sss_usermod-selinux.$(OBJEXT) \ @@ -2847,18 +2956,18 @@ src/tools/common/sss_usermod-sss_process.$(OBJEXT) \ src/confdb/sss_usermod-confdb_setup.$(OBJEXT) \ src/util/sss_usermod-nscd.$(OBJEXT) -am__objects_63 = src/sss_client/sss_usermod-common.$(OBJEXT) \ +am__objects_69 = src/sss_client/sss_usermod-common.$(OBJEXT) \ src/tools/sss_usermod-tools_mc_util.$(OBJEXT) \ - $(am__objects_62) + $(am__objects_68) am_sss_usermod_OBJECTS = src/tools/sss_usermod-sss_usermod.$(OBJEXT) \ - $(am__objects_63) + $(am__objects_69) sss_usermod_OBJECTS = $(am_sss_usermod_OBJECTS) sss_usermod_DEPENDENCIES = $(am__DEPENDENCIES_15) \ $(am__DEPENDENCIES_2) $(am__DEPENDENCIES_6) libsss_semanage.la sss_usermod_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(sss_usermod_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ -am__objects_64 = src/tools/sssctl-sss_sync_ops.$(OBJEXT) \ +am__objects_70 = src/tools/sssctl-sss_sync_ops.$(OBJEXT) \ src/tools/sssctl-tools_util.$(OBJEXT) \ src/tools/sssctl-files.$(OBJEXT) \ src/tools/sssctl-selinux.$(OBJEXT) \ @@ -2874,7 +2983,7 @@ src/tools/sssctl/sssctl-sssctl_domains.$(OBJEXT) \ src/tools/sssctl/sssctl-sssctl_sifp.$(OBJEXT) \ src/tools/sssctl/sssctl-sssctl_config.$(OBJEXT) \ - $(am__objects_64) + $(am__objects_70) sssctl_OBJECTS = $(am_sssctl_OBJECTS) sssctl_DEPENDENCIES = $(am__DEPENDENCIES_15) $(am__DEPENDENCIES_2) \ libsss_simpleifp.la @@ -2885,8 +2994,7 @@ src/monitor/monitor_netlink.$(OBJEXT) \ src/confdb/confdb_setup.$(OBJEXT) \ src/monitor/monitor_iface_generated.$(OBJEXT) \ - src/util/nscd.$(OBJEXT) src/tools/files.$(OBJEXT) \ - src/tools/selinux.$(OBJEXT) + src/util/nscd.$(OBJEXT) src/util/inotify.$(OBJEXT) sssd_OBJECTS = $(am_sssd_OBJECTS) sssd_DEPENDENCIES = $(am__DEPENDENCIES_5) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @@ -2899,6 +3007,7 @@ src/responder/common/responder_cmd.c \ src/responder/common/responder_common.c \ src/responder/common/responder_dp.c \ + src/responder/common/responder_dp_ssh.c \ src/responder/common/responder_packet.c \ src/responder/common/responder_get_domains.c \ src/responder/common/responder_utils.c \ @@ -2906,7 +3015,12 @@ src/responder/common/data_provider/rdp_client.c \ src/monitor/monitor_iface_generated.c \ src/providers/data_provider_req.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -2928,8 +3042,14 @@ src/responder/common/cache_req/plugins/cache_req_object_by_id.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ - src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c -am__objects_65 = src/responder/common/cache_req/cache_req.$(OBJEXT) \ + src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c +am__objects_71 = src/responder/common/iface/responder_iface.$(OBJEXT) \ + src/responder/common/iface/responder_domain.$(OBJEXT) \ + src/responder/common/iface/responder_ncache.$(OBJEXT) \ + src/responder/common/iface/responder_iface_generated.$(OBJEXT) +am__objects_72 = src/responder/common/cache_req/cache_req.$(OBJEXT) \ + src/responder/common/cache_req/cache_req_result.$(OBJEXT) \ src/responder/common/cache_req/cache_req_search.$(OBJEXT) \ src/responder/common/cache_req/cache_req_data.$(OBJEXT) \ src/responder/common/cache_req/plugins/cache_req_common.$(OBJEXT) \ @@ -2951,31 +3071,34 @@ src/responder/common/cache_req/plugins/cache_req_object_by_id.$(OBJEXT) \ src/responder/common/cache_req/plugins/cache_req_svc_by_name.$(OBJEXT) \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.$(OBJEXT) \ - src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.$(OBJEXT) -am__objects_66 = src/responder/common/negcache_files.$(OBJEXT) \ + src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.$(OBJEXT) \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.$(OBJEXT) +am__objects_73 = src/responder/common/negcache_files.$(OBJEXT) \ src/responder/common/negcache.$(OBJEXT) \ src/responder/common/responder_cmd.$(OBJEXT) \ src/responder/common/responder_common.$(OBJEXT) \ src/responder/common/responder_dp.$(OBJEXT) \ + src/responder/common/responder_dp_ssh.$(OBJEXT) \ src/responder/common/responder_packet.$(OBJEXT) \ src/responder/common/responder_get_domains.$(OBJEXT) \ src/responder/common/responder_utils.$(OBJEXT) \ src/responder/common/data_provider/rdp_message.$(OBJEXT) \ src/responder/common/data_provider/rdp_client.$(OBJEXT) \ src/monitor/monitor_iface_generated.$(OBJEXT) \ - src/providers/data_provider_req.$(OBJEXT) $(am__objects_65) + src/providers/data_provider_req.$(OBJEXT) $(am__objects_71) \ + $(am__objects_72) @BUILD_AUTOFS_TRUE@am_sssd_autofs_OBJECTS = \ @BUILD_AUTOFS_TRUE@ src/responder/autofs/autofssrv.$(OBJEXT) \ @BUILD_AUTOFS_TRUE@ src/responder/autofs/autofssrv_cmd.$(OBJEXT) \ @BUILD_AUTOFS_TRUE@ src/responder/autofs/autofssrv_dp.$(OBJEXT) \ -@BUILD_AUTOFS_TRUE@ $(am__objects_66) +@BUILD_AUTOFS_TRUE@ $(am__objects_73) sssd_autofs_OBJECTS = $(am_sssd_autofs_OBJECTS) @BUILD_AUTOFS_TRUE@sssd_autofs_DEPENDENCIES = $(am__DEPENDENCIES_5) \ @BUILD_AUTOFS_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_2) -am__objects_67 = src/resolv/async_resolv.$(OBJEXT) \ +am__objects_74 = src/resolv/async_resolv.$(OBJEXT) \ src/resolv/async_resolv_utils.$(OBJEXT) -am__objects_68 = src/providers/fail_over.$(OBJEXT) \ - src/providers/fail_over_srv.$(OBJEXT) $(am__objects_67) +am__objects_75 = src/providers/fail_over.$(OBJEXT) \ + src/providers/fail_over_srv.$(OBJEXT) $(am__objects_74) am_sssd_be_OBJECTS = src/providers/data_provider_be.$(OBJEXT) \ src/providers/data_provider_req.$(OBJEXT) \ src/providers/data_provider_fo.$(OBJEXT) \ @@ -2994,6 +3117,7 @@ src/providers/data_provider/dp_iface_backend.$(OBJEXT) \ src/providers/data_provider/dp_iface_failover.$(OBJEXT) \ src/providers/data_provider/dp_client.$(OBJEXT) \ + src/providers/data_provider/dp_resp_client.$(OBJEXT) \ src/providers/data_provider/dp_iface_generated.$(OBJEXT) \ src/providers/data_provider/dp_request.$(OBJEXT) \ src/providers/data_provider/dp_request_reply.$(OBJEXT) \ @@ -3005,7 +3129,7 @@ src/providers/data_provider/dp_target_subdomains.$(OBJEXT) \ src/providers/data_provider/dp_target_id.$(OBJEXT) \ src/providers/data_provider/dp_target_auth.$(OBJEXT) \ - $(am__objects_68) + $(am__objects_75) sssd_be_OBJECTS = $(am_sssd_be_OBJECTS) sssd_be_DEPENDENCIES = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_5) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @@ -3013,6 +3137,21 @@ sssd_be_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(AM_CFLAGS) $(CFLAGS) \ $(sssd_be_LDFLAGS) $(LDFLAGS) -o $@ +am__sssd_check_socket_activated_responders_SOURCES_DIST = \ + src/tools/sssd_check_socket_activated_responders.c +@HAVE_SYSTEMD_UNIT_TRUE@am_sssd_check_socket_activated_responders_OBJECTS = src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.$(OBJEXT) +sssd_check_socket_activated_responders_OBJECTS = \ + $(am_sssd_check_socket_activated_responders_OBJECTS) +@HAVE_SYSTEMD_UNIT_TRUE@sssd_check_socket_activated_responders_DEPENDENCIES = \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(am__DEPENDENCIES_2) \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(am__DEPENDENCIES_1) \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(am__DEPENDENCIES_1) \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(am__DEPENDENCIES_1) \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(am__DEPENDENCIES_1) +sssd_check_socket_activated_responders_LINK = $(LIBTOOL) $(AM_V_lt) \ + --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link \ + $(CCLD) $(sssd_check_socket_activated_responders_CFLAGS) \ + $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ am__sssd_ifp_SOURCES_DIST = src/responder/ifp/ifpsrv.c \ src/responder/ifp/ifpsrv_cmd.c \ src/responder/ifp/ifp_iface_generated.c \ @@ -3028,6 +3167,7 @@ src/responder/common/responder_cmd.c \ src/responder/common/responder_common.c \ src/responder/common/responder_dp.c \ + src/responder/common/responder_dp_ssh.c \ src/responder/common/responder_packet.c \ src/responder/common/responder_get_domains.c \ src/responder/common/responder_utils.c \ @@ -3035,7 +3175,12 @@ src/responder/common/data_provider/rdp_client.c \ src/monitor/monitor_iface_generated.c \ src/providers/data_provider_req.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -3057,9 +3202,16 @@ src/responder/common/cache_req/plugins/cache_req_object_by_id.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ - src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c -am__objects_69 = \ + src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c +am__objects_76 = \ + src/responder/common/iface/sssd_ifp-responder_iface.$(OBJEXT) \ + src/responder/common/iface/sssd_ifp-responder_domain.$(OBJEXT) \ + src/responder/common/iface/sssd_ifp-responder_ncache.$(OBJEXT) \ + src/responder/common/iface/sssd_ifp-responder_iface_generated.$(OBJEXT) +am__objects_77 = \ src/responder/common/cache_req/sssd_ifp-cache_req.$(OBJEXT) \ + src/responder/common/cache_req/sssd_ifp-cache_req_result.$(OBJEXT) \ src/responder/common/cache_req/sssd_ifp-cache_req_search.$(OBJEXT) \ src/responder/common/cache_req/sssd_ifp-cache_req_data.$(OBJEXT) \ src/responder/common/cache_req/plugins/sssd_ifp-cache_req_common.$(OBJEXT) \ @@ -3081,13 +3233,15 @@ src/responder/common/cache_req/plugins/sssd_ifp-cache_req_object_by_id.$(OBJEXT) \ src/responder/common/cache_req/plugins/sssd_ifp-cache_req_svc_by_name.$(OBJEXT) \ src/responder/common/cache_req/plugins/sssd_ifp-cache_req_svc_by_port.$(OBJEXT) \ - src/responder/common/cache_req/plugins/sssd_ifp-cache_req_netgroup_by_name.$(OBJEXT) -am__objects_70 = \ + src/responder/common/cache_req/plugins/sssd_ifp-cache_req_netgroup_by_name.$(OBJEXT) \ + src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.$(OBJEXT) +am__objects_78 = \ src/responder/common/sssd_ifp-negcache_files.$(OBJEXT) \ src/responder/common/sssd_ifp-negcache.$(OBJEXT) \ src/responder/common/sssd_ifp-responder_cmd.$(OBJEXT) \ src/responder/common/sssd_ifp-responder_common.$(OBJEXT) \ src/responder/common/sssd_ifp-responder_dp.$(OBJEXT) \ + src/responder/common/sssd_ifp-responder_dp_ssh.$(OBJEXT) \ src/responder/common/sssd_ifp-responder_packet.$(OBJEXT) \ src/responder/common/sssd_ifp-responder_get_domains.$(OBJEXT) \ src/responder/common/sssd_ifp-responder_utils.$(OBJEXT) \ @@ -3095,7 +3249,7 @@ src/responder/common/data_provider/sssd_ifp-rdp_client.$(OBJEXT) \ src/monitor/sssd_ifp-monitor_iface_generated.$(OBJEXT) \ src/providers/sssd_ifp-data_provider_req.$(OBJEXT) \ - $(am__objects_69) + $(am__objects_76) $(am__objects_77) @BUILD_IFP_TRUE@am_sssd_ifp_OBJECTS = \ @BUILD_IFP_TRUE@ src/responder/ifp/sssd_ifp-ifpsrv.$(OBJEXT) \ @BUILD_IFP_TRUE@ src/responder/ifp/sssd_ifp-ifpsrv_cmd.$(OBJEXT) \ @@ -3108,7 +3262,7 @@ @BUILD_IFP_TRUE@ src/responder/ifp/sssd_ifp-ifp_users.$(OBJEXT) \ @BUILD_IFP_TRUE@ src/responder/ifp/sssd_ifp-ifp_groups.$(OBJEXT) \ @BUILD_IFP_TRUE@ src/responder/ifp/sssd_ifp-ifp_cache.$(OBJEXT) \ -@BUILD_IFP_TRUE@ $(am__objects_70) +@BUILD_IFP_TRUE@ $(am__objects_78) sssd_ifp_OBJECTS = $(am_sssd_ifp_OBJECTS) @BUILD_IFP_TRUE@sssd_ifp_DEPENDENCIES = $(am__DEPENDENCIES_5) \ @BUILD_IFP_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_2) \ @@ -3130,13 +3284,19 @@ src/responder/nss/nss_iface_generated.$(OBJEXT) \ src/responder/nss/nss_iface.$(OBJEXT) \ src/responder/nss/nsssrv_mmap_cache.$(OBJEXT) \ - $(am__objects_66) + $(am__objects_73) sssd_nss_OBJECTS = $(am_sssd_nss_OBJECTS) sssd_nss_DEPENDENCIES = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_5) \ libsss_idmap.la libsss_cert.la $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_2) -am__objects_71 = \ +am__objects_79 = \ + src/responder/common/iface/sssd_pac-responder_iface.$(OBJEXT) \ + src/responder/common/iface/sssd_pac-responder_domain.$(OBJEXT) \ + src/responder/common/iface/sssd_pac-responder_ncache.$(OBJEXT) \ + src/responder/common/iface/sssd_pac-responder_iface_generated.$(OBJEXT) +am__objects_80 = \ src/responder/common/cache_req/sssd_pac-cache_req.$(OBJEXT) \ + src/responder/common/cache_req/sssd_pac-cache_req_result.$(OBJEXT) \ src/responder/common/cache_req/sssd_pac-cache_req_search.$(OBJEXT) \ src/responder/common/cache_req/sssd_pac-cache_req_data.$(OBJEXT) \ src/responder/common/cache_req/plugins/sssd_pac-cache_req_common.$(OBJEXT) \ @@ -3158,13 +3318,15 @@ src/responder/common/cache_req/plugins/sssd_pac-cache_req_object_by_id.$(OBJEXT) \ src/responder/common/cache_req/plugins/sssd_pac-cache_req_svc_by_name.$(OBJEXT) \ src/responder/common/cache_req/plugins/sssd_pac-cache_req_svc_by_port.$(OBJEXT) \ - src/responder/common/cache_req/plugins/sssd_pac-cache_req_netgroup_by_name.$(OBJEXT) -am__objects_72 = \ + src/responder/common/cache_req/plugins/sssd_pac-cache_req_netgroup_by_name.$(OBJEXT) \ + src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.$(OBJEXT) +am__objects_81 = \ src/responder/common/sssd_pac-negcache_files.$(OBJEXT) \ src/responder/common/sssd_pac-negcache.$(OBJEXT) \ src/responder/common/sssd_pac-responder_cmd.$(OBJEXT) \ src/responder/common/sssd_pac-responder_common.$(OBJEXT) \ src/responder/common/sssd_pac-responder_dp.$(OBJEXT) \ + src/responder/common/sssd_pac-responder_dp_ssh.$(OBJEXT) \ src/responder/common/sssd_pac-responder_packet.$(OBJEXT) \ src/responder/common/sssd_pac-responder_get_domains.$(OBJEXT) \ src/responder/common/sssd_pac-responder_utils.$(OBJEXT) \ @@ -3172,11 +3334,11 @@ src/responder/common/data_provider/sssd_pac-rdp_client.$(OBJEXT) \ src/monitor/sssd_pac-monitor_iface_generated.$(OBJEXT) \ src/providers/sssd_pac-data_provider_req.$(OBJEXT) \ - $(am__objects_71) + $(am__objects_79) $(am__objects_80) am_sssd_pac_OBJECTS = src/responder/pac/sssd_pac-pacsrv.$(OBJEXT) \ src/responder/pac/sssd_pac-pacsrv_cmd.$(OBJEXT) \ src/providers/ad/sssd_pac-ad_pac_common.$(OBJEXT) \ - $(am__objects_72) + $(am__objects_81) sssd_pac_OBJECTS = $(am_sssd_pac_OBJECTS) sssd_pac_DEPENDENCIES = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_5) $(am__DEPENDENCIES_1) libsss_idmap.la \ @@ -3189,7 +3351,7 @@ src/responder/pam/pamsrv_cmd.$(OBJEXT) \ src/responder/pam/pamsrv_p11.$(OBJEXT) \ src/responder/pam/pamsrv_dp.$(OBJEXT) \ - src/responder/pam/pam_helpers.$(OBJEXT) $(am__objects_66) + src/responder/pam/pam_helpers.$(OBJEXT) $(am__objects_73) sssd_pam_OBJECTS = $(am_sssd_pam_OBJECTS) sssd_pam_DEPENDENCIES = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_5) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @@ -3203,6 +3365,7 @@ src/responder/common/responder_cmd.c \ src/responder/common/responder_common.c \ src/responder/common/responder_dp.c \ + src/responder/common/responder_dp_ssh.c \ src/responder/common/responder_packet.c \ src/responder/common/responder_get_domains.c \ src/responder/common/responder_utils.c \ @@ -3210,7 +3373,12 @@ src/responder/common/data_provider/rdp_client.c \ src/monitor/monitor_iface_generated.c \ src/providers/data_provider_req.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -3233,6 +3401,7 @@ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ src/resolv/async_resolv.c src/resolv/async_resolv_utils.c @BUILD_SECRETS_TRUE@am_sssd_secrets_OBJECTS = \ @BUILD_SECRETS_TRUE@ src/responder/secrets/secsrv.$(OBJEXT) \ @@ -3241,7 +3410,7 @@ @BUILD_SECRETS_TRUE@ src/responder/secrets/local.$(OBJEXT) \ @BUILD_SECRETS_TRUE@ src/responder/secrets/proxy.$(OBJEXT) \ @BUILD_SECRETS_TRUE@ src/util/sss_sockets.$(OBJEXT) \ -@BUILD_SECRETS_TRUE@ $(am__objects_66) $(am__objects_67) +@BUILD_SECRETS_TRUE@ $(am__objects_73) $(am__objects_74) sssd_secrets_OBJECTS = $(am_sssd_secrets_OBJECTS) @BUILD_SECRETS_TRUE@sssd_secrets_DEPENDENCIES = $(am__DEPENDENCIES_1) \ @BUILD_SECRETS_TRUE@ $(am__DEPENDENCIES_1) \ @@ -3251,12 +3420,15 @@ @BUILD_SECRETS_TRUE@ $(am__DEPENDENCIES_1) \ @BUILD_SECRETS_TRUE@ $(am__DEPENDENCIES_2) am__sssd_ssh_SOURCES_DIST = src/responder/ssh/sshsrv.c \ - src/responder/ssh/sshsrv_dp.c src/responder/ssh/sshsrv_cmd.c \ + src/responder/ssh/ssh_cmd.c \ + src/responder/ssh/ssh_known_hosts.c \ + src/responder/ssh/ssh_protocol.c src/responder/ssh/ssh_reply.c \ src/responder/common/negcache_files.c \ src/responder/common/negcache.c \ src/responder/common/responder_cmd.c \ src/responder/common/responder_common.c \ src/responder/common/responder_dp.c \ + src/responder/common/responder_dp_ssh.c \ src/responder/common/responder_packet.c \ src/responder/common/responder_get_domains.c \ src/responder/common/responder_utils.c \ @@ -3264,7 +3436,12 @@ src/responder/common/data_provider/rdp_client.c \ src/monitor/monitor_iface_generated.c \ src/providers/data_provider_req.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -3286,12 +3463,15 @@ src/responder/common/cache_req/plugins/cache_req_object_by_id.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ - src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c + src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c @BUILD_SSH_TRUE@am_sssd_ssh_OBJECTS = \ @BUILD_SSH_TRUE@ src/responder/ssh/sshsrv.$(OBJEXT) \ -@BUILD_SSH_TRUE@ src/responder/ssh/sshsrv_dp.$(OBJEXT) \ -@BUILD_SSH_TRUE@ src/responder/ssh/sshsrv_cmd.$(OBJEXT) \ -@BUILD_SSH_TRUE@ $(am__objects_66) +@BUILD_SSH_TRUE@ src/responder/ssh/ssh_cmd.$(OBJEXT) \ +@BUILD_SSH_TRUE@ src/responder/ssh/ssh_known_hosts.$(OBJEXT) \ +@BUILD_SSH_TRUE@ src/responder/ssh/ssh_protocol.$(OBJEXT) \ +@BUILD_SSH_TRUE@ src/responder/ssh/ssh_reply.$(OBJEXT) \ +@BUILD_SSH_TRUE@ $(am__objects_73) sssd_ssh_OBJECTS = $(am_sssd_ssh_OBJECTS) @BUILD_SSH_TRUE@sssd_ssh_DEPENDENCIES = $(am__DEPENDENCIES_5) \ @BUILD_SSH_TRUE@ $(am__DEPENDENCIES_2) $(am__DEPENDENCIES_1) \ @@ -3306,6 +3486,7 @@ src/responder/common/responder_cmd.c \ src/responder/common/responder_common.c \ src/responder/common/responder_dp.c \ + src/responder/common/responder_dp_ssh.c \ src/responder/common/responder_packet.c \ src/responder/common/responder_get_domains.c \ src/responder/common/responder_utils.c \ @@ -3313,7 +3494,12 @@ src/responder/common/data_provider/rdp_client.c \ src/monitor/monitor_iface_generated.c \ src/providers/data_provider_req.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -3335,14 +3521,15 @@ src/responder/common/cache_req/plugins/cache_req_object_by_id.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ - src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c + src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c @BUILD_SUDO_TRUE@am_sssd_sudo_OBJECTS = \ @BUILD_SUDO_TRUE@ src/responder/sudo/sudosrv.$(OBJEXT) \ @BUILD_SUDO_TRUE@ src/responder/sudo/sudosrv_cmd.$(OBJEXT) \ @BUILD_SUDO_TRUE@ src/responder/sudo/sudosrv_get_sudorules.$(OBJEXT) \ @BUILD_SUDO_TRUE@ src/responder/sudo/sudosrv_query.$(OBJEXT) \ @BUILD_SUDO_TRUE@ src/responder/sudo/sudosrv_dp.$(OBJEXT) \ -@BUILD_SUDO_TRUE@ $(am__objects_66) +@BUILD_SUDO_TRUE@ $(am__objects_73) sssd_sudo_OBJECTS = $(am_sssd_sudo_OBJECTS) @BUILD_SUDO_TRUE@sssd_sudo_DEPENDENCIES = $(am__DEPENDENCIES_5) \ @BUILD_SUDO_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_2) @@ -3382,6 +3569,20 @@ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(sysdb_ssh_tests_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) \ -o $@ +am__tcurl_test_tool_SOURCES_DIST = src/tests/tcurl_test_tool.c \ + src/util/tev_curl.c src/util/sss_iobuf.c +@BUILD_WITH_LIBCURL_TRUE@am_tcurl_test_tool_OBJECTS = src/tests/tcurl_test_tool-tcurl_test_tool.$(OBJEXT) \ +@BUILD_WITH_LIBCURL_TRUE@ src/util/tcurl_test_tool-tev_curl.$(OBJEXT) \ +@BUILD_WITH_LIBCURL_TRUE@ src/util/tcurl_test_tool-sss_iobuf.$(OBJEXT) +tcurl_test_tool_OBJECTS = $(am_tcurl_test_tool_OBJECTS) +@BUILD_WITH_LIBCURL_TRUE@tcurl_test_tool_DEPENDENCIES = \ +@BUILD_WITH_LIBCURL_TRUE@ $(am__DEPENDENCIES_1) \ +@BUILD_WITH_LIBCURL_TRUE@ $(am__DEPENDENCIES_5) \ +@BUILD_WITH_LIBCURL_TRUE@ $(am__DEPENDENCIES_2) +tcurl_test_tool_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ + $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ + $(tcurl_test_tool_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) \ + -o $@ am__test_authtok_SOURCES_DIST = src/tests/cmocka/test_authtok.c \ src/util/authtok.c src/util/authtok-utils.c src/util/util.c @HAVE_CMOCKA_TRUE@am_test_authtok_OBJECTS = src/tests/cmocka/test_authtok-test_authtok.$(OBJEXT) \ @@ -3426,6 +3627,7 @@ src/responder/common/responder_cmd.c \ src/responder/common/responder_common.c \ src/responder/common/responder_dp.c \ + src/responder/common/responder_dp_ssh.c \ src/responder/common/responder_packet.c \ src/responder/common/responder_get_domains.c \ src/responder/common/responder_utils.c \ @@ -3433,7 +3635,12 @@ src/responder/common/data_provider/rdp_client.c \ src/monitor/monitor_iface_generated.c \ src/providers/data_provider_req.c \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -3456,9 +3663,15 @@ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ src/tests/cmocka/common_mock_resp.c \ src/tests/cmocka/test_negcache.c -am__objects_73 = src/responder/common/cache_req/test_negcache-cache_req.$(OBJEXT) \ +am__objects_82 = src/responder/common/iface/test_negcache-responder_iface.$(OBJEXT) \ + src/responder/common/iface/test_negcache-responder_domain.$(OBJEXT) \ + src/responder/common/iface/test_negcache-responder_ncache.$(OBJEXT) \ + src/responder/common/iface/test_negcache-responder_iface_generated.$(OBJEXT) +am__objects_83 = src/responder/common/cache_req/test_negcache-cache_req.$(OBJEXT) \ + src/responder/common/cache_req/test_negcache-cache_req_result.$(OBJEXT) \ src/responder/common/cache_req/test_negcache-cache_req_search.$(OBJEXT) \ src/responder/common/cache_req/test_negcache-cache_req_data.$(OBJEXT) \ src/responder/common/cache_req/plugins/test_negcache-cache_req_common.$(OBJEXT) \ @@ -3480,13 +3693,15 @@ src/responder/common/cache_req/plugins/test_negcache-cache_req_object_by_id.$(OBJEXT) \ src/responder/common/cache_req/plugins/test_negcache-cache_req_svc_by_name.$(OBJEXT) \ src/responder/common/cache_req/plugins/test_negcache-cache_req_svc_by_port.$(OBJEXT) \ - src/responder/common/cache_req/plugins/test_negcache-cache_req_netgroup_by_name.$(OBJEXT) -am__objects_74 = \ + src/responder/common/cache_req/plugins/test_negcache-cache_req_netgroup_by_name.$(OBJEXT) \ + src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.$(OBJEXT) +am__objects_84 = \ src/responder/common/test_negcache-negcache_files.$(OBJEXT) \ src/responder/common/test_negcache-negcache.$(OBJEXT) \ src/responder/common/test_negcache-responder_cmd.$(OBJEXT) \ src/responder/common/test_negcache-responder_common.$(OBJEXT) \ src/responder/common/test_negcache-responder_dp.$(OBJEXT) \ + src/responder/common/test_negcache-responder_dp_ssh.$(OBJEXT) \ src/responder/common/test_negcache-responder_packet.$(OBJEXT) \ src/responder/common/test_negcache-responder_get_domains.$(OBJEXT) \ src/responder/common/test_negcache-responder_utils.$(OBJEXT) \ @@ -3494,8 +3709,8 @@ src/responder/common/data_provider/test_negcache-rdp_client.$(OBJEXT) \ src/monitor/test_negcache-monitor_iface_generated.$(OBJEXT) \ src/providers/test_negcache-data_provider_req.$(OBJEXT) \ - $(am__objects_73) -@HAVE_CMOCKA_TRUE@am_test_negcache_OBJECTS = $(am__objects_74) \ + $(am__objects_82) $(am__objects_83) +@HAVE_CMOCKA_TRUE@am_test_negcache_OBJECTS = $(am__objects_84) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_negcache-common_mock_resp.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_negcache-test_negcache.$(OBJEXT) test_negcache_OBJECTS = $(am_test_negcache_OBJECTS) @@ -3565,10 +3780,12 @@ $(test_child_common_LDFLAGS) $(LDFLAGS) -o $@ am__test_copy_ccache_SOURCES_DIST = \ src/tests/cmocka/test_copy_ccache.c \ - src/providers/krb5/krb5_ccache.c src/util/sss_krb5.c + src/providers/krb5/krb5_ccache.c src/util/sss_krb5.c \ + src/util/sss_iobuf.c @HAVE_CMOCKA_TRUE@am_test_copy_ccache_OBJECTS = src/tests/cmocka/test_copy_ccache-test_copy_ccache.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/providers/krb5/test_copy_ccache-krb5_ccache.$(OBJEXT) \ -@HAVE_CMOCKA_TRUE@ src/util/test_copy_ccache-sss_krb5.$(OBJEXT) +@HAVE_CMOCKA_TRUE@ src/util/test_copy_ccache-sss_krb5.$(OBJEXT) \ +@HAVE_CMOCKA_TRUE@ src/util/test_copy_ccache-sss_iobuf.$(OBJEXT) test_copy_ccache_OBJECTS = $(am_test_copy_ccache_OBJECTS) @HAVE_CMOCKA_TRUE@test_copy_ccache_DEPENDENCIES = \ @HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @@ -3581,11 +3798,13 @@ am__test_copy_keytab_SOURCES_DIST = \ src/tests/cmocka/common_mock_krb5.c \ src/tests/cmocka/test_copy_keytab.c \ - src/providers/krb5/krb5_keytab.c src/util/sss_krb5.c + src/providers/krb5/krb5_keytab.c src/util/sss_krb5.c \ + src/util/sss_iobuf.c @HAVE_CMOCKA_TRUE@am_test_copy_keytab_OBJECTS = src/tests/cmocka/test_copy_keytab-common_mock_krb5.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_copy_keytab-test_copy_keytab.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/providers/krb5/test_copy_keytab-krb5_keytab.$(OBJEXT) \ -@HAVE_CMOCKA_TRUE@ src/util/test_copy_keytab-sss_krb5.$(OBJEXT) +@HAVE_CMOCKA_TRUE@ src/util/test_copy_keytab-sss_krb5.$(OBJEXT) \ +@HAVE_CMOCKA_TRUE@ src/util/test_copy_keytab-sss_iobuf.$(OBJEXT) test_copy_keytab_OBJECTS = $(am_test_copy_keytab_OBJECTS) @HAVE_CMOCKA_TRUE@test_copy_keytab_DEPENDENCIES = \ @HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @@ -3688,6 +3907,29 @@ test_fo_srv_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(test_fo_srv_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ +am__test_inotify_SOURCES_DIST = src/util/inotify.c \ + src/tests/cmocka/test_inotify.c +@HAVE_CMOCKA_TRUE@am_test_inotify_OBJECTS = \ +@HAVE_CMOCKA_TRUE@ src/util/test_inotify-inotify.$(OBJEXT) \ +@HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_inotify-test_inotify.$(OBJEXT) +test_inotify_OBJECTS = $(am_test_inotify_OBJECTS) +@HAVE_CMOCKA_TRUE@test_inotify_DEPENDENCIES = $(am__DEPENDENCIES_1) \ +@HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_5) $(am__DEPENDENCIES_2) \ +@HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_1) libsss_test_common.la +test_inotify_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ + $(LIBTOOLFLAGS) --mode=link $(CCLD) $(test_inotify_CFLAGS) \ + $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ +am__test_iobuf_SOURCES_DIST = src/util/sss_iobuf.c \ + src/tests/cmocka/test_iobuf.c +@HAVE_CMOCKA_TRUE@am_test_iobuf_OBJECTS = \ +@HAVE_CMOCKA_TRUE@ src/util/test_iobuf-sss_iobuf.$(OBJEXT) \ +@HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_iobuf-test_iobuf.$(OBJEXT) +test_iobuf_OBJECTS = $(am_test_iobuf_OBJECTS) +@HAVE_CMOCKA_TRUE@test_iobuf_DEPENDENCIES = $(am__DEPENDENCIES_1) \ +@HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_5) +test_iobuf_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ + $(LIBTOOLFLAGS) --mode=link $(CCLD) $(test_iobuf_CFLAGS) \ + $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ am__test_ipa_dn_SOURCES_DIST = src/providers/ipa/ipa_dn.c \ src/tests/cmocka/test_ipa_dn.c @HAVE_CMOCKA_TRUE@am_test_ipa_dn_OBJECTS = src/providers/ipa/test_ipa_dn-ipa_dn.$(OBJEXT) \ @@ -3722,14 +3964,15 @@ src/providers/krb5/krb5_child_handler.c \ src/providers/krb5/krb5_init_shared.c \ src/providers/krb5/krb5_ccache.c src/util/sss_krb5.c \ - src/util/become_user.c src/tests/cmocka/common_mock_sdap.c \ + src/util/sss_iobuf.c src/util/become_user.c \ + src/tests/cmocka/common_mock_sdap.c \ src/tests/cmocka/common_mock_be.c \ src/tests/cmocka/common_mock_krb5.c \ src/tests/cmocka/test_ipa_subdomains_server.c \ src/providers/ipa/ipa_subdomains_server.c \ src/providers/ipa/ipa_subdomains_utils.c \ src/providers/ipa/ipa_opts.c -am__objects_75 = src/providers/krb5/test_ipa_subdom_server-krb5_utils.$(OBJEXT) \ +am__objects_85 = src/providers/krb5/test_ipa_subdom_server-krb5_utils.$(OBJEXT) \ src/providers/krb5/test_ipa_subdom_server-krb5_delayed_online_authentication.$(OBJEXT) \ src/providers/krb5/test_ipa_subdom_server-krb5_renew_tgt.$(OBJEXT) \ src/providers/krb5/test_ipa_subdom_server-krb5_wait_queue.$(OBJEXT) \ @@ -3741,9 +3984,10 @@ src/providers/krb5/test_ipa_subdom_server-krb5_init_shared.$(OBJEXT) \ src/providers/krb5/test_ipa_subdom_server-krb5_ccache.$(OBJEXT) \ src/util/test_ipa_subdom_server-sss_krb5.$(OBJEXT) \ + src/util/test_ipa_subdom_server-sss_iobuf.$(OBJEXT) \ src/util/test_ipa_subdom_server-become_user.$(OBJEXT) @HAVE_CMOCKA_TRUE@am_test_ipa_subdom_server_OBJECTS = \ -@HAVE_CMOCKA_TRUE@ $(am__objects_75) \ +@HAVE_CMOCKA_TRUE@ $(am__objects_85) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_ipa_subdom_server-common_mock_sdap.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_ipa_subdom_server-common_mock_be.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_ipa_subdom_server-common_mock_krb5.$(OBJEXT) \ @@ -3852,6 +4096,25 @@ @HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @HAVE_CMOCKA_TRUE@ libsss_ldap_common.la libsss_test_common.la \ @HAVE_CMOCKA_TRUE@ libdlopen_test_providers.la +am__test_sdap_initgr_SOURCES_DIST = \ + src/tests/cmocka/common_mock_sdap.c \ + src/tests/cmocka/common_mock_sysdb_objects.c \ + src/tests/cmocka/test_sdap_initgr.c +@HAVE_CMOCKA_TRUE@am_test_sdap_initgr_OBJECTS = src/tests/cmocka/test_sdap_initgr-common_mock_sdap.$(OBJEXT) \ +@HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.$(OBJEXT) \ +@HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.$(OBJEXT) +test_sdap_initgr_OBJECTS = $(am_test_sdap_initgr_OBJECTS) +@HAVE_CMOCKA_TRUE@test_sdap_initgr_DEPENDENCIES = \ +@HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ +@HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ +@HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ +@HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_2) libsss_ldap_common.la \ +@HAVE_CMOCKA_TRUE@ libsss_test_common.la \ +@HAVE_CMOCKA_TRUE@ libdlopen_test_providers.la +test_sdap_initgr_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ + $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ + $(test_sdap_initgr_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) \ + -o $@ am__test_search_bases_SOURCES_DIST = \ src/tests/cmocka/test_search_bases.c @HAVE_CMOCKA_TRUE@am_test_search_bases_OBJECTS = src/tests/cmocka/test_search_bases.$(OBJEXT) @@ -3973,9 +4236,10 @@ @HAVE_CMOCKA_TRUE@ src/sss_client/libwbclient/test_wbc_calls-wbc_sid_common.$(OBJEXT) \ @HAVE_CMOCKA_TRUE@ src/sss_client/test_wbc_calls-common.$(OBJEXT) test_wbc_calls_OBJECTS = $(am_test_wbc_calls_OBJECTS) -@HAVE_CMOCKA_TRUE@test_wbc_calls_DEPENDENCIES = $(am__DEPENDENCIES_1) \ +@HAVE_CMOCKA_TRUE@test_wbc_calls_DEPENDENCIES = $(am__DEPENDENCIES_6) \ @HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ -@HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_2) libsss_test_common.la +@HAVE_CMOCKA_TRUE@ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_2) \ +@HAVE_CMOCKA_TRUE@ libsss_test_common.la test_wbc_calls_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(test_wbc_calls_CFLAGS) $(CFLAGS) $(test_wbc_calls_LDFLAGS) \ @@ -4038,10 +4302,10 @@ $(libsss_ad_la_SOURCES) $(libsss_ad_tests_la_SOURCES) \ $(libsss_autofs_la_SOURCES) $(libsss_cert_la_SOURCES) \ $(libsss_child_la_SOURCES) $(libsss_crypt_la_SOURCES) \ - $(libsss_debug_la_SOURCES) $(libsss_idmap_la_SOURCES) \ - $(libsss_ipa_la_SOURCES) $(libsss_krb5_la_SOURCES) \ - $(libsss_krb5_common_la_SOURCES) $(libsss_ldap_la_SOURCES) \ - $(libsss_ldap_common_la_SOURCES) \ + $(libsss_debug_la_SOURCES) $(libsss_files_la_SOURCES) \ + $(libsss_idmap_la_SOURCES) $(libsss_ipa_la_SOURCES) \ + $(libsss_krb5_la_SOURCES) $(libsss_krb5_common_la_SOURCES) \ + $(libsss_ldap_la_SOURCES) $(libsss_ldap_common_la_SOURCES) \ $(libsss_nss_idmap_la_SOURCES) \ $(libsss_nss_idmap_tests_la_SOURCES) \ $(libsss_proxy_la_SOURCES) $(libsss_semanage_la_SOURCES) \ @@ -4085,12 +4349,14 @@ $(sss_ssh_knownhostsproxy_SOURCES) $(sss_sudo_cli_SOURCES) \ $(sss_useradd_SOURCES) $(sss_userdel_SOURCES) \ $(sss_usermod_SOURCES) $(sssctl_SOURCES) $(sssd_SOURCES) \ - $(sssd_autofs_SOURCES) $(sssd_be_SOURCES) $(sssd_ifp_SOURCES) \ - $(sssd_nss_SOURCES) $(sssd_pac_SOURCES) $(sssd_pam_SOURCES) \ - $(sssd_secrets_SOURCES) $(sssd_ssh_SOURCES) \ - $(sssd_sudo_SOURCES) $(stress_tests_SOURCES) \ - $(strtonum_tests_SOURCES) $(sysdb_tests_SOURCES) \ - $(sysdb_ssh_tests_SOURCES) $(test_authtok_SOURCES) \ + $(sssd_autofs_SOURCES) $(sssd_be_SOURCES) \ + $(sssd_check_socket_activated_responders_SOURCES) \ + $(sssd_ifp_SOURCES) $(sssd_nss_SOURCES) $(sssd_pac_SOURCES) \ + $(sssd_pam_SOURCES) $(sssd_secrets_SOURCES) \ + $(sssd_ssh_SOURCES) $(sssd_sudo_SOURCES) \ + $(stress_tests_SOURCES) $(strtonum_tests_SOURCES) \ + $(sysdb_tests_SOURCES) $(sysdb_ssh_tests_SOURCES) \ + $(tcurl_test_tool_SOURCES) $(test_authtok_SOURCES) \ $(test_find_uid_SOURCES) $(test_io_SOURCES) \ $(test_negcache_SOURCES) $(test_ad_subdom_SOURCES) \ $(test_be_ptask_SOURCES) $(test_cert_utils_SOURCES) \ @@ -4098,18 +4364,19 @@ $(test_copy_keytab_SOURCES) $(test_data_provider_be_SOURCES) \ $(test_dp_builtin_SOURCES) $(test_dp_request_SOURCES) \ $(test_dp_request_table_SOURCES) $(test_fo_srv_SOURCES) \ + $(test_inotify_SOURCES) $(test_iobuf_SOURCES) \ $(test_ipa_dn_SOURCES) $(test_ipa_idmap_SOURCES) \ $(test_ipa_subdom_server_SOURCES) \ $(test_ipa_subdom_util_SOURCES) \ $(test_krb5_wait_queue_SOURCES) $(test_ldap_auth_SOURCES) \ $(test_ldap_id_cleanup_SOURCES) $(test_resolv_fake_SOURCES) \ $(test_sbus_opath_SOURCES) $(test_sdap_access_SOURCES) \ - $(test_search_bases_SOURCES) $(test_sss_idmap_SOURCES) \ - $(test_sysdb_subdomains_SOURCES) $(test_sysdb_sudo_SOURCES) \ - $(test_sysdb_ts_cache_SOURCES) $(test_sysdb_utils_SOURCES) \ - $(test_sysdb_views_SOURCES) $(test_tools_colondb_SOURCES) \ - $(test_utils_SOURCES) $(test_wbc_calls_SOURCES) \ - $(util_tests_SOURCES) + $(test_sdap_initgr_SOURCES) $(test_search_bases_SOURCES) \ + $(test_sss_idmap_SOURCES) $(test_sysdb_subdomains_SOURCES) \ + $(test_sysdb_sudo_SOURCES) $(test_sysdb_ts_cache_SOURCES) \ + $(test_sysdb_utils_SOURCES) $(test_sysdb_views_SOURCES) \ + $(test_tools_colondb_SOURCES) $(test_utils_SOURCES) \ + $(test_wbc_calls_SOURCES) $(util_tests_SOURCES) DIST_SOURCES = $(_py2hbac_la_SOURCES) $(_py2sss_la_SOURCES) \ $(_py2sss_murmur_la_SOURCES) $(_py2sss_nss_idmap_la_SOURCES) \ $(_py3hbac_la_SOURCES) $(_py3sss_la_SOURCES) \ @@ -4123,9 +4390,9 @@ $(am__libsss_autofs_la_SOURCES_DIST) \ $(am__libsss_cert_la_SOURCES_DIST) $(libsss_child_la_SOURCES) \ $(am__libsss_crypt_la_SOURCES_DIST) $(libsss_debug_la_SOURCES) \ - $(libsss_idmap_la_SOURCES) $(am__libsss_ipa_la_SOURCES_DIST) \ - $(libsss_krb5_la_SOURCES) $(libsss_krb5_common_la_SOURCES) \ - $(libsss_ldap_la_SOURCES) \ + $(libsss_files_la_SOURCES) $(libsss_idmap_la_SOURCES) \ + $(am__libsss_ipa_la_SOURCES_DIST) $(libsss_krb5_la_SOURCES) \ + $(libsss_krb5_common_la_SOURCES) $(libsss_ldap_la_SOURCES) \ $(am__libsss_ldap_common_la_SOURCES_DIST) \ $(libsss_nss_idmap_la_SOURCES) \ $(am__libsss_nss_idmap_tests_la_SOURCES_DIST) \ @@ -4190,6 +4457,7 @@ $(sss_userdel_SOURCES) $(sss_usermod_SOURCES) \ $(sssctl_SOURCES) $(sssd_SOURCES) \ $(am__sssd_autofs_SOURCES_DIST) $(sssd_be_SOURCES) \ + $(am__sssd_check_socket_activated_responders_SOURCES_DIST) \ $(am__sssd_ifp_SOURCES_DIST) $(sssd_nss_SOURCES) \ $(sssd_pac_SOURCES) $(sssd_pam_SOURCES) \ $(am__sssd_secrets_SOURCES_DIST) $(am__sssd_ssh_SOURCES_DIST) \ @@ -4197,6 +4465,7 @@ $(am__strtonum_tests_SOURCES_DIST) \ $(am__sysdb_tests_SOURCES_DIST) \ $(am__sysdb_ssh_tests_SOURCES_DIST) \ + $(am__tcurl_test_tool_SOURCES_DIST) \ $(am__test_authtok_SOURCES_DIST) \ $(am__test_find_uid_SOURCES_DIST) $(am__test_io_SOURCES_DIST) \ $(am__test_negcache_SOURCES_DIST) \ @@ -4211,7 +4480,8 @@ $(am__test_dp_request_SOURCES_DIST) \ $(am__test_dp_request_table_SOURCES_DIST) \ $(am__test_fo_srv_SOURCES_DIST) \ - $(am__test_ipa_dn_SOURCES_DIST) \ + $(am__test_inotify_SOURCES_DIST) \ + $(am__test_iobuf_SOURCES_DIST) $(am__test_ipa_dn_SOURCES_DIST) \ $(am__test_ipa_idmap_SOURCES_DIST) \ $(am__test_ipa_subdom_server_SOURCES_DIST) \ $(am__test_ipa_subdom_util_SOURCES_DIST) \ @@ -4221,6 +4491,7 @@ $(am__test_resolv_fake_SOURCES_DIST) \ $(am__test_sbus_opath_SOURCES_DIST) \ $(am__test_sdap_access_SOURCES_DIST) \ + $(am__test_sdap_initgr_SOURCES_DIST) \ $(am__test_search_bases_SOURCES_DIST) \ $(am__test_sss_idmap_SOURCES_DIST) \ $(am__test_sysdb_subdomains_SOURCES_DIST) \ @@ -4305,11 +4576,14 @@ src/util/auth_utils.h src/util/authtok.h \ src/util/authtok-utils.h src/util/util_safealign.h \ src/util/util_sss_idmap.h src/util/util_creds.h \ + src/util/inotify.h src/util/sss_iobuf.h src/util/tev_curl.h \ src/monitor/monitor_interfaces.h \ src/monitor/monitor_iface_generated.h \ src/responder/common/responder.h \ src/responder/common/responder_packet.h \ src/responder/common/responder_sbus.h \ + src/responder/common/iface/responder_iface.h \ + src/responder/common/iface/responder_iface_generated.h \ src/responder/common/cache_req/cache_req.h \ src/responder/common/cache_req/cache_req_plugin.h \ src/responder/common/cache_req/cache_req_private.h \ @@ -4325,7 +4599,7 @@ src/responder/common/negcache.h \ src/responder/sudo/sudosrv_private.h \ src/responder/autofs/autofs_private.h \ - src/responder/ssh/sshsrv_private.h \ + src/responder/ssh/ssh_private.h \ src/responder/ifp/ifp_iface_generated.h \ src/responder/ifp/ifp_iface.h src/responder/ifp/ifp_private.h \ src/responder/ifp/ifp_domains.h \ @@ -4392,9 +4666,10 @@ src/providers/ad/ad_domain_info.h \ src/providers/ad/ad_subdomains.h src/providers/proxy/proxy.h \ src/providers/proxy/proxy_iface_generated.h \ - src/tools/tools_util.h src/tools/sss_sync_ops.h \ - src/resolv/async_resolv.h src/tests/common.h \ - src/tests/common_check.h src/tests/cmocka/common_mock.h \ + src/providers/files/files_private.h src/tools/tools_util.h \ + src/tools/sss_sync_ops.h src/resolv/async_resolv.h \ + src/tests/common.h src/tests/common_check.h \ + src/tests/cmocka/common_mock.h \ src/tests/cmocka/common_mock_resp.h \ src/tests/cmocka/common_mock_sdap.h \ src/tests/cmocka/common_mock_sysdb_objects.h \ @@ -4609,15 +4884,15 @@ bases=`for i in $$bases; do echo $$i; done | sed 's/\.log$$//'`; \ bases=`echo $$bases` RECHECK_LOGS = $(TEST_LOGS) -@BUILD_PYTHON2_BINDINGS_TRUE@am__EXEEXT_20 = \ +@BUILD_PYTHON2_BINDINGS_TRUE@am__EXEEXT_23 = \ @BUILD_PYTHON2_BINDINGS_TRUE@ src/config/SSSDConfigTest.py2.sh \ @BUILD_PYTHON2_BINDINGS_TRUE@ src/tests/pyhbac-test.py2.sh \ @BUILD_PYTHON2_BINDINGS_TRUE@ src/tests/pysss_murmur-test.py2.sh -@BUILD_PYTHON3_BINDINGS_TRUE@am__EXEEXT_21 = \ +@BUILD_PYTHON3_BINDINGS_TRUE@am__EXEEXT_24 = \ @BUILD_PYTHON3_BINDINGS_TRUE@ src/config/SSSDConfigTest.py3.sh \ @BUILD_PYTHON3_BINDINGS_TRUE@ src/tests/pyhbac-test.py3.sh \ @BUILD_PYTHON3_BINDINGS_TRUE@ src/tests/pysss_murmur-test.py3.sh -am__EXEEXT_22 = $(am__EXEEXT_20) $(am__EXEEXT_21) +am__EXEEXT_25 = $(am__EXEEXT_23) $(am__EXEEXT_24) TEST_SUITE_LOG = test-suite.log LOG_DRIVER = $(SHELL) $(top_srcdir)/build/test-driver LOG_COMPILE = $(LOG_COMPILER) $(AM_LOG_FLAGS) $(LOG_FLAGS) @@ -4663,11 +4938,10 @@ $(top_srcdir)/src/systemtap/sssd.stp.in \ $(top_srcdir)/src/sysv/SUSE/sssd.in \ $(top_srcdir)/src/sysv/gentoo/sssd.in \ - $(top_srcdir)/src/sysv/sssd.in ABOUT-NLS COPYING README \ - build/ar-lib build/compile build/config.guess \ - build/config.rpath build/config.sub build/depcomp \ - build/install-sh build/ltmain.sh build/missing \ - build/mkinstalldirs + $(top_srcdir)/src/sysv/sssd.in ABOUT-NLS COPYING build/ar-lib \ + build/compile build/config.guess build/config.rpath \ + build/config.sub build/depcomp build/install-sh \ + build/ltmain.sh build/missing build/mkinstalldirs DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) distdir = $(PACKAGE)-$(VERSION) top_distdir = $(distdir) @@ -4733,6 +5007,8 @@ CPPFLAGS = @CPPFLAGS@ CRYPTO_CFLAGS = @CRYPTO_CFLAGS@ CRYPTO_LIBS = @CRYPTO_LIBS@ +CURL_CFLAGS = @CURL_CFLAGS@ +CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ @@ -5023,8 +5299,8 @@ $(extra_distcheck_flags) \ $(AUX_DISTCHECK_CONFIGURE_FLAGS) -CLEANFILES = $(NULL) $(am__append_41) *.X */*.X */*/*.X -BUILT_SOURCES = $(NULL) $(am__append_40) $(CODEGEN_CODE) +CLEANFILES = $(NULL) $(am__append_44) *.X */*.X */*/*.X +BUILT_SOURCES = $(NULL) $(am__append_43) $(CODEGEN_CODE) SUBDIRS = po $(am__append_3) . src/tests/cwrap src/tests/intg DISTSETUPOPTS = $(am__append_4) sssdlibexecdir = $(libexecdir)/sssd @@ -5060,8 +5336,8 @@ AM_CFLAGS = $(am__append_5) $(am__append_6) pkgconfig_DATA = src/lib/ipa_hbac/ipa_hbac.pc \ src/lib/idmap/sss_idmap.pc \ - src/sss_client/idmap/sss_nss_idmap.pc $(am__append_33) \ - $(am__append_37) + src/sss_client/idmap/sss_nss_idmap.pc $(am__append_36) \ + $(am__append_40) ACLOCAL_AMFLAGS = -I m4 -I . @HAVE_NSS_TRUE@@HAVE_POLKIT_RULES_D_TRUE@@SSSD_USER_TRUE@polkit_rulesdir = $(polkitdir) @HAVE_NSS_TRUE@@HAVE_POLKIT_RULES_D_TRUE@@SSSD_USER_TRUE@dist_polkit_rules_DATA = contrib/sssd-pcsc.rules @@ -5073,8 +5349,8 @@ @HAVE_CHECK_TRUE@ ad_ldap_opt-tests crypto-tests util-tests \ @HAVE_CHECK_TRUE@ debug-tests ipa_hbac-tests sss_idmap-tests \ @HAVE_CHECK_TRUE@ responder_socket_access-tests \ -@HAVE_CHECK_TRUE@ safe-format-tests $(am__append_16) \ -@HAVE_CHECK_TRUE@ $(am__append_17) +@HAVE_CHECK_TRUE@ safe-format-tests $(am__append_17) \ +@HAVE_CHECK_TRUE@ $(am__append_18) @HAVE_CMOCKA_TRUE@non_interactive_cmocka_based_tests = nss-srv-tests \ @HAVE_CMOCKA_TRUE@ test-find-uid test-io test-negcache \ @HAVE_CMOCKA_TRUE@ test-authtok sss_nss_idmap-tests \ @@ -5097,13 +5373,14 @@ @HAVE_CMOCKA_TRUE@ test_ldap_id_cleanup test_data_provider_be \ @HAVE_CMOCKA_TRUE@ test_dp_request_table test_dp_request \ @HAVE_CMOCKA_TRUE@ test_dp_builtin test_ipa_dn \ -@HAVE_CMOCKA_TRUE@ simple-access-tests krb5_common_test $(NULL) \ -@HAVE_CMOCKA_TRUE@ $(am__append_18) $(am__append_19) \ -@HAVE_CMOCKA_TRUE@ $(am__append_20) -PYTHON_TESTS = $(am__append_22) $(am__append_23) +@HAVE_CMOCKA_TRUE@ simple-access-tests krb5_common_test \ +@HAVE_CMOCKA_TRUE@ test_iobuf $(NULL) $(am__append_19) \ +@HAVE_CMOCKA_TRUE@ $(am__append_20) $(am__append_21) \ +@HAVE_CMOCKA_TRUE@ $(am__append_22) +PYTHON_TESTS = $(am__append_24) $(am__append_25) TEST_EXTENSIONS = .sh sssdlib_LTLIBRARIES = libsss_ldap.la libsss_krb5.la libsss_proxy.la \ - libsss_simple.la $(am__append_24) + libsss_simple.la $(NULL) $(am__append_26) $(am__append_27) ldblib_LTLIBRARIES = \ memberof.la @@ -5195,14 +5472,14 @@ src/tests/cmocka/p11_nssdb/key4.db $(SYSTEMTAP_PROBES) $(NULL) \ src/lib/ipa_hbac/ipa_hbac.exports \ src/lib/idmap/sss_idmap.exports \ - src/sss_client/idmap/sss_nss_idmap.exports $(am__append_34) \ - $(am__append_38) src/examples/sssd-example.conf \ + src/sss_client/idmap/sss_nss_idmap.exports $(am__append_37) \ + $(am__append_41) src/examples/sssd-example.conf \ src/examples/sssdproxytest src/examples/sudo \ src/examples/logrotate src/providers/sssd_be.exports \ src/sss_client/COPYING src/sss_client/COPYING.LESSER src/m4 \ - $(am__append_46) src/sss_client/sss_nss.exports \ - src/sss_client/sss_pam.exports $(am__append_52) \ - $(am__append_53) m4 contrib/sssd.spec.in BUILD.txt COPYING + $(am__append_49) src/sss_client/sss_nss.exports \ + src/sss_client/sss_pam.exports $(am__append_56) \ + $(am__append_57) m4 contrib/sssd.spec.in BUILD.txt COPYING ############################### # Global compilation settings # @@ -5235,7 +5512,6 @@ -DSSSDDATADIR=\"$(sssddatadir)\" \ -DSSSD_LIBEXEC_PATH=\"$(sssdlibexecdir)\" \ -DSSSD_CONF_DIR=\"$(sssdconfdir)\" \ - -DSSSD_DEFAULT_CONF_DIR=\"$(sssddefaultconfdir)\" \ -DSSS_NSS_MCACHE_DIR=\"$(mcpath)\" \ -DSSS_NSS_SOCKET_NAME=\"$(pipepath)/nss\" \ -DSSS_PAM_SOCKET_NAME=\"$(pipepath)/pam\" \ @@ -5249,7 +5525,7 @@ -DBASE_FILE_STEM=\"$(*F)\" \ $(NULL) -EXTRA_DIST = $(SBUS_CODEGEN) $(CODEGEN_XML) $(am__append_42) \ +EXTRA_DIST = $(SBUS_CODEGEN) $(CODEGEN_XML) $(am__append_45) \ src/sysv/systemd/sssd.service.in \ src/sysv/systemd/journal.conf.in \ src/sysv/systemd/sssd-nss.socket.in \ @@ -5259,10 +5535,11 @@ src/sysv/systemd/sssd-pam.service.in \ src/sysv/systemd/sssd-secrets.socket.in \ src/sysv/systemd/sssd-secrets.service.in $(NULL) \ - $(am__append_73) $(am__append_74) $(am__append_75) \ - $(am__append_76) $(am__append_77) + $(am__append_77) $(am__append_78) $(am__append_79) \ + $(am__append_80) $(am__append_81) SSSD_CACHE_REQ_OBJ = \ src/responder/common/cache_req/cache_req.c \ + src/responder/common/cache_req/cache_req_result.c \ src/responder/common/cache_req/cache_req_search.c \ src/responder/common/cache_req/cache_req_data.c \ src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -5285,14 +5562,23 @@ src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ $(NULL) +SSSD_RESPONDER_IFACE_OBJ = \ + src/responder/common/iface/responder_iface.c \ + src/responder/common/iface/responder_domain.c \ + src/responder/common/iface/responder_ncache.c \ + src/responder/common/iface/responder_iface_generated.c \ + $(NULL) + SSSD_RESPONDER_OBJ = \ src/responder/common/negcache_files.c \ src/responder/common/negcache.c \ src/responder/common/responder_cmd.c \ src/responder/common/responder_common.c \ src/responder/common/responder_dp.c \ + src/responder/common/responder_dp_ssh.c \ src/responder/common/responder_packet.c \ src/responder/common/responder_get_domains.c \ src/responder/common/responder_utils.c \ @@ -5300,6 +5586,7 @@ src/responder/common/data_provider/rdp_client.c \ src/monitor/monitor_iface_generated.c \ src/providers/data_provider_req.c \ + $(SSSD_RESPONDER_IFACE_OBJ) \ $(SSSD_CACHE_REQ_OBJ) \ $(NULL) @@ -5343,11 +5630,11 @@ $(TDB_LIBS) PYTHON_BINDINGS_LIBS = $(TALLOC_LIBS) $(POPT_LIBS) $(LDB_LIBS) $(NULL) \ - $(am__append_25) + $(am__append_28) TOOLS_LIBS = $(LTLIBINTL) $(TALLOC_LIBS) $(TEVENT_LIBS) $(POPT_LIBS) \ $(LDB_LIBS) $(DBUS_LIBS) $(PCRE_LIBS) $(INI_CONFIG_LIBS) \ $(COLLECTION_LIBS) $(DHASH_LIBS) $(OPENLDAP_LIBS) $(TDB_LIBS) \ - $(am__append_26) + $(am__append_29) dist_noinst_HEADERS = src/monitor/monitor.h \ src/util/crypto/sss_crypto.h \ src/util/crypto/libcrypto/sss_openssl.h src/util/cert.h \ @@ -5365,11 +5652,14 @@ src/util/auth_utils.h src/util/authtok.h \ src/util/authtok-utils.h src/util/util_safealign.h \ src/util/util_sss_idmap.h src/util/util_creds.h \ + src/util/inotify.h src/util/sss_iobuf.h src/util/tev_curl.h \ src/monitor/monitor.h src/monitor/monitor_interfaces.h \ src/monitor/monitor_iface_generated.h \ src/responder/common/responder.h \ src/responder/common/responder_packet.h \ src/responder/common/responder_sbus.h \ + src/responder/common/iface/responder_iface.h \ + src/responder/common/iface/responder_iface_generated.h \ src/responder/common/cache_req/cache_req.h \ src/responder/common/cache_req/cache_req_plugin.h \ src/responder/common/cache_req/cache_req_private.h \ @@ -5385,7 +5675,7 @@ src/responder/common/negcache.h \ src/responder/sudo/sudosrv_private.h \ src/responder/autofs/autofs_private.h \ - src/responder/ssh/sshsrv_private.h \ + src/responder/ssh/ssh_private.h \ src/responder/ifp/ifp_iface_generated.h \ src/responder/ifp/ifp_iface.h src/responder/ifp/ifp_private.h \ src/responder/ifp/ifp_domains.h \ @@ -5452,9 +5742,10 @@ src/providers/ad/ad_domain_info.h \ src/providers/ad/ad_subdomains.h src/providers/proxy/proxy.h \ src/providers/proxy/proxy_iface_generated.h \ - src/tools/tools_util.h src/tools/sss_sync_ops.h \ - src/resolv/async_resolv.h src/tests/common.h \ - src/tests/common_check.h src/tests/cmocka/common_mock.h \ + src/providers/files/files_private.h src/tools/tools_util.h \ + src/tools/sss_sync_ops.h src/resolv/async_resolv.h \ + src/tests/common.h src/tests/common_check.h \ + src/tests/cmocka/common_mock.h \ src/tests/cmocka/common_mock_resp.h \ src/tests/cmocka/common_mock_sdap.h \ src/tests/cmocka/common_mock_sysdb_objects.h \ @@ -5477,8 +5768,8 @@ src/tests/cmocka/test_utils.h src/tools/common/sss_tools.h \ src/tools/common/sss_process.h src/tools/common/sss_colondb.h \ src/tools/sssctl/sssctl.h src/util/probes.h $(NULL) \ - $(am__append_27) -SSSD_DOCS = doc hbac_doc idmap_doc nss_idmap_doc $(am__append_28) + $(am__append_30) +SSSD_DOCS = doc hbac_doc idmap_doc nss_idmap_doc $(am__append_31) CLIENT_LIBS = $(LTLIBINTL) @WITH_JOURNALD_TRUE@SYSLOG_LIBS = $(JOURNALD_LIBS) libsss_debug_la_SOURCES = \ @@ -5624,8 +5915,8 @@ src/util/io.c src/util/util_sss_idmap.c \ src/util/well_known_sids.c src/util/string_utils.c \ src/util/become_user.c src/util/util_watchdog.c \ - src/util/sss_ptr_hash.c $(NULL) $(am__append_29) \ - $(am__append_30) + src/util/sss_ptr_hash.c $(NULL) $(am__append_32) \ + $(am__append_33) libsss_util_la_CFLAGS = \ $(AM_CFLAGS) \ $(SYSTEMD_LOGIN_CFLAGS) \ @@ -5634,7 +5925,7 @@ libsss_util_la_LIBADD = $(LIBADD_TIMER) $(SSSD_LIBS) \ $(SYSTEMD_LOGIN_LIBS) $(UNICODE_LIBS) libsss_debug.la \ libsss_child.la libsss_crypt.la libsss_cert.la $(NULL) \ - $(am__append_31) + $(am__append_34) libsss_util_la_LDFLAGS = -avoid-version libsss_semanage_la_CFLAGS = \ $(AM_CFLAGS) \ @@ -5646,7 +5937,7 @@ $(NULL) libsss_semanage_la_LIBADD = $(TALLOC_LIBS) libsss_debug.la $(NULL) \ - $(am__append_32) + $(am__append_35) libsss_semanage_la_LDFLAGS = \ -avoid-version @@ -5658,7 +5949,7 @@ $(NULL) lib_LTLIBRARIES = libipa_hbac.la libsss_idmap.la libsss_nss_idmap.la \ - $(NULL) $(am__append_36) + $(NULL) $(am__append_39) libipa_hbac_la_DEPENDENCIES = src/lib/ipa_hbac/ipa_hbac.exports libipa_hbac_la_SOURCES = \ src/lib/ipa_hbac/hbac_evaluator.c \ @@ -5706,7 +5997,7 @@ include_HEADERS = src/lib/ipa_hbac/ipa_hbac.h \ src/lib/idmap/sss_idmap.h src/sss_client/idmap/sss_nss_idmap.h \ - $(NULL) $(am__append_35) $(am__append_39) + $(NULL) $(am__append_38) $(am__append_42) @BUILD_LIBWBCLIENT_TRUE@libwbclient_LTLIBRARIES = libwbclient.la @BUILD_LIBWBCLIENT_TRUE@EXTRA_libwbclient_la_DEPENDENCIES = \ @BUILD_LIBWBCLIENT_TRUE@ src/sss_client/libwbclient/wbclient.exports \ @@ -5789,7 +6080,9 @@ $(srcdir)/src/providers/data_provider/dp_iface.xml \ $(srcdir)/src/providers/proxy/proxy_iface.xml \ $(srcdir)/src/responder/ifp/ifp_iface.xml \ - $(srcdir)/src/responder/nss/nss_iface.xml + $(srcdir)/src/responder/nss/nss_iface.xml \ + $(srcdir)/src/responder/common/iface/responder_iface.xml \ + $(NULL) SBUS_CODEGEN = src/sbus/sbus_codegen SUFFIXES = .xml _generated.h _generated.c @@ -5809,8 +6102,7 @@ src/confdb/confdb_setup.c \ src/monitor/monitor_iface_generated.c \ src/util/nscd.c \ - src/tools/files.c \ - src/tools/selinux.c \ + src/util/inotify.c \ $(NULL) sssd_LDADD = \ @@ -5890,8 +6182,10 @@ @BUILD_SSH_TRUE@sssd_ssh_SOURCES = \ @BUILD_SSH_TRUE@ src/responder/ssh/sshsrv.c \ -@BUILD_SSH_TRUE@ src/responder/ssh/sshsrv_dp.c \ -@BUILD_SSH_TRUE@ src/responder/ssh/sshsrv_cmd.c \ +@BUILD_SSH_TRUE@ src/responder/ssh/ssh_cmd.c \ +@BUILD_SSH_TRUE@ src/responder/ssh/ssh_known_hosts.c \ +@BUILD_SSH_TRUE@ src/responder/ssh/ssh_protocol.c \ +@BUILD_SSH_TRUE@ src/responder/ssh/ssh_reply.c \ @BUILD_SSH_TRUE@ $(SSSD_RESPONDER_OBJ) \ @BUILD_SSH_TRUE@ $(NULL) @@ -6002,6 +6296,7 @@ src/providers/data_provider/dp_iface_backend.c \ src/providers/data_provider/dp_iface_failover.c \ src/providers/data_provider/dp_client.c \ + src/providers/data_provider/dp_resp_client.c \ src/providers/data_provider/dp_iface_generated.c \ src/providers/data_provider/dp_request.c \ src/providers/data_provider/dp_request_reply.c \ @@ -6213,6 +6508,22 @@ @BUILD_SSH_TRUE@ $(SSSD_INTERNAL_LTLIBS) \ @BUILD_SSH_TRUE@ $(CLIENT_LIBS) $(TALLOC_LIBS) $(POPT_LIBS) +@HAVE_SYSTEMD_UNIT_TRUE@sssd_check_socket_activated_responders_SOURCES = \ +@HAVE_SYSTEMD_UNIT_TRUE@ src/tools/sssd_check_socket_activated_responders.c \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(NULL) + +@HAVE_SYSTEMD_UNIT_TRUE@sssd_check_socket_activated_responders_CFLAGS = \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(AM_CFLAGS) \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(NULL) + +@HAVE_SYSTEMD_UNIT_TRUE@sssd_check_socket_activated_responders_LDADD = \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(SSSD_INTERNAL_LTLIBS) \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(LTLIBINTL) \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(TALLOC_LIBS) \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(POPT_LIBS) \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(INI_CONFIG_LIBS) \ +@HAVE_SYSTEMD_UNIT_TRUE@ $(NULL) + ################# # Feature Tests # @@ -6222,11 +6533,11 @@ ABS_TOP_SRCDIR=$(abs_top_srcdir) \ $(AUX_TESTS_ENVIRONMENT) -check_LTLIBRARIES = libsss_test_common.la $(am__append_44) \ - $(am__append_45) +check_LTLIBRARIES = libsss_test_common.la $(am__append_47) \ + $(am__append_48) libsss_test_common_la_SOURCES = src/tests/common_tev.c \ src/tests/common_dom.c src/tests/leak_check.c \ - src/tests/common.c $(am__append_43) + src/tests/common.c $(am__append_46) libsss_test_common_la_LIBADD = \ $(TALLOC_LIBS) \ $(TEVENT_LIBS) \ @@ -6334,6 +6645,7 @@ @HAVE_CHECK_TRUE@ src/providers/krb5/krb5_common.c \ @HAVE_CHECK_TRUE@ src/providers/krb5/krb5_opts.c \ @HAVE_CHECK_TRUE@ src/util/sss_krb5.c \ +@HAVE_CHECK_TRUE@ src/util/sss_iobuf.c \ @HAVE_CHECK_TRUE@ src/providers/data_provider_fo.c \ @HAVE_CHECK_TRUE@ src/providers/data_provider_opts.c \ @HAVE_CHECK_TRUE@ src/providers/data_provider_callbacks.c \ @@ -6369,22 +6681,22 @@ @HAVE_CHECK_TRUE@FILES_TESTS_LIBS = $(CHECK_LIBS) $(POPT_LIBS) \ @HAVE_CHECK_TRUE@ $(TALLOC_LIBS) libsss_test_common.la \ -@HAVE_CHECK_TRUE@ $(am__append_47) $(am__append_48) -@HAVE_CHECK_TRUE@files_tests_SOURCES = \ -@HAVE_CHECK_TRUE@ src/tests/files-tests.c \ -@HAVE_CHECK_TRUE@ src/util/check_and_open.c \ -@HAVE_CHECK_TRUE@ src/util/atomic_io.c \ -@HAVE_CHECK_TRUE@ src/tools/selinux.c \ -@HAVE_CHECK_TRUE@ src/tools/files.c - -@HAVE_CHECK_TRUE@files_tests_CFLAGS = \ -@HAVE_CHECK_TRUE@ $(AM_CFLAGS) \ -@HAVE_CHECK_TRUE@ $(CHECK_CFLAGS) - -@HAVE_CHECK_TRUE@files_tests_LDADD = \ -@HAVE_CHECK_TRUE@ $(FILES_TESTS_LIBS) \ -@HAVE_CHECK_TRUE@ libsss_test_common.la \ -@HAVE_CHECK_TRUE@ $(SSSD_INTERNAL_LTLIBS) +@HAVE_CHECK_TRUE@ $(am__append_50) $(am__append_51) +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@files_tests_SOURCES = \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ src/tests/files-tests.c \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ src/util/check_and_open.c \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ src/util/atomic_io.c \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ src/tools/selinux.c \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ src/tools/files.c + +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@files_tests_CFLAGS = \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ $(AM_CFLAGS) \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ $(CHECK_CFLAGS) + +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@files_tests_LDADD = \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ $(FILES_TESTS_LIBS) \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ libsss_test_common.la \ +@HAVE_CHECK_TRUE@@HAVE_INOTIFY_TRUE@ $(SSSD_INTERNAL_LTLIBS) @HAVE_CHECK_TRUE@SSSD_RESOLV_TESTS_OBJ = \ @HAVE_CHECK_TRUE@ $(SSSD_RESOLV_OBJ) @@ -6601,7 +6913,9 @@ @HAVE_CHECK_TRUE@ src/responder/common/responder_packet.c \ @HAVE_CHECK_TRUE@ src/responder/common/responder_cmd.c \ @HAVE_CHECK_TRUE@ src/responder/common/data_provider/rdp_message.c \ -@HAVE_CHECK_TRUE@ src/responder/common/data_provider/rdp_client.c +@HAVE_CHECK_TRUE@ src/responder/common/data_provider/rdp_client.c \ +@HAVE_CHECK_TRUE@ $(SSSD_RESPONDER_IFACE_OBJ) \ +@HAVE_CHECK_TRUE@ $(NULL) @HAVE_CHECK_TRUE@responder_socket_access_tests_CFLAGS = \ @HAVE_CHECK_TRUE@ $(AM_CFLAGS) \ @@ -6629,6 +6943,7 @@ src/providers/krb5/krb5_common.c \ src/providers/krb5/krb5_opts.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ src/providers/data_provider_fo.c \ src/providers/data_provider_opts.c \ src/providers/data_provider_callbacks.c \ @@ -6690,6 +7005,7 @@ @HAVE_CMOCKA_TRUE@ src/responder/common/data_provider/rdp_client.c \ @HAVE_CMOCKA_TRUE@ src/responder/common/responder_utils.c \ @HAVE_CMOCKA_TRUE@ $(SSSD_CACHE_REQ_OBJ) \ +@HAVE_CMOCKA_TRUE@ $(SSSD_RESPONDER_IFACE_OBJ) \ @HAVE_CMOCKA_TRUE@ $(NULL) @HAVE_CMOCKA_TRUE@TEST_MOCK_PROVIDER_OBJ = \ @@ -6728,6 +7044,7 @@ @HAVE_CMOCKA_TRUE@nss_srv_tests_LDFLAGS = \ @HAVE_CMOCKA_TRUE@ -Wl,-wrap,sss_ncache_check_user \ +@HAVE_CMOCKA_TRUE@ -Wl,-wrap,sss_ncache_check_upn \ @HAVE_CMOCKA_TRUE@ -Wl,-wrap,sss_ncache_check_uid \ @HAVE_CMOCKA_TRUE@ -Wl,-wrap,sss_ncache_check_sid \ @HAVE_CMOCKA_TRUE@ -Wl,-wrap,sss_ncache_check_cert \ @@ -6966,7 +7283,7 @@ @HAVE_CMOCKA_TRUE@nestedgroups_tests_LDADD = $(CMOCKA_LIBS) \ @HAVE_CMOCKA_TRUE@ $(SSSD_LIBS) $(SSSD_INTERNAL_LTLIBS) \ @HAVE_CMOCKA_TRUE@ libsss_idmap.la libsss_test_common.la \ -@HAVE_CMOCKA_TRUE@ $(NULL) $(am__append_49) +@HAVE_CMOCKA_TRUE@ $(NULL) $(am__append_52) @HAVE_CMOCKA_TRUE@test_sss_idmap_SOURCES = \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_sss_idmap.c @@ -7335,6 +7652,7 @@ @HAVE_CMOCKA_TRUE@ $(NULL) @HAVE_CMOCKA_TRUE@test_wbc_calls_LDADD = \ +@HAVE_CMOCKA_TRUE@ $(CLIENT_LIBS) \ @HAVE_CMOCKA_TRUE@ $(CMOCKA_LIBS) \ @HAVE_CMOCKA_TRUE@ $(POPT_LIBS) \ @HAVE_CMOCKA_TRUE@ $(TALLOC_LIBS) \ @@ -7364,6 +7682,7 @@ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_copy_ccache.c \ @HAVE_CMOCKA_TRUE@ src/providers/krb5/krb5_ccache.c \ @HAVE_CMOCKA_TRUE@ src/util/sss_krb5.c \ +@HAVE_CMOCKA_TRUE@ src/util/sss_iobuf.c \ @HAVE_CMOCKA_TRUE@ $(NULL) @HAVE_CMOCKA_TRUE@test_copy_ccache_CFLAGS = \ @@ -7384,6 +7703,7 @@ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_copy_keytab.c \ @HAVE_CMOCKA_TRUE@ src/providers/krb5/krb5_keytab.c \ @HAVE_CMOCKA_TRUE@ src/util/sss_krb5.c \ +@HAVE_CMOCKA_TRUE@ src/util/sss_iobuf.c \ @HAVE_CMOCKA_TRUE@ $(NULL) @HAVE_CMOCKA_TRUE@test_copy_keytab_CFLAGS = \ @@ -7514,6 +7834,30 @@ @HAVE_CMOCKA_TRUE@ libsss_test_common.la \ @HAVE_CMOCKA_TRUE@ $(NULL) +@HAVE_CMOCKA_TRUE@test_sdap_initgr_SOURCES = \ +@HAVE_CMOCKA_TRUE@ src/tests/cmocka/common_mock_sdap.c \ +@HAVE_CMOCKA_TRUE@ src/tests/cmocka/common_mock_sysdb_objects.c \ +@HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_sdap_initgr.c \ +@HAVE_CMOCKA_TRUE@ $(NULL) + +@HAVE_CMOCKA_TRUE@test_sdap_initgr_CFLAGS = \ +@HAVE_CMOCKA_TRUE@ $(AM_CFLAGS) \ +@HAVE_CMOCKA_TRUE@ $(NDR_NBT_CFLAGS) \ +@HAVE_CMOCKA_TRUE@ $(NULL) + +@HAVE_CMOCKA_TRUE@test_sdap_initgr_LDADD = \ +@HAVE_CMOCKA_TRUE@ $(CMOCKA_LIBS) \ +@HAVE_CMOCKA_TRUE@ $(POPT_LIBS) \ +@HAVE_CMOCKA_TRUE@ $(DHASH_LIBS) \ +@HAVE_CMOCKA_TRUE@ $(TALLOC_LIBS) \ +@HAVE_CMOCKA_TRUE@ $(TEVENT_LIBS) \ +@HAVE_CMOCKA_TRUE@ $(LDB_LIBS) \ +@HAVE_CMOCKA_TRUE@ $(SSSD_INTERNAL_LTLIBS) \ +@HAVE_CMOCKA_TRUE@ libsss_ldap_common.la \ +@HAVE_CMOCKA_TRUE@ libsss_test_common.la \ +@HAVE_CMOCKA_TRUE@ libdlopen_test_providers.la \ +@HAVE_CMOCKA_TRUE@ $(NULL) + @HAVE_CMOCKA_TRUE@test_ad_subdom_SOURCES = \ @HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_ad_subdomains.c \ @HAVE_CMOCKA_TRUE@ $(NULL) @@ -7767,6 +8111,20 @@ @HAVE_CMOCKA_TRUE@ libsss_test_common.la \ @HAVE_CMOCKA_TRUE@ $(NULL) +@HAVE_CMOCKA_TRUE@test_iobuf_SOURCES = \ +@HAVE_CMOCKA_TRUE@ src/util/sss_iobuf.c \ +@HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_iobuf.c \ +@HAVE_CMOCKA_TRUE@ $(NULL) + +@HAVE_CMOCKA_TRUE@test_iobuf_CFLAGS = \ +@HAVE_CMOCKA_TRUE@ $(AM_CFLAGS) \ +@HAVE_CMOCKA_TRUE@ $(NULL) + +@HAVE_CMOCKA_TRUE@test_iobuf_LDADD = \ +@HAVE_CMOCKA_TRUE@ $(CMOCKA_LIBS) \ +@HAVE_CMOCKA_TRUE@ $(SSSD_LIBS) \ +@HAVE_CMOCKA_TRUE@ $(NULL) + @HAVE_CMOCKA_TRUE@EXTRA_simple_access_tests_DEPENDENCIES = \ @HAVE_CMOCKA_TRUE@ $(ldblib_LTLIBRARIES) @@ -7811,6 +8169,23 @@ @HAVE_CMOCKA_TRUE@ libdlopen_test_providers.la \ @HAVE_CMOCKA_TRUE@ $(NULL) +@HAVE_CMOCKA_TRUE@test_inotify_SOURCES = \ +@HAVE_CMOCKA_TRUE@ src/util/inotify.c \ +@HAVE_CMOCKA_TRUE@ src/tests/cmocka/test_inotify.c \ +@HAVE_CMOCKA_TRUE@ $(NULL) + +@HAVE_CMOCKA_TRUE@test_inotify_CFLAGS = \ +@HAVE_CMOCKA_TRUE@ $(AM_CFLAGS) \ +@HAVE_CMOCKA_TRUE@ $(NULL) + +@HAVE_CMOCKA_TRUE@test_inotify_LDADD = \ +@HAVE_CMOCKA_TRUE@ $(CMOCKA_LIBS) \ +@HAVE_CMOCKA_TRUE@ $(SSSD_LIBS) \ +@HAVE_CMOCKA_TRUE@ $(SSSD_INTERNAL_LTLIBS) \ +@HAVE_CMOCKA_TRUE@ $(LIBADD_DL) \ +@HAVE_CMOCKA_TRUE@ libsss_test_common.la \ +@HAVE_CMOCKA_TRUE@ $(NULL) + pam_test_client_SOURCES = src/sss_client/pam_test_client.c pam_test_client_LDADD = $(PAM_LIBS) $(PAM_MISC_LIBS) @BUILD_AUTOFS_TRUE@autofs_test_client_SOURCES = \ @@ -7820,6 +8195,23 @@ @BUILD_AUTOFS_TRUE@autofs_test_client_CFLAGS = $(AM_CFLAGS) @BUILD_AUTOFS_TRUE@autofs_test_client_LDADD = -lpopt $(CLIENT_LIBS) +@BUILD_WITH_LIBCURL_TRUE@tcurl_test_tool_SOURCES = \ +@BUILD_WITH_LIBCURL_TRUE@ src/tests/tcurl_test_tool.c \ +@BUILD_WITH_LIBCURL_TRUE@ src/util/tev_curl.c \ +@BUILD_WITH_LIBCURL_TRUE@ src/util/sss_iobuf.c \ +@BUILD_WITH_LIBCURL_TRUE@ $(NULL) + +@BUILD_WITH_LIBCURL_TRUE@tcurl_test_tool_CFLAGS = \ +@BUILD_WITH_LIBCURL_TRUE@ $(AM_CFLAGS) \ +@BUILD_WITH_LIBCURL_TRUE@ $(CURL_CFLAGS) \ +@BUILD_WITH_LIBCURL_TRUE@ $(NULL) + +@BUILD_WITH_LIBCURL_TRUE@tcurl_test_tool_LDADD = \ +@BUILD_WITH_LIBCURL_TRUE@ $(CURL_LIBS) \ +@BUILD_WITH_LIBCURL_TRUE@ $(SSSD_LIBS) \ +@BUILD_WITH_LIBCURL_TRUE@ $(SSSD_INTERNAL_LTLIBS) \ +@BUILD_WITH_LIBCURL_TRUE@ $(NULL) + #################### # Client Libraries # @@ -7959,7 +8351,7 @@ src/providers/ldap/sdap_domain.c src/providers/ldap/sdap_ops.c \ src/providers/ldap/sdap.c src/providers/ipa/ipa_dn.c \ src/util/user_info_msg.c src/util/sss_sockets.c \ - src/util/sss_ldap.c $(NULL) $(am__append_55) $(am__append_56) + src/util/sss_ldap.c $(NULL) $(am__append_59) $(am__append_60) libsss_ldap_common_la_CFLAGS = \ $(AM_CFLAGS) \ $(KRB5_CFLAGS) \ @@ -7967,7 +8359,7 @@ libsss_ldap_common_la_LIBADD = $(OPENLDAP_LIBS) $(KRB5_LIBS) \ libsss_krb5_common.la libsss_idmap.la libsss_util.la $(NULL) \ - $(am__append_54) + $(am__append_58) libsss_ldap_common_la_LDFLAGS = \ -avoid-version \ $(NULL) @@ -7985,6 +8377,7 @@ src/providers/krb5/krb5_init_shared.c \ src/providers/krb5/krb5_ccache.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ src/util/become_user.c \ $(NULL) @@ -8038,6 +8431,26 @@ -avoid-version \ -module +libsss_files_la_SOURCES = \ + src/providers/files/files_init.c \ + src/providers/files/files_id.c \ + src/providers/files/files_ops.c \ + src/util/inotify.c \ + $(NULL) + +libsss_files_la_CFLAGS = \ + $(AM_CFLAGS) \ + $(NULL) + +libsss_files_la_LIBADD = \ + $(PAM_LIBS) \ + $(NULL) + +libsss_files_la_LDFLAGS = \ + -avoid-version \ + -module \ + $(NULL) + libsss_simple_la_SOURCES = \ src/providers/simple/simple_access_check.c \ src/providers/simple/simple_access.c @@ -8092,8 +8505,8 @@ src/providers/ad/ad_common.c src/providers/ad/ad_dyndns.c \ src/providers/ad/ad_id.c src/providers/ad/ad_pac.c \ src/providers/ad/ad_pac_common.c src/providers/ad/ad_srv.c \ - src/providers/ad/ad_domain_info.c $(am__append_57) \ - $(am__append_58) $(am__append_59) $(am__append_60) + src/providers/ad/ad_domain_info.c $(am__append_61) \ + $(am__append_62) $(am__append_63) $(am__append_64) libsss_ipa_la_CFLAGS = \ $(AM_CFLAGS) \ $(OPENLDAP_CFLAGS) \ @@ -8129,8 +8542,8 @@ src/providers/ad/ad_pac_common.c src/providers/ad/ad_access.c \ src/providers/ad/ad_gpo.c src/providers/ad/ad_gpo_ndr.c \ src/providers/ad/ad_srv.c src/providers/ad/ad_subdomains.c \ - src/providers/ad/ad_domain_info.c $(am__append_61) \ - $(am__append_62) + src/providers/ad/ad_domain_info.c $(am__append_65) \ + $(am__append_66) libsss_ad_la_CFLAGS = \ $(AM_CFLAGS) \ $(OPENLDAP_CFLAGS) \ @@ -8165,6 +8578,7 @@ src/providers/dp_pam_data_util.c \ src/util/user_info_msg.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ src/util/find_uid.c \ src/util/atomic_io.c \ src/util/authtok.c \ @@ -8200,6 +8614,7 @@ src/providers/ldap/ldap_child.c \ src/providers/krb5/krb5_keytab.c \ src/util/sss_krb5.c \ + src/util/sss_iobuf.c \ src/util/atomic_io.c \ src/util/authtok.c \ src/util/authtok-utils.c \ @@ -8530,10 +8945,10 @@ ####################### # Installation Extras # ####################### -init_SCRIPTS = $(am__append_70) $(am__append_71) $(am__append_72) -systemdunit_DATA = $(am__append_63) $(am__append_64) $(am__append_65) \ - $(am__append_66) $(am__append_67) $(am__append_68) -systemdconf_DATA = $(am__append_69) +init_SCRIPTS = $(am__append_74) $(am__append_75) $(am__append_76) +systemdunit_DATA = $(am__append_67) $(am__append_68) $(am__append_69) \ + $(am__append_70) $(am__append_71) $(am__append_72) +systemdconf_DATA = $(am__append_73) dist_sssddata_DATA = \ src/config/etc/sssd.api.conf \ src/config/cfg_rules.ini \ @@ -9501,6 +9916,9 @@ src/providers/data_provider/libdlopen_test_providers_la-dp_client.lo: \ src/providers/data_provider/$(am__dirstamp) \ src/providers/data_provider/$(DEPDIR)/$(am__dirstamp) +src/providers/data_provider/libdlopen_test_providers_la-dp_resp_client.lo: \ + src/providers/data_provider/$(am__dirstamp) \ + src/providers/data_provider/$(DEPDIR)/$(am__dirstamp) src/providers/data_provider/libdlopen_test_providers_la-dp_iface_generated.lo: \ src/providers/data_provider/$(am__dirstamp) \ src/providers/data_provider/$(DEPDIR)/$(am__dirstamp) @@ -9835,6 +10253,26 @@ libsss_debug.la: $(libsss_debug_la_OBJECTS) $(libsss_debug_la_DEPENDENCIES) $(EXTRA_libsss_debug_la_DEPENDENCIES) $(AM_V_CCLD)$(libsss_debug_la_LINK) -rpath $(pkglibdir) $(libsss_debug_la_OBJECTS) $(libsss_debug_la_LIBADD) $(LIBS) +src/providers/files/$(am__dirstamp): + @$(MKDIR_P) src/providers/files + @: > src/providers/files/$(am__dirstamp) +src/providers/files/$(DEPDIR)/$(am__dirstamp): + @$(MKDIR_P) src/providers/files/$(DEPDIR) + @: > src/providers/files/$(DEPDIR)/$(am__dirstamp) +src/providers/files/libsss_files_la-files_init.lo: \ + src/providers/files/$(am__dirstamp) \ + src/providers/files/$(DEPDIR)/$(am__dirstamp) +src/providers/files/libsss_files_la-files_id.lo: \ + src/providers/files/$(am__dirstamp) \ + src/providers/files/$(DEPDIR)/$(am__dirstamp) +src/providers/files/libsss_files_la-files_ops.lo: \ + src/providers/files/$(am__dirstamp) \ + src/providers/files/$(DEPDIR)/$(am__dirstamp) +src/util/libsss_files_la-inotify.lo: src/util/$(am__dirstamp) \ + src/util/$(DEPDIR)/$(am__dirstamp) + +libsss_files.la: $(libsss_files_la_OBJECTS) $(libsss_files_la_DEPENDENCIES) $(EXTRA_libsss_files_la_DEPENDENCIES) + $(AM_V_CCLD)$(libsss_files_la_LINK) $(am_libsss_files_la_rpath) $(libsss_files_la_OBJECTS) $(libsss_files_la_LIBADD) $(LIBS) src/lib/idmap/$(am__dirstamp): @$(MKDIR_P) src/lib/idmap @: > src/lib/idmap/$(am__dirstamp) @@ -10030,6 +10468,8 @@ src/providers/krb5/$(DEPDIR)/$(am__dirstamp) src/util/libsss_krb5_common_la-sss_krb5.lo: src/util/$(am__dirstamp) \ src/util/$(DEPDIR)/$(am__dirstamp) +src/util/libsss_krb5_common_la-sss_iobuf.lo: src/util/$(am__dirstamp) \ + src/util/$(DEPDIR)/$(am__dirstamp) src/util/libsss_krb5_common_la-become_user.lo: \ src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) @@ -10824,6 +11264,8 @@ src/providers/krb5/$(DEPDIR)/$(am__dirstamp) src/util/ad_common_tests-sss_krb5.$(OBJEXT): src/util/$(am__dirstamp) \ src/util/$(DEPDIR)/$(am__dirstamp) +src/util/ad_common_tests-sss_iobuf.$(OBJEXT): \ + src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) src/util/ad_common_tests-become_user.$(OBJEXT): \ src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) src/tests/cmocka/ad_common_tests-common_mock_krb5.$(OBJEXT): \ @@ -11071,6 +11513,9 @@ src/responder/common/cache_req/ifp_tests-cache_req.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/ifp_tests-cache_req_result.$(OBJEXT): \ + src/responder/common/cache_req/$(am__dirstamp) \ + src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/ifp_tests-cache_req_search.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) @@ -11143,6 +11588,27 @@ src/responder/common/cache_req/plugins/ifp_tests-cache_req_netgroup_by_name.$(OBJEXT): \ src/responder/common/cache_req/plugins/$(am__dirstamp) \ src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.$(OBJEXT): \ + src/responder/common/cache_req/plugins/$(am__dirstamp) \ + src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/$(am__dirstamp): + @$(MKDIR_P) src/responder/common/iface + @: > src/responder/common/iface/$(am__dirstamp) +src/responder/common/iface/$(DEPDIR)/$(am__dirstamp): + @$(MKDIR_P) src/responder/common/iface/$(DEPDIR) + @: > src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/ifp_tests-responder_iface.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/ifp_tests-responder_domain.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/ifp_tests-responder_ncache.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/ifp_tests-responder_iface_generated.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) src/tests/cmocka/ifp_tests-test_ifp.$(OBJEXT): \ src/tests/cmocka/$(am__dirstamp) \ src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) @@ -11224,6 +11690,8 @@ src/providers/krb5/$(DEPDIR)/$(am__dirstamp) src/util/krb5_child_test-sss_krb5.$(OBJEXT): src/util/$(am__dirstamp) \ src/util/$(DEPDIR)/$(am__dirstamp) +src/util/krb5_child_test-sss_iobuf.$(OBJEXT): \ + src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) src/providers/krb5_child_test-data_provider_fo.$(OBJEXT): \ src/providers/$(am__dirstamp) \ src/providers/$(DEPDIR)/$(am__dirstamp) @@ -11267,6 +11735,8 @@ src/providers/krb5/$(DEPDIR)/$(am__dirstamp) src/util/krb5_utils_tests-sss_krb5.$(OBJEXT): \ src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) +src/util/krb5_utils_tests-sss_iobuf.$(OBJEXT): \ + src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) src/providers/krb5_utils_tests-data_provider_fo.$(OBJEXT): \ src/providers/$(am__dirstamp) \ src/providers/$(DEPDIR)/$(am__dirstamp) @@ -11310,6 +11780,8 @@ src/util/$(DEPDIR)/$(am__dirstamp) src/util/krb5_child-sss_krb5.$(OBJEXT): src/util/$(am__dirstamp) \ src/util/$(DEPDIR)/$(am__dirstamp) +src/util/krb5_child-sss_iobuf.$(OBJEXT): src/util/$(am__dirstamp) \ + src/util/$(DEPDIR)/$(am__dirstamp) src/util/krb5_child-find_uid.$(OBJEXT): src/util/$(am__dirstamp) \ src/util/$(DEPDIR)/$(am__dirstamp) src/util/krb5_child-atomic_io.$(OBJEXT): src/util/$(am__dirstamp) \ @@ -11350,6 +11822,8 @@ src/providers/krb5/$(DEPDIR)/$(am__dirstamp) src/util/ldap_child-sss_krb5.$(OBJEXT): src/util/$(am__dirstamp) \ src/util/$(DEPDIR)/$(am__dirstamp) +src/util/ldap_child-sss_iobuf.$(OBJEXT): src/util/$(am__dirstamp) \ + src/util/$(DEPDIR)/$(am__dirstamp) src/util/ldap_child-atomic_io.$(OBJEXT): src/util/$(am__dirstamp) \ src/util/$(DEPDIR)/$(am__dirstamp) src/util/ldap_child-authtok.$(OBJEXT): src/util/$(am__dirstamp) \ @@ -11452,6 +11926,9 @@ src/responder/common/cache_req/nss_srv_tests-cache_req.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/nss_srv_tests-cache_req_result.$(OBJEXT): \ + src/responder/common/cache_req/$(am__dirstamp) \ + src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/nss_srv_tests-cache_req_search.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) @@ -11518,6 +11995,21 @@ src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_netgroup_by_name.$(OBJEXT): \ src/responder/common/cache_req/plugins/$(am__dirstamp) \ src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.$(OBJEXT): \ + src/responder/common/cache_req/plugins/$(am__dirstamp) \ + src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/nss_srv_tests-responder_iface.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/nss_srv_tests-responder_domain.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/nss_srv_tests-responder_ncache.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/nss_srv_tests-responder_iface_generated.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) src/tests/cmocka/nss_srv_tests-test_nss_srv.$(OBJEXT): \ src/tests/cmocka/$(am__dirstamp) \ src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) @@ -11614,6 +12106,9 @@ src/responder/common/cache_req/pam_srv_tests-cache_req.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/pam_srv_tests-cache_req_result.$(OBJEXT): \ + src/responder/common/cache_req/$(am__dirstamp) \ + src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/pam_srv_tests-cache_req_search.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) @@ -11680,6 +12175,21 @@ src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_netgroup_by_name.$(OBJEXT): \ src/responder/common/cache_req/plugins/$(am__dirstamp) \ src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.$(OBJEXT): \ + src/responder/common/cache_req/plugins/$(am__dirstamp) \ + src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/pam_srv_tests-responder_iface.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/pam_srv_tests-responder_domain.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/pam_srv_tests-responder_ncache.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/pam_srv_tests-responder_iface_generated.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) src/tests/cmocka/pam_srv_tests-test_pam_srv.$(OBJEXT): \ src/tests/cmocka/$(am__dirstamp) \ src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) @@ -11763,6 +12273,9 @@ src/responder/common/responder_get_domains_tests-responder_dp.$(OBJEXT): \ src/responder/common/$(am__dirstamp) \ src/responder/common/$(DEPDIR)/$(am__dirstamp) +src/responder/common/responder_get_domains_tests-responder_dp_ssh.$(OBJEXT): \ + src/responder/common/$(am__dirstamp) \ + src/responder/common/$(DEPDIR)/$(am__dirstamp) src/responder/common/responder_get_domains_tests-responder_packet.$(OBJEXT): \ src/responder/common/$(am__dirstamp) \ src/responder/common/$(DEPDIR)/$(am__dirstamp) @@ -11784,9 +12297,24 @@ src/providers/responder_get_domains_tests-data_provider_req.$(OBJEXT): \ src/providers/$(am__dirstamp) \ src/providers/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_get_domains_tests-responder_iface.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_get_domains_tests-responder_domain.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_get_domains_tests-responder_ncache.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/responder_get_domains_tests-cache_req.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.$(OBJEXT): \ + src/responder/common/cache_req/$(am__dirstamp) \ + src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/responder_get_domains_tests-cache_req_search.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) @@ -11853,6 +12381,9 @@ src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_netgroup_by_name.$(OBJEXT): \ src/responder/common/cache_req/plugins/$(am__dirstamp) \ src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.$(OBJEXT): \ + src/responder/common/cache_req/plugins/$(am__dirstamp) \ + src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) src/tests/cmocka/responder_get_domains_tests-test_responder_common.$(OBJEXT): \ src/tests/cmocka/$(am__dirstamp) \ src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) @@ -11896,6 +12427,9 @@ src/responder/common/cache_req/responder_cache_req_tests-cache_req.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.$(OBJEXT): \ + src/responder/common/cache_req/$(am__dirstamp) \ + src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/responder_cache_req_tests-cache_req_search.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) @@ -11962,6 +12496,21 @@ src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_netgroup_by_name.$(OBJEXT): \ src/responder/common/cache_req/plugins/$(am__dirstamp) \ src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.$(OBJEXT): \ + src/responder/common/cache_req/plugins/$(am__dirstamp) \ + src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_cache_req_tests-responder_iface.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_cache_req_tests-responder_domain.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_cache_req_tests-responder_ncache.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) src/tests/cmocka/responder_cache_req_tests-test_responder_cache_req.$(OBJEXT): \ src/tests/cmocka/$(am__dirstamp) \ src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) @@ -11992,6 +12541,18 @@ src/responder/common/data_provider/responder_socket_access_tests-rdp_client.$(OBJEXT): \ src/responder/common/data_provider/$(am__dirstamp) \ src/responder/common/data_provider/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_socket_access_tests-responder_iface.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_socket_access_tests-responder_domain.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_socket_access_tests-responder_ncache.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) responder_socket_access-tests$(EXEEXT): $(responder_socket_access_tests_OBJECTS) $(responder_socket_access_tests_DEPENDENCIES) $(EXTRA_responder_socket_access_tests_DEPENDENCIES) @rm -f responder_socket_access-tests$(EXEEXT) @@ -12470,6 +13031,8 @@ src/monitor/monitor_iface_generated.$(OBJEXT): \ src/monitor/$(am__dirstamp) \ src/monitor/$(DEPDIR)/$(am__dirstamp) +src/util/inotify.$(OBJEXT): src/util/$(am__dirstamp) \ + src/util/$(DEPDIR)/$(am__dirstamp) sssd$(EXEEXT): $(sssd_OBJECTS) $(sssd_DEPENDENCIES) $(EXTRA_sssd_DEPENDENCIES) @rm -f sssd$(EXEEXT) @@ -12504,6 +13067,9 @@ src/responder/common/responder_dp.$(OBJEXT): \ src/responder/common/$(am__dirstamp) \ src/responder/common/$(DEPDIR)/$(am__dirstamp) +src/responder/common/responder_dp_ssh.$(OBJEXT): \ + src/responder/common/$(am__dirstamp) \ + src/responder/common/$(DEPDIR)/$(am__dirstamp) src/responder/common/responder_packet.$(OBJEXT): \ src/responder/common/$(am__dirstamp) \ src/responder/common/$(DEPDIR)/$(am__dirstamp) @@ -12522,9 +13088,24 @@ src/providers/data_provider_req.$(OBJEXT): \ src/providers/$(am__dirstamp) \ src/providers/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_iface.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_domain.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_ncache.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/responder_iface_generated.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/cache_req.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/cache_req_result.$(OBJEXT): \ + src/responder/common/cache_req/$(am__dirstamp) \ + src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/cache_req_search.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) @@ -12591,6 +13172,9 @@ src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.$(OBJEXT): \ src/responder/common/cache_req/plugins/$(am__dirstamp) \ src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/plugins/cache_req_host_by_name.$(OBJEXT): \ + src/responder/common/cache_req/plugins/$(am__dirstamp) \ + src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) sssd_autofs$(EXEEXT): $(sssd_autofs_OBJECTS) $(sssd_autofs_DEPENDENCIES) $(EXTRA_sssd_autofs_DEPENDENCIES) @rm -f sssd_autofs$(EXEEXT) @@ -12640,6 +13224,9 @@ src/providers/data_provider/dp_client.$(OBJEXT): \ src/providers/data_provider/$(am__dirstamp) \ src/providers/data_provider/$(DEPDIR)/$(am__dirstamp) +src/providers/data_provider/dp_resp_client.$(OBJEXT): \ + src/providers/data_provider/$(am__dirstamp) \ + src/providers/data_provider/$(DEPDIR)/$(am__dirstamp) src/providers/data_provider/dp_iface_generated.$(OBJEXT): \ src/providers/data_provider/$(am__dirstamp) \ src/providers/data_provider/$(DEPDIR)/$(am__dirstamp) @@ -12685,6 +13272,12 @@ sssd_be$(EXEEXT): $(sssd_be_OBJECTS) $(sssd_be_DEPENDENCIES) $(EXTRA_sssd_be_DEPENDENCIES) @rm -f sssd_be$(EXEEXT) $(AM_V_CCLD)$(sssd_be_LINK) $(sssd_be_OBJECTS) $(sssd_be_LDADD) $(LIBS) +src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.$(OBJEXT): \ + src/tools/$(am__dirstamp) src/tools/$(DEPDIR)/$(am__dirstamp) + +sssd_check_socket_activated_responders$(EXEEXT): $(sssd_check_socket_activated_responders_OBJECTS) $(sssd_check_socket_activated_responders_DEPENDENCIES) $(EXTRA_sssd_check_socket_activated_responders_DEPENDENCIES) + @rm -f sssd_check_socket_activated_responders$(EXEEXT) + $(AM_V_CCLD)$(sssd_check_socket_activated_responders_LINK) $(sssd_check_socket_activated_responders_OBJECTS) $(sssd_check_socket_activated_responders_LDADD) $(LIBS) src/responder/ifp/sssd_ifp-ifpsrv.$(OBJEXT): \ src/responder/ifp/$(am__dirstamp) \ src/responder/ifp/$(DEPDIR)/$(am__dirstamp) @@ -12733,6 +13326,9 @@ src/responder/common/sssd_ifp-responder_dp.$(OBJEXT): \ src/responder/common/$(am__dirstamp) \ src/responder/common/$(DEPDIR)/$(am__dirstamp) +src/responder/common/sssd_ifp-responder_dp_ssh.$(OBJEXT): \ + src/responder/common/$(am__dirstamp) \ + src/responder/common/$(DEPDIR)/$(am__dirstamp) src/responder/common/sssd_ifp-responder_packet.$(OBJEXT): \ src/responder/common/$(am__dirstamp) \ src/responder/common/$(DEPDIR)/$(am__dirstamp) @@ -12754,9 +13350,24 @@ src/providers/sssd_ifp-data_provider_req.$(OBJEXT): \ src/providers/$(am__dirstamp) \ src/providers/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/sssd_ifp-responder_iface.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/sssd_ifp-responder_domain.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/sssd_ifp-responder_ncache.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/sssd_ifp-responder_iface_generated.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/sssd_ifp-cache_req.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/sssd_ifp-cache_req_result.$(OBJEXT): \ + src/responder/common/cache_req/$(am__dirstamp) \ + src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/sssd_ifp-cache_req_search.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) @@ -12823,6 +13434,9 @@ src/responder/common/cache_req/plugins/sssd_ifp-cache_req_netgroup_by_name.$(OBJEXT): \ src/responder/common/cache_req/plugins/$(am__dirstamp) \ src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.$(OBJEXT): \ + src/responder/common/cache_req/plugins/$(am__dirstamp) \ + src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) sssd_ifp$(EXEEXT): $(sssd_ifp_OBJECTS) $(sssd_ifp_DEPENDENCIES) $(EXTRA_sssd_ifp_DEPENDENCIES) @rm -f sssd_ifp$(EXEEXT) @@ -12902,6 +13516,9 @@ src/responder/common/sssd_pac-responder_dp.$(OBJEXT): \ src/responder/common/$(am__dirstamp) \ src/responder/common/$(DEPDIR)/$(am__dirstamp) +src/responder/common/sssd_pac-responder_dp_ssh.$(OBJEXT): \ + src/responder/common/$(am__dirstamp) \ + src/responder/common/$(DEPDIR)/$(am__dirstamp) src/responder/common/sssd_pac-responder_packet.$(OBJEXT): \ src/responder/common/$(am__dirstamp) \ src/responder/common/$(DEPDIR)/$(am__dirstamp) @@ -12923,9 +13540,24 @@ src/providers/sssd_pac-data_provider_req.$(OBJEXT): \ src/providers/$(am__dirstamp) \ src/providers/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/sssd_pac-responder_iface.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/sssd_pac-responder_domain.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/sssd_pac-responder_ncache.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/sssd_pac-responder_iface_generated.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/sssd_pac-cache_req.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/sssd_pac-cache_req_result.$(OBJEXT): \ + src/responder/common/cache_req/$(am__dirstamp) \ + src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/sssd_pac-cache_req_search.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) @@ -12992,6 +13624,9 @@ src/responder/common/cache_req/plugins/sssd_pac-cache_req_netgroup_by_name.$(OBJEXT): \ src/responder/common/cache_req/plugins/$(am__dirstamp) \ src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.$(OBJEXT): \ + src/responder/common/cache_req/plugins/$(am__dirstamp) \ + src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) sssd_pac$(EXEEXT): $(sssd_pac_OBJECTS) $(sssd_pac_DEPENDENCIES) $(EXTRA_sssd_pac_DEPENDENCIES) @rm -f sssd_pac$(EXEEXT) @@ -13052,10 +13687,16 @@ @: > src/responder/ssh/$(DEPDIR)/$(am__dirstamp) src/responder/ssh/sshsrv.$(OBJEXT): src/responder/ssh/$(am__dirstamp) \ src/responder/ssh/$(DEPDIR)/$(am__dirstamp) -src/responder/ssh/sshsrv_dp.$(OBJEXT): \ +src/responder/ssh/ssh_cmd.$(OBJEXT): \ + src/responder/ssh/$(am__dirstamp) \ + src/responder/ssh/$(DEPDIR)/$(am__dirstamp) +src/responder/ssh/ssh_known_hosts.$(OBJEXT): \ + src/responder/ssh/$(am__dirstamp) \ + src/responder/ssh/$(DEPDIR)/$(am__dirstamp) +src/responder/ssh/ssh_protocol.$(OBJEXT): \ src/responder/ssh/$(am__dirstamp) \ src/responder/ssh/$(DEPDIR)/$(am__dirstamp) -src/responder/ssh/sshsrv_cmd.$(OBJEXT): \ +src/responder/ssh/ssh_reply.$(OBJEXT): \ src/responder/ssh/$(am__dirstamp) \ src/responder/ssh/$(DEPDIR)/$(am__dirstamp) @@ -13113,6 +13754,16 @@ sysdb_ssh-tests$(EXEEXT): $(sysdb_ssh_tests_OBJECTS) $(sysdb_ssh_tests_DEPENDENCIES) $(EXTRA_sysdb_ssh_tests_DEPENDENCIES) @rm -f sysdb_ssh-tests$(EXEEXT) $(AM_V_CCLD)$(sysdb_ssh_tests_LINK) $(sysdb_ssh_tests_OBJECTS) $(sysdb_ssh_tests_LDADD) $(LIBS) +src/tests/tcurl_test_tool-tcurl_test_tool.$(OBJEXT): \ + src/tests/$(am__dirstamp) src/tests/$(DEPDIR)/$(am__dirstamp) +src/util/tcurl_test_tool-tev_curl.$(OBJEXT): src/util/$(am__dirstamp) \ + src/util/$(DEPDIR)/$(am__dirstamp) +src/util/tcurl_test_tool-sss_iobuf.$(OBJEXT): \ + src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) + +tcurl-test-tool$(EXEEXT): $(tcurl_test_tool_OBJECTS) $(tcurl_test_tool_DEPENDENCIES) $(EXTRA_tcurl_test_tool_DEPENDENCIES) + @rm -f tcurl-test-tool$(EXEEXT) + $(AM_V_CCLD)$(tcurl_test_tool_LINK) $(tcurl_test_tool_OBJECTS) $(tcurl_test_tool_LDADD) $(LIBS) src/tests/cmocka/test_authtok-test_authtok.$(OBJEXT): \ src/tests/cmocka/$(am__dirstamp) \ src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) @@ -13165,6 +13816,9 @@ src/responder/common/test_negcache-responder_dp.$(OBJEXT): \ src/responder/common/$(am__dirstamp) \ src/responder/common/$(DEPDIR)/$(am__dirstamp) +src/responder/common/test_negcache-responder_dp_ssh.$(OBJEXT): \ + src/responder/common/$(am__dirstamp) \ + src/responder/common/$(DEPDIR)/$(am__dirstamp) src/responder/common/test_negcache-responder_packet.$(OBJEXT): \ src/responder/common/$(am__dirstamp) \ src/responder/common/$(DEPDIR)/$(am__dirstamp) @@ -13186,9 +13840,24 @@ src/providers/test_negcache-data_provider_req.$(OBJEXT): \ src/providers/$(am__dirstamp) \ src/providers/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/test_negcache-responder_iface.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/test_negcache-responder_domain.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/test_negcache-responder_ncache.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +src/responder/common/iface/test_negcache-responder_iface_generated.$(OBJEXT): \ + src/responder/common/iface/$(am__dirstamp) \ + src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/test_negcache-cache_req.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/test_negcache-cache_req_result.$(OBJEXT): \ + src/responder/common/cache_req/$(am__dirstamp) \ + src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) src/responder/common/cache_req/test_negcache-cache_req_search.$(OBJEXT): \ src/responder/common/cache_req/$(am__dirstamp) \ src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) @@ -13255,6 +13924,9 @@ src/responder/common/cache_req/plugins/test_negcache-cache_req_netgroup_by_name.$(OBJEXT): \ src/responder/common/cache_req/plugins/$(am__dirstamp) \ src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.$(OBJEXT): \ + src/responder/common/cache_req/plugins/$(am__dirstamp) \ + src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) src/tests/cmocka/test_negcache-common_mock_resp.$(OBJEXT): \ src/tests/cmocka/$(am__dirstamp) \ src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) @@ -13317,6 +13989,8 @@ src/providers/krb5/$(DEPDIR)/$(am__dirstamp) src/util/test_copy_ccache-sss_krb5.$(OBJEXT): \ src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) +src/util/test_copy_ccache-sss_iobuf.$(OBJEXT): \ + src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) test_copy_ccache$(EXEEXT): $(test_copy_ccache_OBJECTS) $(test_copy_ccache_DEPENDENCIES) $(EXTRA_test_copy_ccache_DEPENDENCIES) @rm -f test_copy_ccache$(EXEEXT) @@ -13332,6 +14006,8 @@ src/providers/krb5/$(DEPDIR)/$(am__dirstamp) src/util/test_copy_keytab-sss_krb5.$(OBJEXT): \ src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) +src/util/test_copy_keytab-sss_iobuf.$(OBJEXT): \ + src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) test_copy_keytab$(EXEEXT): $(test_copy_keytab_OBJECTS) $(test_copy_keytab_DEPENDENCIES) $(EXTRA_test_copy_keytab_DEPENDENCIES) @rm -f test_copy_keytab$(EXEEXT) @@ -13431,6 +14107,24 @@ test_fo_srv$(EXEEXT): $(test_fo_srv_OBJECTS) $(test_fo_srv_DEPENDENCIES) $(EXTRA_test_fo_srv_DEPENDENCIES) @rm -f test_fo_srv$(EXEEXT) $(AM_V_CCLD)$(test_fo_srv_LINK) $(test_fo_srv_OBJECTS) $(test_fo_srv_LDADD) $(LIBS) +src/util/test_inotify-inotify.$(OBJEXT): src/util/$(am__dirstamp) \ + src/util/$(DEPDIR)/$(am__dirstamp) +src/tests/cmocka/test_inotify-test_inotify.$(OBJEXT): \ + src/tests/cmocka/$(am__dirstamp) \ + src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) + +test_inotify$(EXEEXT): $(test_inotify_OBJECTS) $(test_inotify_DEPENDENCIES) $(EXTRA_test_inotify_DEPENDENCIES) + @rm -f test_inotify$(EXEEXT) + $(AM_V_CCLD)$(test_inotify_LINK) $(test_inotify_OBJECTS) $(test_inotify_LDADD) $(LIBS) +src/util/test_iobuf-sss_iobuf.$(OBJEXT): src/util/$(am__dirstamp) \ + src/util/$(DEPDIR)/$(am__dirstamp) +src/tests/cmocka/test_iobuf-test_iobuf.$(OBJEXT): \ + src/tests/cmocka/$(am__dirstamp) \ + src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) + +test_iobuf$(EXEEXT): $(test_iobuf_OBJECTS) $(test_iobuf_DEPENDENCIES) $(EXTRA_test_iobuf_DEPENDENCIES) + @rm -f test_iobuf$(EXEEXT) + $(AM_V_CCLD)$(test_iobuf_LINK) $(test_iobuf_OBJECTS) $(test_iobuf_LDADD) $(LIBS) src/providers/ipa/test_ipa_dn-ipa_dn.$(OBJEXT): \ src/providers/ipa/$(am__dirstamp) \ src/providers/ipa/$(DEPDIR)/$(am__dirstamp) @@ -13486,6 +14180,8 @@ src/providers/krb5/$(DEPDIR)/$(am__dirstamp) src/util/test_ipa_subdom_server-sss_krb5.$(OBJEXT): \ src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) +src/util/test_ipa_subdom_server-sss_iobuf.$(OBJEXT): \ + src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) src/util/test_ipa_subdom_server-become_user.$(OBJEXT): \ src/util/$(am__dirstamp) src/util/$(DEPDIR)/$(am__dirstamp) src/tests/cmocka/test_ipa_subdom_server-common_mock_sdap.$(OBJEXT): \ @@ -13577,6 +14273,19 @@ test_sdap_access$(EXEEXT): $(test_sdap_access_OBJECTS) $(test_sdap_access_DEPENDENCIES) $(EXTRA_test_sdap_access_DEPENDENCIES) @rm -f test_sdap_access$(EXEEXT) $(AM_V_CCLD)$(LINK) $(test_sdap_access_OBJECTS) $(test_sdap_access_LDADD) $(LIBS) +src/tests/cmocka/test_sdap_initgr-common_mock_sdap.$(OBJEXT): \ + src/tests/cmocka/$(am__dirstamp) \ + src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) +src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.$(OBJEXT): \ + src/tests/cmocka/$(am__dirstamp) \ + src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) +src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.$(OBJEXT): \ + src/tests/cmocka/$(am__dirstamp) \ + src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) + +test_sdap_initgr$(EXEEXT): $(test_sdap_initgr_OBJECTS) $(test_sdap_initgr_DEPENDENCIES) $(EXTRA_test_sdap_initgr_DEPENDENCIES) + @rm -f test_sdap_initgr$(EXEEXT) + $(AM_V_CCLD)$(test_sdap_initgr_LINK) $(test_sdap_initgr_OBJECTS) $(test_sdap_initgr_LDADD) $(LIBS) src/tests/cmocka/test_search_bases.$(OBJEXT): \ src/tests/cmocka/$(am__dirstamp) \ src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) @@ -13783,6 +14492,8 @@ -rm -f src/providers/ad/*.lo -rm -f src/providers/data_provider/*.$(OBJEXT) -rm -f src/providers/data_provider/*.lo + -rm -f src/providers/files/*.$(OBJEXT) + -rm -f src/providers/files/*.lo -rm -f src/providers/ipa/*.$(OBJEXT) -rm -f src/providers/ipa/*.lo -rm -f src/providers/krb5/*.$(OBJEXT) @@ -13802,6 +14513,7 @@ -rm -f src/responder/common/cache_req/*.$(OBJEXT) -rm -f src/responder/common/cache_req/plugins/*.$(OBJEXT) -rm -f src/responder/common/data_provider/*.$(OBJEXT) + -rm -f src/responder/common/iface/*.$(OBJEXT) -rm -f src/responder/ifp/*.$(OBJEXT) -rm -f src/responder/nss/*.$(OBJEXT) -rm -f src/responder/pac/*.$(OBJEXT) @@ -14018,6 +14730,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/dp_request.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/dp_request_reply.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/dp_request_table.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/dp_resp_client.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/dp_target_auth.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/dp_target_autofs.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/dp_target_hostid.Po@am__quote@ @@ -14038,6 +14751,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_request.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_request_reply.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_request_table.Plo@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_resp_client.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_target_auth.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_target_autofs.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_target_hostid.Plo@am__quote@ @@ -14056,6 +14770,9 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/test_dp_request-dp_request.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/test_dp_request-dp_targets.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/data_provider/$(DEPDIR)/test_dp_request_table-dp_request_table.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/providers/files/$(DEPDIR)/libsss_files_la-files_id.Plo@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/providers/files/$(DEPDIR)/libsss_files_la-files_init.Plo@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/providers/files/$(DEPDIR)/libsss_files_la-files_ops.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/ipa/$(DEPDIR)/ipa_ldap_opt_tests-ipa_opts.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/ipa/$(DEPDIR)/libsss_ipa_la-ipa_access.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/providers/ipa/$(DEPDIR)/libsss_ipa_la-ipa_auth.Plo@am__quote@ @@ -14287,12 +15004,14 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_cmd.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_common.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_dp.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_dp_ssh.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_get_domains.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_get_domains_tests-negcache.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_get_domains_tests-negcache_files.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_cmd.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_common.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_dp.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_dp_ssh.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_get_domains.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_packet.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_utils.Po@am__quote@ @@ -14308,6 +15027,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_ifp-responder_cmd.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_ifp-responder_common.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_ifp-responder_dp.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_ifp-responder_dp_ssh.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_ifp-responder_get_domains.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_ifp-responder_packet.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_ifp-responder_utils.Po@am__quote@ @@ -14316,6 +15036,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_pac-responder_cmd.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_pac-responder_common.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_pac-responder_dp.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_pac-responder_dp_ssh.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_pac-responder_get_domains.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_pac-responder_packet.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/sssd_pac-responder_utils.Po@am__quote@ @@ -14324,35 +15045,45 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/test_negcache-responder_cmd.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/test_negcache-responder_common.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/test_negcache-responder_dp.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/test_negcache-responder_dp_ssh.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/test_negcache-responder_get_domains.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/test_negcache-responder_packet.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/$(DEPDIR)/test_negcache-responder_utils.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/cache_req.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/cache_req_result.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/cache_req_search.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_result.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_search.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_result.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_search.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_result.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_search.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_result.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_search.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_result.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_search.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_result.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_search.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_result.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_search.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_result.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_search.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/cache_req_common.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/cache_req_enum_groups.Po@am__quote@ @@ -14361,6 +15092,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/cache_req_group_by_filter.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/cache_req_group_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/cache_req_host_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/cache_req_initgroups_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/cache_req_initgroups_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/cache_req_netgroup_by_name.Po@am__quote@ @@ -14381,6 +15113,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_group_by_filter.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_group_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_host_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_initgroups_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_initgroups_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_netgroup_by_name.Po@am__quote@ @@ -14401,6 +15134,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_group_by_filter.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_group_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_host_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_initgroups_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_initgroups_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_netgroup_by_name.Po@am__quote@ @@ -14421,6 +15155,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_group_by_filter.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_group_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_host_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_initgroups_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_initgroups_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_netgroup_by_name.Po@am__quote@ @@ -14441,6 +15176,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_group_by_filter.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_group_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_host_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_initgroups_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_initgroups_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_netgroup_by_name.Po@am__quote@ @@ -14461,6 +15197,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_group_by_filter.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_group_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_host_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_initgroups_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_initgroups_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_netgroup_by_name.Po@am__quote@ @@ -14481,6 +15218,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_group_by_filter.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_group_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_host_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_initgroups_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_initgroups_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_netgroup_by_name.Po@am__quote@ @@ -14501,6 +15239,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_group_by_filter.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_group_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_host_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_initgroups_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_initgroups_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_netgroup_by_name.Po@am__quote@ @@ -14521,6 +15260,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_group_by_filter.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_group_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_host_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_initgroups_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_initgroups_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_netgroup_by_name.Po@am__quote@ @@ -14554,6 +15294,46 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/data_provider/$(DEPDIR)/sssd_pac-rdp_message.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/data_provider/$(DEPDIR)/test_negcache-rdp_client.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/data_provider/$(DEPDIR)/test_negcache-rdp_message.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/test_negcache-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/common/iface/$(DEPDIR)/test_negcache-responder_ncache.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/ifp/$(DEPDIR)/ifp_tests-ifp_iface_generated.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/ifp/$(DEPDIR)/ifp_tests-ifpsrv_cmd.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/ifp/$(DEPDIR)/ifp_tests-ifpsrv_util.Po@am__quote@ @@ -14611,9 +15391,11 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/secrets/$(DEPDIR)/proxy.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/secrets/$(DEPDIR)/secsrv.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/secrets/$(DEPDIR)/secsrv_cmd.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/ssh/$(DEPDIR)/ssh_cmd.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/ssh/$(DEPDIR)/ssh_known_hosts.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/ssh/$(DEPDIR)/ssh_protocol.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/responder/ssh/$(DEPDIR)/ssh_reply.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/ssh/$(DEPDIR)/sshsrv.Po@am__quote@ -@AMDEP_TRUE@@am__include@ @am__quote@src/responder/ssh/$(DEPDIR)/sshsrv_cmd.Po@am__quote@ -@AMDEP_TRUE@@am__include@ @am__quote@src/responder/ssh/$(DEPDIR)/sshsrv_dp.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/sudo/$(DEPDIR)/sudosrv.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/sudo/$(DEPDIR)/sudosrv_cmd.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/responder/sudo/$(DEPDIR)/sudosrv_dp.Po@am__quote@ @@ -14731,6 +15513,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/$(DEPDIR)/strtonum_tests-strtonum-tests.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/$(DEPDIR)/sysdb_ssh_tests-sysdb_ssh-tests.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/$(DEPDIR)/sysdb_tests-sysdb-tests.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/tests/$(DEPDIR)/tcurl_test_tool-tcurl_test_tool.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/$(DEPDIR)/test_io-common.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/$(DEPDIR)/util_tests-util-tests.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/ad_common_tests-common_mock_krb5.Po@am__quote@ @@ -14783,7 +15566,9 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_expire_common.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_find_uid-test_find_uid.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_fo_srv-test_fo_srv.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_inotify-test_inotify.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_io-test_io.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_iobuf-test_iobuf.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_ipa_dn-test_ipa_dn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_ipa_idmap-test_ipa_idmap.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_ipa_subdom_server-common_mock_be.Po@am__quote@ @@ -14800,6 +15585,9 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_resolv_fake-test_resolv_fake.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_sbus_opath-test_sbus_opath.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_sdap_access.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sdap.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sysdb_objects.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-test_sdap_initgr.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_search_bases.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_sss_idmap-test_sss_idmap.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tests/cmocka/$(DEPDIR)/test_sysdb_subdomains-test_sysdb_subdomains.Po@am__quote@ @@ -14875,6 +15663,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/tools/$(DEPDIR)/sssctl-selinux.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tools/$(DEPDIR)/sssctl-sss_sync_ops.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tools/$(DEPDIR)/sssctl-tools_util.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/tools/$(DEPDIR)/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tools/$(DEPDIR)/tools_util.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tools/common/$(DEPDIR)/_py2sss_la-sss_process.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/tools/common/$(DEPDIR)/_py2sss_la-sss_tools.Plo@am__quote@ @@ -14913,6 +15702,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/_py3sss_la-nscd.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/_py3sss_murmur_la-murmurhash3.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ad_common_tests-become_user.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ad_common_tests-sss_iobuf.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ad_common_tests-sss_krb5.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/atomic_io.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/authtok-utils.Plo@am__quote@ @@ -14927,6 +15717,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/gpo_child-atomic_io.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/gpo_child-signal.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/gpo_child-util.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/inotify.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/io.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ipa_ldap_opt_tests-sss_ldap.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ipa_ldap_opt_tests-sss_sockets.Po@am__quote@ @@ -14936,25 +15727,31 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child-become_user.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child-find_uid.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child-signal.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child-sss_iobuf.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child-sss_krb5.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child-strtonum.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child-user_info_msg.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child-util.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child-util_errors.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child_test-become_user.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child_test-sss_iobuf.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_child_test-sss_krb5.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_utils_tests-become_user.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_utils_tests-sss_iobuf.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/krb5_utils_tests-sss_krb5.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ldap_child-atomic_io.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ldap_child-authtok-utils.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ldap_child-authtok.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ldap_child-become_user.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ldap_child-signal.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ldap_child-sss_iobuf.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ldap_child-sss_krb5.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/ldap_child-util.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/libipa_hbac_la-sss_utf8.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/libsss_crypt_la-atomic_io.Plo@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/libsss_files_la-inotify.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/libsss_krb5_common_la-become_user.Plo@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/libsss_krb5_common_la-sss_iobuf.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/libsss_krb5_common_la-sss_krb5.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/libsss_ldap_common_la-sss_ldap.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/libsss_ldap_common_la-sss_sockets.Plo@am__quote@ @@ -15020,6 +15817,8 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/sssd_krb5_locator_plugin_la-atomic_io.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/strtonum.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/strtonum_tests-strtonum.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/tcurl_test_tool-sss_iobuf.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/tcurl_test_tool-tev_curl.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_authtok-authtok-utils.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_authtok-authtok.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_authtok-util.Po@am__quote@ @@ -15028,13 +15827,18 @@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_child_common-signal.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_child_common-util.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_child_common-util_errors.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_copy_ccache-sss_iobuf.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_copy_ccache-sss_krb5.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_copy_keytab-sss_iobuf.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_copy_keytab-sss_krb5.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_find_uid-atomic_io.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_find_uid-find_uid.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_find_uid-strtonum.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_inotify-inotify.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_io-io.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_iobuf-sss_iobuf.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_ipa_subdom_server-become_user.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_ipa_subdom_server-sss_iobuf.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/test_ipa_subdom_server-sss_krb5.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/$(DEPDIR)/winbind_idmap_sss_la-util_sss_idmap.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@src/util/cert/$(DEPDIR)/libsss_cert_la-cert_common.Plo@am__quote@ @@ -15406,6 +16210,13 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libdlopen_test_providers_la_CFLAGS) $(CFLAGS) -c -o src/providers/data_provider/libdlopen_test_providers_la-dp_client.lo `test -f 'src/providers/data_provider/dp_client.c' || echo '$(srcdir)/'`src/providers/data_provider/dp_client.c +src/providers/data_provider/libdlopen_test_providers_la-dp_resp_client.lo: src/providers/data_provider/dp_resp_client.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libdlopen_test_providers_la_CFLAGS) $(CFLAGS) -MT src/providers/data_provider/libdlopen_test_providers_la-dp_resp_client.lo -MD -MP -MF src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_resp_client.Tpo -c -o src/providers/data_provider/libdlopen_test_providers_la-dp_resp_client.lo `test -f 'src/providers/data_provider/dp_resp_client.c' || echo '$(srcdir)/'`src/providers/data_provider/dp_resp_client.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_resp_client.Tpo src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_resp_client.Plo +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/providers/data_provider/dp_resp_client.c' object='src/providers/data_provider/libdlopen_test_providers_la-dp_resp_client.lo' libtool=yes @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libdlopen_test_providers_la_CFLAGS) $(CFLAGS) -c -o src/providers/data_provider/libdlopen_test_providers_la-dp_resp_client.lo `test -f 'src/providers/data_provider/dp_resp_client.c' || echo '$(srcdir)/'`src/providers/data_provider/dp_resp_client.c + src/providers/data_provider/libdlopen_test_providers_la-dp_iface_generated.lo: src/providers/data_provider/dp_iface_generated.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libdlopen_test_providers_la_CFLAGS) $(CFLAGS) -MT src/providers/data_provider/libdlopen_test_providers_la-dp_iface_generated.lo -MD -MP -MF src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_iface_generated.Tpo -c -o src/providers/data_provider/libdlopen_test_providers_la-dp_iface_generated.lo `test -f 'src/providers/data_provider/dp_iface_generated.c' || echo '$(srcdir)/'`src/providers/data_provider/dp_iface_generated.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_iface_generated.Tpo src/providers/data_provider/$(DEPDIR)/libdlopen_test_providers_la-dp_iface_generated.Plo @@ -15868,6 +16679,34 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_crypt_la_CFLAGS) $(CFLAGS) -c -o src/util/crypto/nss/libsss_crypt_la-nss_util.lo `test -f 'src/util/crypto/nss/nss_util.c' || echo '$(srcdir)/'`src/util/crypto/nss/nss_util.c +src/providers/files/libsss_files_la-files_init.lo: src/providers/files/files_init.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_files_la_CFLAGS) $(CFLAGS) -MT src/providers/files/libsss_files_la-files_init.lo -MD -MP -MF src/providers/files/$(DEPDIR)/libsss_files_la-files_init.Tpo -c -o src/providers/files/libsss_files_la-files_init.lo `test -f 'src/providers/files/files_init.c' || echo '$(srcdir)/'`src/providers/files/files_init.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/providers/files/$(DEPDIR)/libsss_files_la-files_init.Tpo src/providers/files/$(DEPDIR)/libsss_files_la-files_init.Plo +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/providers/files/files_init.c' object='src/providers/files/libsss_files_la-files_init.lo' libtool=yes @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_files_la_CFLAGS) $(CFLAGS) -c -o src/providers/files/libsss_files_la-files_init.lo `test -f 'src/providers/files/files_init.c' || echo '$(srcdir)/'`src/providers/files/files_init.c + +src/providers/files/libsss_files_la-files_id.lo: src/providers/files/files_id.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_files_la_CFLAGS) $(CFLAGS) -MT src/providers/files/libsss_files_la-files_id.lo -MD -MP -MF src/providers/files/$(DEPDIR)/libsss_files_la-files_id.Tpo -c -o src/providers/files/libsss_files_la-files_id.lo `test -f 'src/providers/files/files_id.c' || echo '$(srcdir)/'`src/providers/files/files_id.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/providers/files/$(DEPDIR)/libsss_files_la-files_id.Tpo src/providers/files/$(DEPDIR)/libsss_files_la-files_id.Plo +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/providers/files/files_id.c' object='src/providers/files/libsss_files_la-files_id.lo' libtool=yes @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_files_la_CFLAGS) $(CFLAGS) -c -o src/providers/files/libsss_files_la-files_id.lo `test -f 'src/providers/files/files_id.c' || echo '$(srcdir)/'`src/providers/files/files_id.c + +src/providers/files/libsss_files_la-files_ops.lo: src/providers/files/files_ops.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_files_la_CFLAGS) $(CFLAGS) -MT src/providers/files/libsss_files_la-files_ops.lo -MD -MP -MF src/providers/files/$(DEPDIR)/libsss_files_la-files_ops.Tpo -c -o src/providers/files/libsss_files_la-files_ops.lo `test -f 'src/providers/files/files_ops.c' || echo '$(srcdir)/'`src/providers/files/files_ops.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/providers/files/$(DEPDIR)/libsss_files_la-files_ops.Tpo src/providers/files/$(DEPDIR)/libsss_files_la-files_ops.Plo +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/providers/files/files_ops.c' object='src/providers/files/libsss_files_la-files_ops.lo' libtool=yes @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_files_la_CFLAGS) $(CFLAGS) -c -o src/providers/files/libsss_files_la-files_ops.lo `test -f 'src/providers/files/files_ops.c' || echo '$(srcdir)/'`src/providers/files/files_ops.c + +src/util/libsss_files_la-inotify.lo: src/util/inotify.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_files_la_CFLAGS) $(CFLAGS) -MT src/util/libsss_files_la-inotify.lo -MD -MP -MF src/util/$(DEPDIR)/libsss_files_la-inotify.Tpo -c -o src/util/libsss_files_la-inotify.lo `test -f 'src/util/inotify.c' || echo '$(srcdir)/'`src/util/inotify.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/libsss_files_la-inotify.Tpo src/util/$(DEPDIR)/libsss_files_la-inotify.Plo +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/inotify.c' object='src/util/libsss_files_la-inotify.lo' libtool=yes @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_files_la_CFLAGS) $(CFLAGS) -c -o src/util/libsss_files_la-inotify.lo `test -f 'src/util/inotify.c' || echo '$(srcdir)/'`src/util/inotify.c + src/providers/ipa/libsss_ipa_la-ipa_init.lo: src/providers/ipa/ipa_init.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_ipa_la_CFLAGS) $(CFLAGS) -MT src/providers/ipa/libsss_ipa_la-ipa_init.lo -MD -MP -MF src/providers/ipa/$(DEPDIR)/libsss_ipa_la-ipa_init.Tpo -c -o src/providers/ipa/libsss_ipa_la-ipa_init.lo `test -f 'src/providers/ipa/ipa_init.c' || echo '$(srcdir)/'`src/providers/ipa/ipa_init.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/providers/ipa/$(DEPDIR)/libsss_ipa_la-ipa_init.Tpo src/providers/ipa/$(DEPDIR)/libsss_ipa_la-ipa_init.Plo @@ -16253,6 +17092,13 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_krb5_common_la_CFLAGS) $(CFLAGS) -c -o src/util/libsss_krb5_common_la-sss_krb5.lo `test -f 'src/util/sss_krb5.c' || echo '$(srcdir)/'`src/util/sss_krb5.c +src/util/libsss_krb5_common_la-sss_iobuf.lo: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_krb5_common_la_CFLAGS) $(CFLAGS) -MT src/util/libsss_krb5_common_la-sss_iobuf.lo -MD -MP -MF src/util/$(DEPDIR)/libsss_krb5_common_la-sss_iobuf.Tpo -c -o src/util/libsss_krb5_common_la-sss_iobuf.lo `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/libsss_krb5_common_la-sss_iobuf.Tpo src/util/$(DEPDIR)/libsss_krb5_common_la-sss_iobuf.Plo +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/libsss_krb5_common_la-sss_iobuf.lo' libtool=yes @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_krb5_common_la_CFLAGS) $(CFLAGS) -c -o src/util/libsss_krb5_common_la-sss_iobuf.lo `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + src/util/libsss_krb5_common_la-become_user.lo: src/util/become_user.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libsss_krb5_common_la_CFLAGS) $(CFLAGS) -MT src/util/libsss_krb5_common_la-become_user.lo -MD -MP -MF src/util/$(DEPDIR)/libsss_krb5_common_la-become_user.Tpo -c -o src/util/libsss_krb5_common_la-become_user.lo `test -f 'src/util/become_user.c' || echo '$(srcdir)/'`src/util/become_user.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/libsss_krb5_common_la-become_user.Tpo src/util/$(DEPDIR)/libsss_krb5_common_la-become_user.Plo @@ -17478,6 +18324,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ad_common_tests_CFLAGS) $(CFLAGS) -c -o src/util/ad_common_tests-sss_krb5.obj `if test -f 'src/util/sss_krb5.c'; then $(CYGPATH_W) 'src/util/sss_krb5.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_krb5.c'; fi` +src/util/ad_common_tests-sss_iobuf.o: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ad_common_tests_CFLAGS) $(CFLAGS) -MT src/util/ad_common_tests-sss_iobuf.o -MD -MP -MF src/util/$(DEPDIR)/ad_common_tests-sss_iobuf.Tpo -c -o src/util/ad_common_tests-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/ad_common_tests-sss_iobuf.Tpo src/util/$(DEPDIR)/ad_common_tests-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/ad_common_tests-sss_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ad_common_tests_CFLAGS) $(CFLAGS) -c -o src/util/ad_common_tests-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + +src/util/ad_common_tests-sss_iobuf.obj: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ad_common_tests_CFLAGS) $(CFLAGS) -MT src/util/ad_common_tests-sss_iobuf.obj -MD -MP -MF src/util/$(DEPDIR)/ad_common_tests-sss_iobuf.Tpo -c -o src/util/ad_common_tests-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/ad_common_tests-sss_iobuf.Tpo src/util/$(DEPDIR)/ad_common_tests-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/ad_common_tests-sss_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ad_common_tests_CFLAGS) $(CFLAGS) -c -o src/util/ad_common_tests-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` + src/util/ad_common_tests-become_user.o: src/util/become_user.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ad_common_tests_CFLAGS) $(CFLAGS) -MT src/util/ad_common_tests-become_user.o -MD -MP -MF src/util/$(DEPDIR)/ad_common_tests-become_user.Tpo -c -o src/util/ad_common_tests-become_user.o `test -f 'src/util/become_user.c' || echo '$(srcdir)/'`src/util/become_user.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/ad_common_tests-become_user.Tpo src/util/$(DEPDIR)/ad_common_tests-become_user.Po @@ -18318,6 +19178,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/ifp_tests-cache_req.obj `if test -f 'src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req.c'; fi` +src/responder/common/cache_req/ifp_tests-cache_req_result.o: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/ifp_tests-cache_req_result.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_result.Tpo -c -o src/responder/common/cache_req/ifp_tests-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/ifp_tests-cache_req_result.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/ifp_tests-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c + +src/responder/common/cache_req/ifp_tests-cache_req_result.obj: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/ifp_tests-cache_req_result.obj -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_result.Tpo -c -o src/responder/common/cache_req/ifp_tests-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/ifp_tests-cache_req_result.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/ifp_tests-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` + src/responder/common/cache_req/ifp_tests-cache_req_search.o: src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/ifp_tests-cache_req_search.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_search.Tpo -c -o src/responder/common/cache_req/ifp_tests-cache_req_search.o `test -f 'src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_search.Tpo src/responder/common/cache_req/$(DEPDIR)/ifp_tests-cache_req_search.Po @@ -18626,6 +19500,76 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/ifp_tests-cache_req_netgroup_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` +src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.o: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.o -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c + +src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.obj: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.obj -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/ifp_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/ifp_tests-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` + +src/responder/common/iface/ifp_tests-responder_iface.o: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/ifp_tests-responder_iface.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface.Tpo -c -o src/responder/common/iface/ifp_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/ifp_tests-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/ifp_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c + +src/responder/common/iface/ifp_tests-responder_iface.obj: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/ifp_tests-responder_iface.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface.Tpo -c -o src/responder/common/iface/ifp_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/ifp_tests-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/ifp_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` + +src/responder/common/iface/ifp_tests-responder_domain.o: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/ifp_tests-responder_domain.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_domain.Tpo -c -o src/responder/common/iface/ifp_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/ifp_tests-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/ifp_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c + +src/responder/common/iface/ifp_tests-responder_domain.obj: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/ifp_tests-responder_domain.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_domain.Tpo -c -o src/responder/common/iface/ifp_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/ifp_tests-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/ifp_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` + +src/responder/common/iface/ifp_tests-responder_ncache.o: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/ifp_tests-responder_ncache.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_ncache.Tpo -c -o src/responder/common/iface/ifp_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/ifp_tests-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/ifp_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c + +src/responder/common/iface/ifp_tests-responder_ncache.obj: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/ifp_tests-responder_ncache.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_ncache.Tpo -c -o src/responder/common/iface/ifp_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/ifp_tests-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/ifp_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` + +src/responder/common/iface/ifp_tests-responder_iface_generated.o: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/ifp_tests-responder_iface_generated.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/ifp_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/ifp_tests-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/ifp_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c + +src/responder/common/iface/ifp_tests-responder_iface_generated.obj: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/ifp_tests-responder_iface_generated.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/ifp_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/ifp_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/ifp_tests-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/ifp_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` + src/tests/cmocka/ifp_tests-test_ifp.o: src/tests/cmocka/test_ifp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ifp_tests_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/ifp_tests-test_ifp.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/ifp_tests-test_ifp.Tpo -c -o src/tests/cmocka/ifp_tests-test_ifp.o `test -f 'src/tests/cmocka/test_ifp.c' || echo '$(srcdir)/'`src/tests/cmocka/test_ifp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/ifp_tests-test_ifp.Tpo src/tests/cmocka/$(DEPDIR)/ifp_tests-test_ifp.Po @@ -18948,6 +19892,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_test_CFLAGS) $(CFLAGS) -c -o src/util/krb5_child_test-sss_krb5.obj `if test -f 'src/util/sss_krb5.c'; then $(CYGPATH_W) 'src/util/sss_krb5.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_krb5.c'; fi` +src/util/krb5_child_test-sss_iobuf.o: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_test_CFLAGS) $(CFLAGS) -MT src/util/krb5_child_test-sss_iobuf.o -MD -MP -MF src/util/$(DEPDIR)/krb5_child_test-sss_iobuf.Tpo -c -o src/util/krb5_child_test-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/krb5_child_test-sss_iobuf.Tpo src/util/$(DEPDIR)/krb5_child_test-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/krb5_child_test-sss_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_test_CFLAGS) $(CFLAGS) -c -o src/util/krb5_child_test-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + +src/util/krb5_child_test-sss_iobuf.obj: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_test_CFLAGS) $(CFLAGS) -MT src/util/krb5_child_test-sss_iobuf.obj -MD -MP -MF src/util/$(DEPDIR)/krb5_child_test-sss_iobuf.Tpo -c -o src/util/krb5_child_test-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/krb5_child_test-sss_iobuf.Tpo src/util/$(DEPDIR)/krb5_child_test-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/krb5_child_test-sss_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_test_CFLAGS) $(CFLAGS) -c -o src/util/krb5_child_test-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` + src/providers/krb5_child_test-data_provider_fo.o: src/providers/data_provider_fo.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_test_CFLAGS) $(CFLAGS) -MT src/providers/krb5_child_test-data_provider_fo.o -MD -MP -MF src/providers/$(DEPDIR)/krb5_child_test-data_provider_fo.Tpo -c -o src/providers/krb5_child_test-data_provider_fo.o `test -f 'src/providers/data_provider_fo.c' || echo '$(srcdir)/'`src/providers/data_provider_fo.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/providers/$(DEPDIR)/krb5_child_test-data_provider_fo.Tpo src/providers/$(DEPDIR)/krb5_child_test-data_provider_fo.Po @@ -19144,6 +20102,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_utils_tests_CFLAGS) $(CFLAGS) -c -o src/util/krb5_utils_tests-sss_krb5.obj `if test -f 'src/util/sss_krb5.c'; then $(CYGPATH_W) 'src/util/sss_krb5.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_krb5.c'; fi` +src/util/krb5_utils_tests-sss_iobuf.o: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_utils_tests_CFLAGS) $(CFLAGS) -MT src/util/krb5_utils_tests-sss_iobuf.o -MD -MP -MF src/util/$(DEPDIR)/krb5_utils_tests-sss_iobuf.Tpo -c -o src/util/krb5_utils_tests-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/krb5_utils_tests-sss_iobuf.Tpo src/util/$(DEPDIR)/krb5_utils_tests-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/krb5_utils_tests-sss_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_utils_tests_CFLAGS) $(CFLAGS) -c -o src/util/krb5_utils_tests-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + +src/util/krb5_utils_tests-sss_iobuf.obj: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_utils_tests_CFLAGS) $(CFLAGS) -MT src/util/krb5_utils_tests-sss_iobuf.obj -MD -MP -MF src/util/$(DEPDIR)/krb5_utils_tests-sss_iobuf.Tpo -c -o src/util/krb5_utils_tests-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/krb5_utils_tests-sss_iobuf.Tpo src/util/$(DEPDIR)/krb5_utils_tests-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/krb5_utils_tests-sss_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_utils_tests_CFLAGS) $(CFLAGS) -c -o src/util/krb5_utils_tests-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` + src/providers/krb5_utils_tests-data_provider_fo.o: src/providers/data_provider_fo.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_utils_tests_CFLAGS) $(CFLAGS) -MT src/providers/krb5_utils_tests-data_provider_fo.o -MD -MP -MF src/providers/$(DEPDIR)/krb5_utils_tests-data_provider_fo.Tpo -c -o src/providers/krb5_utils_tests-data_provider_fo.o `test -f 'src/providers/data_provider_fo.c' || echo '$(srcdir)/'`src/providers/data_provider_fo.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/providers/$(DEPDIR)/krb5_utils_tests-data_provider_fo.Tpo src/providers/$(DEPDIR)/krb5_utils_tests-data_provider_fo.Po @@ -19340,6 +20312,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_CFLAGS) $(CFLAGS) -c -o src/util/krb5_child-sss_krb5.obj `if test -f 'src/util/sss_krb5.c'; then $(CYGPATH_W) 'src/util/sss_krb5.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_krb5.c'; fi` +src/util/krb5_child-sss_iobuf.o: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_CFLAGS) $(CFLAGS) -MT src/util/krb5_child-sss_iobuf.o -MD -MP -MF src/util/$(DEPDIR)/krb5_child-sss_iobuf.Tpo -c -o src/util/krb5_child-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/krb5_child-sss_iobuf.Tpo src/util/$(DEPDIR)/krb5_child-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/krb5_child-sss_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_CFLAGS) $(CFLAGS) -c -o src/util/krb5_child-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + +src/util/krb5_child-sss_iobuf.obj: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_CFLAGS) $(CFLAGS) -MT src/util/krb5_child-sss_iobuf.obj -MD -MP -MF src/util/$(DEPDIR)/krb5_child-sss_iobuf.Tpo -c -o src/util/krb5_child-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/krb5_child-sss_iobuf.Tpo src/util/$(DEPDIR)/krb5_child-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/krb5_child-sss_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_CFLAGS) $(CFLAGS) -c -o src/util/krb5_child-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` + src/util/krb5_child-find_uid.o: src/util/find_uid.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(krb5_child_CFLAGS) $(CFLAGS) -MT src/util/krb5_child-find_uid.o -MD -MP -MF src/util/$(DEPDIR)/krb5_child-find_uid.Tpo -c -o src/util/krb5_child-find_uid.o `test -f 'src/util/find_uid.c' || echo '$(srcdir)/'`src/util/find_uid.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/krb5_child-find_uid.Tpo src/util/$(DEPDIR)/krb5_child-find_uid.Po @@ -19536,6 +20522,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ldap_child_CFLAGS) $(CFLAGS) -c -o src/util/ldap_child-sss_krb5.obj `if test -f 'src/util/sss_krb5.c'; then $(CYGPATH_W) 'src/util/sss_krb5.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_krb5.c'; fi` +src/util/ldap_child-sss_iobuf.o: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ldap_child_CFLAGS) $(CFLAGS) -MT src/util/ldap_child-sss_iobuf.o -MD -MP -MF src/util/$(DEPDIR)/ldap_child-sss_iobuf.Tpo -c -o src/util/ldap_child-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/ldap_child-sss_iobuf.Tpo src/util/$(DEPDIR)/ldap_child-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/ldap_child-sss_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ldap_child_CFLAGS) $(CFLAGS) -c -o src/util/ldap_child-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + +src/util/ldap_child-sss_iobuf.obj: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ldap_child_CFLAGS) $(CFLAGS) -MT src/util/ldap_child-sss_iobuf.obj -MD -MP -MF src/util/$(DEPDIR)/ldap_child-sss_iobuf.Tpo -c -o src/util/ldap_child-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/ldap_child-sss_iobuf.Tpo src/util/$(DEPDIR)/ldap_child-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/ldap_child-sss_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ldap_child_CFLAGS) $(CFLAGS) -c -o src/util/ldap_child-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` + src/util/ldap_child-atomic_io.o: src/util/atomic_io.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ldap_child_CFLAGS) $(CFLAGS) -MT src/util/ldap_child-atomic_io.o -MD -MP -MF src/util/$(DEPDIR)/ldap_child-atomic_io.Tpo -c -o src/util/ldap_child-atomic_io.o `test -f 'src/util/atomic_io.c' || echo '$(srcdir)/'`src/util/atomic_io.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/ldap_child-atomic_io.Tpo src/util/$(DEPDIR)/ldap_child-atomic_io.Po @@ -20012,6 +21012,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/nss_srv_tests-cache_req.obj `if test -f 'src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req.c'; fi` +src/responder/common/cache_req/nss_srv_tests-cache_req_result.o: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/nss_srv_tests-cache_req_result.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_result.Tpo -c -o src/responder/common/cache_req/nss_srv_tests-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/nss_srv_tests-cache_req_result.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/nss_srv_tests-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c + +src/responder/common/cache_req/nss_srv_tests-cache_req_result.obj: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/nss_srv_tests-cache_req_result.obj -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_result.Tpo -c -o src/responder/common/cache_req/nss_srv_tests-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/nss_srv_tests-cache_req_result.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/nss_srv_tests-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` + src/responder/common/cache_req/nss_srv_tests-cache_req_search.o: src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/nss_srv_tests-cache_req_search.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_search.Tpo -c -o src/responder/common/cache_req/nss_srv_tests-cache_req_search.o `test -f 'src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_search.Tpo src/responder/common/cache_req/$(DEPDIR)/nss_srv_tests-cache_req_search.Po @@ -20320,6 +21334,76 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_netgroup_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` +src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.o: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.o -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c + +src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.obj: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.obj -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/nss_srv_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/nss_srv_tests-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` + +src/responder/common/iface/nss_srv_tests-responder_iface.o: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/nss_srv_tests-responder_iface.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface.Tpo -c -o src/responder/common/iface/nss_srv_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/nss_srv_tests-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/nss_srv_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c + +src/responder/common/iface/nss_srv_tests-responder_iface.obj: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/nss_srv_tests-responder_iface.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface.Tpo -c -o src/responder/common/iface/nss_srv_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/nss_srv_tests-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/nss_srv_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` + +src/responder/common/iface/nss_srv_tests-responder_domain.o: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/nss_srv_tests-responder_domain.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_domain.Tpo -c -o src/responder/common/iface/nss_srv_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/nss_srv_tests-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/nss_srv_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c + +src/responder/common/iface/nss_srv_tests-responder_domain.obj: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/nss_srv_tests-responder_domain.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_domain.Tpo -c -o src/responder/common/iface/nss_srv_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/nss_srv_tests-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/nss_srv_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` + +src/responder/common/iface/nss_srv_tests-responder_ncache.o: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/nss_srv_tests-responder_ncache.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_ncache.Tpo -c -o src/responder/common/iface/nss_srv_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/nss_srv_tests-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/nss_srv_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c + +src/responder/common/iface/nss_srv_tests-responder_ncache.obj: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/nss_srv_tests-responder_ncache.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_ncache.Tpo -c -o src/responder/common/iface/nss_srv_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/nss_srv_tests-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/nss_srv_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` + +src/responder/common/iface/nss_srv_tests-responder_iface_generated.o: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/nss_srv_tests-responder_iface_generated.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/nss_srv_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/nss_srv_tests-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/nss_srv_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c + +src/responder/common/iface/nss_srv_tests-responder_iface_generated.obj: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/nss_srv_tests-responder_iface_generated.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/nss_srv_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/nss_srv_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/nss_srv_tests-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/nss_srv_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` + src/tests/cmocka/nss_srv_tests-test_nss_srv.o: src/tests/cmocka/test_nss_srv.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(nss_srv_tests_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/nss_srv_tests-test_nss_srv.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/nss_srv_tests-test_nss_srv.Tpo -c -o src/tests/cmocka/nss_srv_tests-test_nss_srv.o `test -f 'src/tests/cmocka/test_nss_srv.c' || echo '$(srcdir)/'`src/tests/cmocka/test_nss_srv.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/nss_srv_tests-test_nss_srv.Tpo src/tests/cmocka/$(DEPDIR)/nss_srv_tests-test_nss_srv.Po @@ -20684,6 +21768,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/pam_srv_tests-cache_req.obj `if test -f 'src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req.c'; fi` +src/responder/common/cache_req/pam_srv_tests-cache_req_result.o: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/pam_srv_tests-cache_req_result.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_result.Tpo -c -o src/responder/common/cache_req/pam_srv_tests-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/pam_srv_tests-cache_req_result.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/pam_srv_tests-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c + +src/responder/common/cache_req/pam_srv_tests-cache_req_result.obj: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/pam_srv_tests-cache_req_result.obj -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_result.Tpo -c -o src/responder/common/cache_req/pam_srv_tests-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/pam_srv_tests-cache_req_result.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/pam_srv_tests-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` + src/responder/common/cache_req/pam_srv_tests-cache_req_search.o: src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/pam_srv_tests-cache_req_search.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_search.Tpo -c -o src/responder/common/cache_req/pam_srv_tests-cache_req_search.o `test -f 'src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_search.Tpo src/responder/common/cache_req/$(DEPDIR)/pam_srv_tests-cache_req_search.Po @@ -20992,6 +22090,76 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_netgroup_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` +src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.o: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.o -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c + +src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.obj: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.obj -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/pam_srv_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/pam_srv_tests-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` + +src/responder/common/iface/pam_srv_tests-responder_iface.o: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/pam_srv_tests-responder_iface.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface.Tpo -c -o src/responder/common/iface/pam_srv_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/pam_srv_tests-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/pam_srv_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c + +src/responder/common/iface/pam_srv_tests-responder_iface.obj: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/pam_srv_tests-responder_iface.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface.Tpo -c -o src/responder/common/iface/pam_srv_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/pam_srv_tests-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/pam_srv_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` + +src/responder/common/iface/pam_srv_tests-responder_domain.o: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/pam_srv_tests-responder_domain.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_domain.Tpo -c -o src/responder/common/iface/pam_srv_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/pam_srv_tests-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/pam_srv_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c + +src/responder/common/iface/pam_srv_tests-responder_domain.obj: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/pam_srv_tests-responder_domain.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_domain.Tpo -c -o src/responder/common/iface/pam_srv_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/pam_srv_tests-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/pam_srv_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` + +src/responder/common/iface/pam_srv_tests-responder_ncache.o: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/pam_srv_tests-responder_ncache.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_ncache.Tpo -c -o src/responder/common/iface/pam_srv_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/pam_srv_tests-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/pam_srv_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c + +src/responder/common/iface/pam_srv_tests-responder_ncache.obj: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/pam_srv_tests-responder_ncache.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_ncache.Tpo -c -o src/responder/common/iface/pam_srv_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/pam_srv_tests-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/pam_srv_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` + +src/responder/common/iface/pam_srv_tests-responder_iface_generated.o: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/pam_srv_tests-responder_iface_generated.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/pam_srv_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/pam_srv_tests-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/pam_srv_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c + +src/responder/common/iface/pam_srv_tests-responder_iface_generated.obj: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/pam_srv_tests-responder_iface_generated.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/pam_srv_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/pam_srv_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/pam_srv_tests-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/pam_srv_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` + src/tests/cmocka/pam_srv_tests-test_pam_srv.o: src/tests/cmocka/test_pam_srv.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(pam_srv_tests_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/pam_srv_tests-test_pam_srv.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/pam_srv_tests-test_pam_srv.Tpo -c -o src/tests/cmocka/pam_srv_tests-test_pam_srv.o `test -f 'src/tests/cmocka/test_pam_srv.c' || echo '$(srcdir)/'`src/tests/cmocka/test_pam_srv.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/pam_srv_tests-test_pam_srv.Tpo src/tests/cmocka/$(DEPDIR)/pam_srv_tests-test_pam_srv.Po @@ -21258,6 +22426,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/responder_get_domains_tests-responder_dp.obj `if test -f 'src/responder/common/responder_dp.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp.c'; fi` +src/responder/common/responder_get_domains_tests-responder_dp_ssh.o: src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/responder_get_domains_tests-responder_dp_ssh.o -MD -MP -MF src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_dp_ssh.Tpo -c -o src/responder/common/responder_get_domains_tests-responder_dp_ssh.o `test -f 'src/responder/common/responder_dp_ssh.c' || echo '$(srcdir)/'`src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_dp_ssh.Tpo src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_dp_ssh.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/responder_dp_ssh.c' object='src/responder/common/responder_get_domains_tests-responder_dp_ssh.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/responder_get_domains_tests-responder_dp_ssh.o `test -f 'src/responder/common/responder_dp_ssh.c' || echo '$(srcdir)/'`src/responder/common/responder_dp_ssh.c + +src/responder/common/responder_get_domains_tests-responder_dp_ssh.obj: src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/responder_get_domains_tests-responder_dp_ssh.obj -MD -MP -MF src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_dp_ssh.Tpo -c -o src/responder/common/responder_get_domains_tests-responder_dp_ssh.obj `if test -f 'src/responder/common/responder_dp_ssh.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp_ssh.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp_ssh.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_dp_ssh.Tpo src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_dp_ssh.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/responder_dp_ssh.c' object='src/responder/common/responder_get_domains_tests-responder_dp_ssh.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/responder_get_domains_tests-responder_dp_ssh.obj `if test -f 'src/responder/common/responder_dp_ssh.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp_ssh.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp_ssh.c'; fi` + src/responder/common/responder_get_domains_tests-responder_packet.o: src/responder/common/responder_packet.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/responder_get_domains_tests-responder_packet.o -MD -MP -MF src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_packet.Tpo -c -o src/responder/common/responder_get_domains_tests-responder_packet.o `test -f 'src/responder/common/responder_packet.c' || echo '$(srcdir)/'`src/responder/common/responder_packet.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_packet.Tpo src/responder/common/$(DEPDIR)/responder_get_domains_tests-responder_packet.Po @@ -21356,6 +22538,62 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/providers/responder_get_domains_tests-data_provider_req.obj `if test -f 'src/providers/data_provider_req.c'; then $(CYGPATH_W) 'src/providers/data_provider_req.c'; else $(CYGPATH_W) '$(srcdir)/src/providers/data_provider_req.c'; fi` +src/responder/common/iface/responder_get_domains_tests-responder_iface.o: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_get_domains_tests-responder_iface.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface.Tpo -c -o src/responder/common/iface/responder_get_domains_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/responder_get_domains_tests-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_get_domains_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c + +src/responder/common/iface/responder_get_domains_tests-responder_iface.obj: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_get_domains_tests-responder_iface.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface.Tpo -c -o src/responder/common/iface/responder_get_domains_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/responder_get_domains_tests-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_get_domains_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` + +src/responder/common/iface/responder_get_domains_tests-responder_domain.o: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_get_domains_tests-responder_domain.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_domain.Tpo -c -o src/responder/common/iface/responder_get_domains_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/responder_get_domains_tests-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_get_domains_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c + +src/responder/common/iface/responder_get_domains_tests-responder_domain.obj: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_get_domains_tests-responder_domain.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_domain.Tpo -c -o src/responder/common/iface/responder_get_domains_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/responder_get_domains_tests-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_get_domains_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` + +src/responder/common/iface/responder_get_domains_tests-responder_ncache.o: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_get_domains_tests-responder_ncache.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_ncache.Tpo -c -o src/responder/common/iface/responder_get_domains_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/responder_get_domains_tests-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_get_domains_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c + +src/responder/common/iface/responder_get_domains_tests-responder_ncache.obj: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_get_domains_tests-responder_ncache.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_ncache.Tpo -c -o src/responder/common/iface/responder_get_domains_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/responder_get_domains_tests-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_get_domains_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` + +src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.o: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c + +src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.obj: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/responder_get_domains_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_get_domains_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` + src/responder/common/cache_req/responder_get_domains_tests-cache_req.o: src/responder/common/cache_req/cache_req.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/responder_get_domains_tests-cache_req.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req.Tpo -c -o src/responder/common/cache_req/responder_get_domains_tests-cache_req.o `test -f 'src/responder/common/cache_req/cache_req.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req.Tpo src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req.Po @@ -21370,6 +22608,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/responder_get_domains_tests-cache_req.obj `if test -f 'src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req.c'; fi` +src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.o: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_result.Tpo -c -o src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c + +src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.obj: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.obj -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_result.Tpo -c -o src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/responder_get_domains_tests-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` + src/responder/common/cache_req/responder_get_domains_tests-cache_req_search.o: src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/responder_get_domains_tests-cache_req_search.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_search.Tpo -c -o src/responder/common/cache_req/responder_get_domains_tests-cache_req_search.o `test -f 'src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_search.Tpo src/responder/common/cache_req/$(DEPDIR)/responder_get_domains_tests-cache_req_search.Po @@ -21678,6 +22930,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_netgroup_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` +src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.o: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.o -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c + +src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.obj: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.obj -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/responder_get_domains_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/responder_get_domains_tests-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` + src/tests/cmocka/responder_get_domains_tests-test_responder_common.o: src/tests/cmocka/test_responder_common.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_get_domains_tests_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/responder_get_domains_tests-test_responder_common.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/responder_get_domains_tests-test_responder_common.Tpo -c -o src/tests/cmocka/responder_get_domains_tests-test_responder_common.o `test -f 'src/tests/cmocka/test_responder_common.c' || echo '$(srcdir)/'`src/tests/cmocka/test_responder_common.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/responder_get_domains_tests-test_responder_common.Tpo src/tests/cmocka/$(DEPDIR)/responder_get_domains_tests-test_responder_common.Po @@ -21860,6 +23126,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/responder_cache_req_tests-cache_req.obj `if test -f 'src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req.c'; fi` +src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.o: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_result.Tpo -c -o src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c + +src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.obj: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.obj -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_result.Tpo -c -o src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/responder_cache_req_tests-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` + src/responder/common/cache_req/responder_cache_req_tests-cache_req_search.o: src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/responder_cache_req_tests-cache_req_search.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_search.Tpo -c -o src/responder/common/cache_req/responder_cache_req_tests-cache_req_search.o `test -f 'src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_search.Tpo src/responder/common/cache_req/$(DEPDIR)/responder_cache_req_tests-cache_req_search.Po @@ -22168,6 +23448,76 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_netgroup_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` +src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.o: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.o -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c + +src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.obj: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.obj -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/responder_cache_req_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/responder_cache_req_tests-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` + +src/responder/common/iface/responder_cache_req_tests-responder_iface.o: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_cache_req_tests-responder_iface.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface.Tpo -c -o src/responder/common/iface/responder_cache_req_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/responder_cache_req_tests-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_cache_req_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c + +src/responder/common/iface/responder_cache_req_tests-responder_iface.obj: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_cache_req_tests-responder_iface.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface.Tpo -c -o src/responder/common/iface/responder_cache_req_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/responder_cache_req_tests-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_cache_req_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` + +src/responder/common/iface/responder_cache_req_tests-responder_domain.o: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_cache_req_tests-responder_domain.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_domain.Tpo -c -o src/responder/common/iface/responder_cache_req_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/responder_cache_req_tests-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_cache_req_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c + +src/responder/common/iface/responder_cache_req_tests-responder_domain.obj: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_cache_req_tests-responder_domain.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_domain.Tpo -c -o src/responder/common/iface/responder_cache_req_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/responder_cache_req_tests-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_cache_req_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` + +src/responder/common/iface/responder_cache_req_tests-responder_ncache.o: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_cache_req_tests-responder_ncache.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_ncache.Tpo -c -o src/responder/common/iface/responder_cache_req_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/responder_cache_req_tests-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_cache_req_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c + +src/responder/common/iface/responder_cache_req_tests-responder_ncache.obj: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_cache_req_tests-responder_ncache.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_ncache.Tpo -c -o src/responder/common/iface/responder_cache_req_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/responder_cache_req_tests-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_cache_req_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` + +src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.o: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c + +src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.obj: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/responder_cache_req_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_cache_req_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` + src/tests/cmocka/responder_cache_req_tests-test_responder_cache_req.o: src/tests/cmocka/test_responder_cache_req.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_cache_req_tests_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/responder_cache_req_tests-test_responder_cache_req.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/responder_cache_req_tests-test_responder_cache_req.Tpo -c -o src/tests/cmocka/responder_cache_req_tests-test_responder_cache_req.o `test -f 'src/tests/cmocka/test_responder_cache_req.c' || echo '$(srcdir)/'`src/tests/cmocka/test_responder_cache_req.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/responder_cache_req_tests-test_responder_cache_req.Tpo src/tests/cmocka/$(DEPDIR)/responder_cache_req_tests-test_responder_cache_req.Po @@ -22294,6 +23644,62 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/data_provider/responder_socket_access_tests-rdp_client.obj `if test -f 'src/responder/common/data_provider/rdp_client.c'; then $(CYGPATH_W) 'src/responder/common/data_provider/rdp_client.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/data_provider/rdp_client.c'; fi` +src/responder/common/iface/responder_socket_access_tests-responder_iface.o: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_socket_access_tests-responder_iface.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface.Tpo -c -o src/responder/common/iface/responder_socket_access_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/responder_socket_access_tests-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_socket_access_tests-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c + +src/responder/common/iface/responder_socket_access_tests-responder_iface.obj: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_socket_access_tests-responder_iface.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface.Tpo -c -o src/responder/common/iface/responder_socket_access_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/responder_socket_access_tests-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_socket_access_tests-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` + +src/responder/common/iface/responder_socket_access_tests-responder_domain.o: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_socket_access_tests-responder_domain.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_domain.Tpo -c -o src/responder/common/iface/responder_socket_access_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/responder_socket_access_tests-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_socket_access_tests-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c + +src/responder/common/iface/responder_socket_access_tests-responder_domain.obj: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_socket_access_tests-responder_domain.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_domain.Tpo -c -o src/responder/common/iface/responder_socket_access_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/responder_socket_access_tests-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_socket_access_tests-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` + +src/responder/common/iface/responder_socket_access_tests-responder_ncache.o: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_socket_access_tests-responder_ncache.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_ncache.Tpo -c -o src/responder/common/iface/responder_socket_access_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/responder_socket_access_tests-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_socket_access_tests-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c + +src/responder/common/iface/responder_socket_access_tests-responder_ncache.obj: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_socket_access_tests-responder_ncache.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_ncache.Tpo -c -o src/responder/common/iface/responder_socket_access_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/responder_socket_access_tests-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_socket_access_tests-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` + +src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.o: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c + +src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.obj: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface_generated.Tpo -c -o src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/responder_socket_access_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_socket_access_tests_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/responder_socket_access_tests-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` + src/tests/safe_format_tests-safe-format-tests.o: src/tests/safe-format-tests.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(safe_format_tests_CFLAGS) $(CFLAGS) -MT src/tests/safe_format_tests-safe-format-tests.o -MD -MP -MF src/tests/$(DEPDIR)/safe_format_tests-safe-format-tests.Tpo -c -o src/tests/safe_format_tests-safe-format-tests.o `test -f 'src/tests/safe-format-tests.c' || echo '$(srcdir)/'`src/tests/safe-format-tests.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/$(DEPDIR)/safe_format_tests-safe-format-tests.Tpo src/tests/$(DEPDIR)/safe_format_tests-safe-format-tests.Po @@ -24044,6 +25450,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssctl_CFLAGS) $(CFLAGS) -c -o src/util/sssctl-nscd.obj `if test -f 'src/util/nscd.c'; then $(CYGPATH_W) 'src/util/nscd.c'; else $(CYGPATH_W) '$(srcdir)/src/util/nscd.c'; fi` +src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.o: src/tools/sssd_check_socket_activated_responders.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_check_socket_activated_responders_CFLAGS) $(CFLAGS) -MT src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.o -MD -MP -MF src/tools/$(DEPDIR)/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.Tpo -c -o src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.o `test -f 'src/tools/sssd_check_socket_activated_responders.c' || echo '$(srcdir)/'`src/tools/sssd_check_socket_activated_responders.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tools/$(DEPDIR)/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.Tpo src/tools/$(DEPDIR)/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tools/sssd_check_socket_activated_responders.c' object='src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_check_socket_activated_responders_CFLAGS) $(CFLAGS) -c -o src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.o `test -f 'src/tools/sssd_check_socket_activated_responders.c' || echo '$(srcdir)/'`src/tools/sssd_check_socket_activated_responders.c + +src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.obj: src/tools/sssd_check_socket_activated_responders.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_check_socket_activated_responders_CFLAGS) $(CFLAGS) -MT src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.obj -MD -MP -MF src/tools/$(DEPDIR)/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.Tpo -c -o src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.obj `if test -f 'src/tools/sssd_check_socket_activated_responders.c'; then $(CYGPATH_W) 'src/tools/sssd_check_socket_activated_responders.c'; else $(CYGPATH_W) '$(srcdir)/src/tools/sssd_check_socket_activated_responders.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tools/$(DEPDIR)/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.Tpo src/tools/$(DEPDIR)/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tools/sssd_check_socket_activated_responders.c' object='src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_check_socket_activated_responders_CFLAGS) $(CFLAGS) -c -o src/tools/sssd_check_socket_activated_responders-sssd_check_socket_activated_responders.obj `if test -f 'src/tools/sssd_check_socket_activated_responders.c'; then $(CYGPATH_W) 'src/tools/sssd_check_socket_activated_responders.c'; else $(CYGPATH_W) '$(srcdir)/src/tools/sssd_check_socket_activated_responders.c'; fi` + src/responder/ifp/sssd_ifp-ifpsrv.o: src/responder/ifp/ifpsrv.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/ifp/sssd_ifp-ifpsrv.o -MD -MP -MF src/responder/ifp/$(DEPDIR)/sssd_ifp-ifpsrv.Tpo -c -o src/responder/ifp/sssd_ifp-ifpsrv.o `test -f 'src/responder/ifp/ifpsrv.c' || echo '$(srcdir)/'`src/responder/ifp/ifpsrv.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/ifp/$(DEPDIR)/sssd_ifp-ifpsrv.Tpo src/responder/ifp/$(DEPDIR)/sssd_ifp-ifpsrv.Po @@ -24268,6 +25688,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/sssd_ifp-responder_dp.obj `if test -f 'src/responder/common/responder_dp.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp.c'; fi` +src/responder/common/sssd_ifp-responder_dp_ssh.o: src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/sssd_ifp-responder_dp_ssh.o -MD -MP -MF src/responder/common/$(DEPDIR)/sssd_ifp-responder_dp_ssh.Tpo -c -o src/responder/common/sssd_ifp-responder_dp_ssh.o `test -f 'src/responder/common/responder_dp_ssh.c' || echo '$(srcdir)/'`src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/sssd_ifp-responder_dp_ssh.Tpo src/responder/common/$(DEPDIR)/sssd_ifp-responder_dp_ssh.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/responder_dp_ssh.c' object='src/responder/common/sssd_ifp-responder_dp_ssh.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/sssd_ifp-responder_dp_ssh.o `test -f 'src/responder/common/responder_dp_ssh.c' || echo '$(srcdir)/'`src/responder/common/responder_dp_ssh.c + +src/responder/common/sssd_ifp-responder_dp_ssh.obj: src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/sssd_ifp-responder_dp_ssh.obj -MD -MP -MF src/responder/common/$(DEPDIR)/sssd_ifp-responder_dp_ssh.Tpo -c -o src/responder/common/sssd_ifp-responder_dp_ssh.obj `if test -f 'src/responder/common/responder_dp_ssh.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp_ssh.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp_ssh.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/sssd_ifp-responder_dp_ssh.Tpo src/responder/common/$(DEPDIR)/sssd_ifp-responder_dp_ssh.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/responder_dp_ssh.c' object='src/responder/common/sssd_ifp-responder_dp_ssh.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/sssd_ifp-responder_dp_ssh.obj `if test -f 'src/responder/common/responder_dp_ssh.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp_ssh.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp_ssh.c'; fi` + src/responder/common/sssd_ifp-responder_packet.o: src/responder/common/responder_packet.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/sssd_ifp-responder_packet.o -MD -MP -MF src/responder/common/$(DEPDIR)/sssd_ifp-responder_packet.Tpo -c -o src/responder/common/sssd_ifp-responder_packet.o `test -f 'src/responder/common/responder_packet.c' || echo '$(srcdir)/'`src/responder/common/responder_packet.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/sssd_ifp-responder_packet.Tpo src/responder/common/$(DEPDIR)/sssd_ifp-responder_packet.Po @@ -24366,6 +25800,62 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/providers/sssd_ifp-data_provider_req.obj `if test -f 'src/providers/data_provider_req.c'; then $(CYGPATH_W) 'src/providers/data_provider_req.c'; else $(CYGPATH_W) '$(srcdir)/src/providers/data_provider_req.c'; fi` +src/responder/common/iface/sssd_ifp-responder_iface.o: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_ifp-responder_iface.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface.Tpo -c -o src/responder/common/iface/sssd_ifp-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/sssd_ifp-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_ifp-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c + +src/responder/common/iface/sssd_ifp-responder_iface.obj: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_ifp-responder_iface.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface.Tpo -c -o src/responder/common/iface/sssd_ifp-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/sssd_ifp-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_ifp-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` + +src/responder/common/iface/sssd_ifp-responder_domain.o: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_ifp-responder_domain.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_domain.Tpo -c -o src/responder/common/iface/sssd_ifp-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/sssd_ifp-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_ifp-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c + +src/responder/common/iface/sssd_ifp-responder_domain.obj: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_ifp-responder_domain.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_domain.Tpo -c -o src/responder/common/iface/sssd_ifp-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/sssd_ifp-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_ifp-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` + +src/responder/common/iface/sssd_ifp-responder_ncache.o: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_ifp-responder_ncache.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_ncache.Tpo -c -o src/responder/common/iface/sssd_ifp-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/sssd_ifp-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_ifp-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c + +src/responder/common/iface/sssd_ifp-responder_ncache.obj: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_ifp-responder_ncache.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_ncache.Tpo -c -o src/responder/common/iface/sssd_ifp-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/sssd_ifp-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_ifp-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` + +src/responder/common/iface/sssd_ifp-responder_iface_generated.o: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_ifp-responder_iface_generated.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface_generated.Tpo -c -o src/responder/common/iface/sssd_ifp-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/sssd_ifp-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_ifp-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c + +src/responder/common/iface/sssd_ifp-responder_iface_generated.obj: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_ifp-responder_iface_generated.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface_generated.Tpo -c -o src/responder/common/iface/sssd_ifp-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/sssd_ifp-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/sssd_ifp-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_ifp-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` + src/responder/common/cache_req/sssd_ifp-cache_req.o: src/responder/common/cache_req/cache_req.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/sssd_ifp-cache_req.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req.Tpo -c -o src/responder/common/cache_req/sssd_ifp-cache_req.o `test -f 'src/responder/common/cache_req/cache_req.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req.Tpo src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req.Po @@ -24380,6 +25870,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/sssd_ifp-cache_req.obj `if test -f 'src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req.c'; fi` +src/responder/common/cache_req/sssd_ifp-cache_req_result.o: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/sssd_ifp-cache_req_result.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_result.Tpo -c -o src/responder/common/cache_req/sssd_ifp-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/sssd_ifp-cache_req_result.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/sssd_ifp-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c + +src/responder/common/cache_req/sssd_ifp-cache_req_result.obj: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/sssd_ifp-cache_req_result.obj -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_result.Tpo -c -o src/responder/common/cache_req/sssd_ifp-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/sssd_ifp-cache_req_result.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/sssd_ifp-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` + src/responder/common/cache_req/sssd_ifp-cache_req_search.o: src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/sssd_ifp-cache_req_search.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_search.Tpo -c -o src/responder/common/cache_req/sssd_ifp-cache_req_search.o `test -f 'src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_search.Tpo src/responder/common/cache_req/$(DEPDIR)/sssd_ifp-cache_req_search.Po @@ -24688,6 +26192,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/sssd_ifp-cache_req_netgroup_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` +src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.o: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.o -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c + +src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.obj: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.obj -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_ifp-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_ifp_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/sssd_ifp-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` + src/responder/pac/sssd_pac-pacsrv.o: src/responder/pac/pacsrv.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/pac/sssd_pac-pacsrv.o -MD -MP -MF src/responder/pac/$(DEPDIR)/sssd_pac-pacsrv.Tpo -c -o src/responder/pac/sssd_pac-pacsrv.o `test -f 'src/responder/pac/pacsrv.c' || echo '$(srcdir)/'`src/responder/pac/pacsrv.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/pac/$(DEPDIR)/sssd_pac-pacsrv.Tpo src/responder/pac/$(DEPDIR)/sssd_pac-pacsrv.Po @@ -24800,6 +26318,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/sssd_pac-responder_dp.obj `if test -f 'src/responder/common/responder_dp.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp.c'; fi` +src/responder/common/sssd_pac-responder_dp_ssh.o: src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/sssd_pac-responder_dp_ssh.o -MD -MP -MF src/responder/common/$(DEPDIR)/sssd_pac-responder_dp_ssh.Tpo -c -o src/responder/common/sssd_pac-responder_dp_ssh.o `test -f 'src/responder/common/responder_dp_ssh.c' || echo '$(srcdir)/'`src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/sssd_pac-responder_dp_ssh.Tpo src/responder/common/$(DEPDIR)/sssd_pac-responder_dp_ssh.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/responder_dp_ssh.c' object='src/responder/common/sssd_pac-responder_dp_ssh.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/sssd_pac-responder_dp_ssh.o `test -f 'src/responder/common/responder_dp_ssh.c' || echo '$(srcdir)/'`src/responder/common/responder_dp_ssh.c + +src/responder/common/sssd_pac-responder_dp_ssh.obj: src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/sssd_pac-responder_dp_ssh.obj -MD -MP -MF src/responder/common/$(DEPDIR)/sssd_pac-responder_dp_ssh.Tpo -c -o src/responder/common/sssd_pac-responder_dp_ssh.obj `if test -f 'src/responder/common/responder_dp_ssh.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp_ssh.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp_ssh.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/sssd_pac-responder_dp_ssh.Tpo src/responder/common/$(DEPDIR)/sssd_pac-responder_dp_ssh.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/responder_dp_ssh.c' object='src/responder/common/sssd_pac-responder_dp_ssh.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/sssd_pac-responder_dp_ssh.obj `if test -f 'src/responder/common/responder_dp_ssh.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp_ssh.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp_ssh.c'; fi` + src/responder/common/sssd_pac-responder_packet.o: src/responder/common/responder_packet.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/sssd_pac-responder_packet.o -MD -MP -MF src/responder/common/$(DEPDIR)/sssd_pac-responder_packet.Tpo -c -o src/responder/common/sssd_pac-responder_packet.o `test -f 'src/responder/common/responder_packet.c' || echo '$(srcdir)/'`src/responder/common/responder_packet.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/sssd_pac-responder_packet.Tpo src/responder/common/$(DEPDIR)/sssd_pac-responder_packet.Po @@ -24898,6 +26430,62 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/providers/sssd_pac-data_provider_req.obj `if test -f 'src/providers/data_provider_req.c'; then $(CYGPATH_W) 'src/providers/data_provider_req.c'; else $(CYGPATH_W) '$(srcdir)/src/providers/data_provider_req.c'; fi` +src/responder/common/iface/sssd_pac-responder_iface.o: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_pac-responder_iface.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface.Tpo -c -o src/responder/common/iface/sssd_pac-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/sssd_pac-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_pac-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c + +src/responder/common/iface/sssd_pac-responder_iface.obj: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_pac-responder_iface.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface.Tpo -c -o src/responder/common/iface/sssd_pac-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/sssd_pac-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_pac-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` + +src/responder/common/iface/sssd_pac-responder_domain.o: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_pac-responder_domain.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_domain.Tpo -c -o src/responder/common/iface/sssd_pac-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/sssd_pac-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_pac-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c + +src/responder/common/iface/sssd_pac-responder_domain.obj: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_pac-responder_domain.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_domain.Tpo -c -o src/responder/common/iface/sssd_pac-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/sssd_pac-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_pac-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` + +src/responder/common/iface/sssd_pac-responder_ncache.o: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_pac-responder_ncache.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_ncache.Tpo -c -o src/responder/common/iface/sssd_pac-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/sssd_pac-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_pac-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c + +src/responder/common/iface/sssd_pac-responder_ncache.obj: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_pac-responder_ncache.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_ncache.Tpo -c -o src/responder/common/iface/sssd_pac-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/sssd_pac-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_pac-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` + +src/responder/common/iface/sssd_pac-responder_iface_generated.o: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_pac-responder_iface_generated.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface_generated.Tpo -c -o src/responder/common/iface/sssd_pac-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/sssd_pac-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_pac-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c + +src/responder/common/iface/sssd_pac-responder_iface_generated.obj: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/sssd_pac-responder_iface_generated.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface_generated.Tpo -c -o src/responder/common/iface/sssd_pac-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/sssd_pac-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/sssd_pac-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/sssd_pac-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` + src/responder/common/cache_req/sssd_pac-cache_req.o: src/responder/common/cache_req/cache_req.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/sssd_pac-cache_req.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req.Tpo -c -o src/responder/common/cache_req/sssd_pac-cache_req.o `test -f 'src/responder/common/cache_req/cache_req.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req.Tpo src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req.Po @@ -24912,6 +26500,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/sssd_pac-cache_req.obj `if test -f 'src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req.c'; fi` +src/responder/common/cache_req/sssd_pac-cache_req_result.o: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/sssd_pac-cache_req_result.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_result.Tpo -c -o src/responder/common/cache_req/sssd_pac-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/sssd_pac-cache_req_result.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/sssd_pac-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c + +src/responder/common/cache_req/sssd_pac-cache_req_result.obj: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/sssd_pac-cache_req_result.obj -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_result.Tpo -c -o src/responder/common/cache_req/sssd_pac-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/sssd_pac-cache_req_result.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/sssd_pac-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` + src/responder/common/cache_req/sssd_pac-cache_req_search.o: src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/sssd_pac-cache_req_search.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_search.Tpo -c -o src/responder/common/cache_req/sssd_pac-cache_req_search.o `test -f 'src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_search.Tpo src/responder/common/cache_req/$(DEPDIR)/sssd_pac-cache_req_search.Po @@ -25220,6 +26822,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/sssd_pac-cache_req_netgroup_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` +src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.o: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.o -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c + +src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.obj: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.obj -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/sssd_pac-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sssd_pac_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/sssd_pac-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` + src/tests/strtonum_tests-strtonum-tests.o: src/tests/strtonum-tests.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(strtonum_tests_CFLAGS) $(CFLAGS) -MT src/tests/strtonum_tests-strtonum-tests.o -MD -MP -MF src/tests/$(DEPDIR)/strtonum_tests-strtonum-tests.Tpo -c -o src/tests/strtonum_tests-strtonum-tests.o `test -f 'src/tests/strtonum-tests.c' || echo '$(srcdir)/'`src/tests/strtonum-tests.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/$(DEPDIR)/strtonum_tests-strtonum-tests.Tpo src/tests/$(DEPDIR)/strtonum_tests-strtonum-tests.Po @@ -25276,6 +26892,48 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(sysdb_ssh_tests_CFLAGS) $(CFLAGS) -c -o src/tests/sysdb_ssh_tests-sysdb_ssh-tests.obj `if test -f 'src/tests/sysdb_ssh-tests.c'; then $(CYGPATH_W) 'src/tests/sysdb_ssh-tests.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/sysdb_ssh-tests.c'; fi` +src/tests/tcurl_test_tool-tcurl_test_tool.o: src/tests/tcurl_test_tool.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -MT src/tests/tcurl_test_tool-tcurl_test_tool.o -MD -MP -MF src/tests/$(DEPDIR)/tcurl_test_tool-tcurl_test_tool.Tpo -c -o src/tests/tcurl_test_tool-tcurl_test_tool.o `test -f 'src/tests/tcurl_test_tool.c' || echo '$(srcdir)/'`src/tests/tcurl_test_tool.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/$(DEPDIR)/tcurl_test_tool-tcurl_test_tool.Tpo src/tests/$(DEPDIR)/tcurl_test_tool-tcurl_test_tool.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/tcurl_test_tool.c' object='src/tests/tcurl_test_tool-tcurl_test_tool.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -c -o src/tests/tcurl_test_tool-tcurl_test_tool.o `test -f 'src/tests/tcurl_test_tool.c' || echo '$(srcdir)/'`src/tests/tcurl_test_tool.c + +src/tests/tcurl_test_tool-tcurl_test_tool.obj: src/tests/tcurl_test_tool.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -MT src/tests/tcurl_test_tool-tcurl_test_tool.obj -MD -MP -MF src/tests/$(DEPDIR)/tcurl_test_tool-tcurl_test_tool.Tpo -c -o src/tests/tcurl_test_tool-tcurl_test_tool.obj `if test -f 'src/tests/tcurl_test_tool.c'; then $(CYGPATH_W) 'src/tests/tcurl_test_tool.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/tcurl_test_tool.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/$(DEPDIR)/tcurl_test_tool-tcurl_test_tool.Tpo src/tests/$(DEPDIR)/tcurl_test_tool-tcurl_test_tool.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/tcurl_test_tool.c' object='src/tests/tcurl_test_tool-tcurl_test_tool.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -c -o src/tests/tcurl_test_tool-tcurl_test_tool.obj `if test -f 'src/tests/tcurl_test_tool.c'; then $(CYGPATH_W) 'src/tests/tcurl_test_tool.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/tcurl_test_tool.c'; fi` + +src/util/tcurl_test_tool-tev_curl.o: src/util/tev_curl.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -MT src/util/tcurl_test_tool-tev_curl.o -MD -MP -MF src/util/$(DEPDIR)/tcurl_test_tool-tev_curl.Tpo -c -o src/util/tcurl_test_tool-tev_curl.o `test -f 'src/util/tev_curl.c' || echo '$(srcdir)/'`src/util/tev_curl.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/tcurl_test_tool-tev_curl.Tpo src/util/$(DEPDIR)/tcurl_test_tool-tev_curl.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/tev_curl.c' object='src/util/tcurl_test_tool-tev_curl.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -c -o src/util/tcurl_test_tool-tev_curl.o `test -f 'src/util/tev_curl.c' || echo '$(srcdir)/'`src/util/tev_curl.c + +src/util/tcurl_test_tool-tev_curl.obj: src/util/tev_curl.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -MT src/util/tcurl_test_tool-tev_curl.obj -MD -MP -MF src/util/$(DEPDIR)/tcurl_test_tool-tev_curl.Tpo -c -o src/util/tcurl_test_tool-tev_curl.obj `if test -f 'src/util/tev_curl.c'; then $(CYGPATH_W) 'src/util/tev_curl.c'; else $(CYGPATH_W) '$(srcdir)/src/util/tev_curl.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/tcurl_test_tool-tev_curl.Tpo src/util/$(DEPDIR)/tcurl_test_tool-tev_curl.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/tev_curl.c' object='src/util/tcurl_test_tool-tev_curl.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -c -o src/util/tcurl_test_tool-tev_curl.obj `if test -f 'src/util/tev_curl.c'; then $(CYGPATH_W) 'src/util/tev_curl.c'; else $(CYGPATH_W) '$(srcdir)/src/util/tev_curl.c'; fi` + +src/util/tcurl_test_tool-sss_iobuf.o: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -MT src/util/tcurl_test_tool-sss_iobuf.o -MD -MP -MF src/util/$(DEPDIR)/tcurl_test_tool-sss_iobuf.Tpo -c -o src/util/tcurl_test_tool-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/tcurl_test_tool-sss_iobuf.Tpo src/util/$(DEPDIR)/tcurl_test_tool-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/tcurl_test_tool-sss_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -c -o src/util/tcurl_test_tool-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + +src/util/tcurl_test_tool-sss_iobuf.obj: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -MT src/util/tcurl_test_tool-sss_iobuf.obj -MD -MP -MF src/util/$(DEPDIR)/tcurl_test_tool-sss_iobuf.Tpo -c -o src/util/tcurl_test_tool-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/tcurl_test_tool-sss_iobuf.Tpo src/util/$(DEPDIR)/tcurl_test_tool-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/tcurl_test_tool-sss_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tcurl_test_tool_CFLAGS) $(CFLAGS) -c -o src/util/tcurl_test_tool-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` + src/tests/cmocka/test_authtok-test_authtok.o: src/tests/cmocka/test_authtok.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_authtok_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_authtok-test_authtok.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_authtok-test_authtok.Tpo -c -o src/tests/cmocka/test_authtok-test_authtok.o `test -f 'src/tests/cmocka/test_authtok.c' || echo '$(srcdir)/'`src/tests/cmocka/test_authtok.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_authtok-test_authtok.Tpo src/tests/cmocka/$(DEPDIR)/test_authtok-test_authtok.Po @@ -25500,6 +27158,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/test_negcache-responder_dp.obj `if test -f 'src/responder/common/responder_dp.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp.c'; fi` +src/responder/common/test_negcache-responder_dp_ssh.o: src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/test_negcache-responder_dp_ssh.o -MD -MP -MF src/responder/common/$(DEPDIR)/test_negcache-responder_dp_ssh.Tpo -c -o src/responder/common/test_negcache-responder_dp_ssh.o `test -f 'src/responder/common/responder_dp_ssh.c' || echo '$(srcdir)/'`src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/test_negcache-responder_dp_ssh.Tpo src/responder/common/$(DEPDIR)/test_negcache-responder_dp_ssh.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/responder_dp_ssh.c' object='src/responder/common/test_negcache-responder_dp_ssh.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/test_negcache-responder_dp_ssh.o `test -f 'src/responder/common/responder_dp_ssh.c' || echo '$(srcdir)/'`src/responder/common/responder_dp_ssh.c + +src/responder/common/test_negcache-responder_dp_ssh.obj: src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/test_negcache-responder_dp_ssh.obj -MD -MP -MF src/responder/common/$(DEPDIR)/test_negcache-responder_dp_ssh.Tpo -c -o src/responder/common/test_negcache-responder_dp_ssh.obj `if test -f 'src/responder/common/responder_dp_ssh.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp_ssh.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp_ssh.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/test_negcache-responder_dp_ssh.Tpo src/responder/common/$(DEPDIR)/test_negcache-responder_dp_ssh.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/responder_dp_ssh.c' object='src/responder/common/test_negcache-responder_dp_ssh.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/test_negcache-responder_dp_ssh.obj `if test -f 'src/responder/common/responder_dp_ssh.c'; then $(CYGPATH_W) 'src/responder/common/responder_dp_ssh.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/responder_dp_ssh.c'; fi` + src/responder/common/test_negcache-responder_packet.o: src/responder/common/responder_packet.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/test_negcache-responder_packet.o -MD -MP -MF src/responder/common/$(DEPDIR)/test_negcache-responder_packet.Tpo -c -o src/responder/common/test_negcache-responder_packet.o `test -f 'src/responder/common/responder_packet.c' || echo '$(srcdir)/'`src/responder/common/responder_packet.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/$(DEPDIR)/test_negcache-responder_packet.Tpo src/responder/common/$(DEPDIR)/test_negcache-responder_packet.Po @@ -25598,6 +27270,62 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/providers/test_negcache-data_provider_req.obj `if test -f 'src/providers/data_provider_req.c'; then $(CYGPATH_W) 'src/providers/data_provider_req.c'; else $(CYGPATH_W) '$(srcdir)/src/providers/data_provider_req.c'; fi` +src/responder/common/iface/test_negcache-responder_iface.o: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/test_negcache-responder_iface.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface.Tpo -c -o src/responder/common/iface/test_negcache-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/test_negcache-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/test_negcache-responder_iface.o `test -f 'src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface.c + +src/responder/common/iface/test_negcache-responder_iface.obj: src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/test_negcache-responder_iface.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface.Tpo -c -o src/responder/common/iface/test_negcache-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface.Tpo src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface.c' object='src/responder/common/iface/test_negcache-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/test_negcache-responder_iface.obj `if test -f 'src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface.c'; fi` + +src/responder/common/iface/test_negcache-responder_domain.o: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/test_negcache-responder_domain.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/test_negcache-responder_domain.Tpo -c -o src/responder/common/iface/test_negcache-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/test_negcache-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/test_negcache-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/test_negcache-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/test_negcache-responder_domain.o `test -f 'src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_domain.c + +src/responder/common/iface/test_negcache-responder_domain.obj: src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/test_negcache-responder_domain.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/test_negcache-responder_domain.Tpo -c -o src/responder/common/iface/test_negcache-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/test_negcache-responder_domain.Tpo src/responder/common/iface/$(DEPDIR)/test_negcache-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_domain.c' object='src/responder/common/iface/test_negcache-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/test_negcache-responder_domain.obj `if test -f 'src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_domain.c'; fi` + +src/responder/common/iface/test_negcache-responder_ncache.o: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/test_negcache-responder_ncache.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/test_negcache-responder_ncache.Tpo -c -o src/responder/common/iface/test_negcache-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/test_negcache-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/test_negcache-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/test_negcache-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/test_negcache-responder_ncache.o `test -f 'src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_ncache.c + +src/responder/common/iface/test_negcache-responder_ncache.obj: src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/test_negcache-responder_ncache.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/test_negcache-responder_ncache.Tpo -c -o src/responder/common/iface/test_negcache-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/test_negcache-responder_ncache.Tpo src/responder/common/iface/$(DEPDIR)/test_negcache-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_ncache.c' object='src/responder/common/iface/test_negcache-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/test_negcache-responder_ncache.obj `if test -f 'src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_ncache.c'; fi` + +src/responder/common/iface/test_negcache-responder_iface_generated.o: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/test_negcache-responder_iface_generated.o -MD -MP -MF src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface_generated.Tpo -c -o src/responder/common/iface/test_negcache-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/test_negcache-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/test_negcache-responder_iface_generated.o `test -f 'src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`src/responder/common/iface/responder_iface_generated.c + +src/responder/common/iface/test_negcache-responder_iface_generated.obj: src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/iface/test_negcache-responder_iface_generated.obj -MD -MP -MF src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface_generated.Tpo -c -o src/responder/common/iface/test_negcache-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface_generated.Tpo src/responder/common/iface/$(DEPDIR)/test_negcache-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/iface/responder_iface_generated.c' object='src/responder/common/iface/test_negcache-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/iface/test_negcache-responder_iface_generated.obj `if test -f 'src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) 'src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/iface/responder_iface_generated.c'; fi` + src/responder/common/cache_req/test_negcache-cache_req.o: src/responder/common/cache_req/cache_req.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/test_negcache-cache_req.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req.Tpo -c -o src/responder/common/cache_req/test_negcache-cache_req.o `test -f 'src/responder/common/cache_req/cache_req.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req.Tpo src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req.Po @@ -25612,6 +27340,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/test_negcache-cache_req.obj `if test -f 'src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req.c'; fi` +src/responder/common/cache_req/test_negcache-cache_req_result.o: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/test_negcache-cache_req_result.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_result.Tpo -c -o src/responder/common/cache_req/test_negcache-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/test_negcache-cache_req_result.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/test_negcache-cache_req_result.o `test -f 'src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_result.c + +src/responder/common/cache_req/test_negcache-cache_req_result.obj: src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/test_negcache-cache_req_result.obj -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_result.Tpo -c -o src/responder/common/cache_req/test_negcache-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_result.Tpo src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/cache_req_result.c' object='src/responder/common/cache_req/test_negcache-cache_req_result.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/test_negcache-cache_req_result.obj `if test -f 'src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/cache_req_result.c'; fi` + src/responder/common/cache_req/test_negcache-cache_req_search.o: src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/test_negcache-cache_req_search.o -MD -MP -MF src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_search.Tpo -c -o src/responder/common/cache_req/test_negcache-cache_req_search.o `test -f 'src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_search.Tpo src/responder/common/cache_req/$(DEPDIR)/test_negcache-cache_req_search.Po @@ -25920,6 +27662,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/test_negcache-cache_req_netgroup_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` +src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.o: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.o -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.o `test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`src/responder/common/cache_req/plugins/cache_req_host_by_name.c + +src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.obj: src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.obj -MD -MP -MF src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_host_by_name.Tpo -c -o src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_host_by_name.Tpo src/responder/common/cache_req/plugins/$(DEPDIR)/test_negcache-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -c -o src/responder/common/cache_req/plugins/test_negcache-cache_req_host_by_name.obj `if test -f 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) 'src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` + src/tests/cmocka/test_negcache-common_mock_resp.o: src/tests/cmocka/common_mock_resp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_negcache_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_negcache-common_mock_resp.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_negcache-common_mock_resp.Tpo -c -o src/tests/cmocka/test_negcache-common_mock_resp.o `test -f 'src/tests/cmocka/common_mock_resp.c' || echo '$(srcdir)/'`src/tests/cmocka/common_mock_resp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_negcache-common_mock_resp.Tpo src/tests/cmocka/$(DEPDIR)/test_negcache-common_mock_resp.Po @@ -26144,6 +27900,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_ccache_CFLAGS) $(CFLAGS) -c -o src/util/test_copy_ccache-sss_krb5.obj `if test -f 'src/util/sss_krb5.c'; then $(CYGPATH_W) 'src/util/sss_krb5.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_krb5.c'; fi` +src/util/test_copy_ccache-sss_iobuf.o: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_ccache_CFLAGS) $(CFLAGS) -MT src/util/test_copy_ccache-sss_iobuf.o -MD -MP -MF src/util/$(DEPDIR)/test_copy_ccache-sss_iobuf.Tpo -c -o src/util/test_copy_ccache-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_copy_ccache-sss_iobuf.Tpo src/util/$(DEPDIR)/test_copy_ccache-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/test_copy_ccache-sss_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_ccache_CFLAGS) $(CFLAGS) -c -o src/util/test_copy_ccache-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + +src/util/test_copy_ccache-sss_iobuf.obj: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_ccache_CFLAGS) $(CFLAGS) -MT src/util/test_copy_ccache-sss_iobuf.obj -MD -MP -MF src/util/$(DEPDIR)/test_copy_ccache-sss_iobuf.Tpo -c -o src/util/test_copy_ccache-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_copy_ccache-sss_iobuf.Tpo src/util/$(DEPDIR)/test_copy_ccache-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/test_copy_ccache-sss_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_ccache_CFLAGS) $(CFLAGS) -c -o src/util/test_copy_ccache-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` + src/tests/cmocka/test_copy_keytab-common_mock_krb5.o: src/tests/cmocka/common_mock_krb5.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_keytab_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_copy_keytab-common_mock_krb5.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_copy_keytab-common_mock_krb5.Tpo -c -o src/tests/cmocka/test_copy_keytab-common_mock_krb5.o `test -f 'src/tests/cmocka/common_mock_krb5.c' || echo '$(srcdir)/'`src/tests/cmocka/common_mock_krb5.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_copy_keytab-common_mock_krb5.Tpo src/tests/cmocka/$(DEPDIR)/test_copy_keytab-common_mock_krb5.Po @@ -26200,6 +27970,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_keytab_CFLAGS) $(CFLAGS) -c -o src/util/test_copy_keytab-sss_krb5.obj `if test -f 'src/util/sss_krb5.c'; then $(CYGPATH_W) 'src/util/sss_krb5.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_krb5.c'; fi` +src/util/test_copy_keytab-sss_iobuf.o: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_keytab_CFLAGS) $(CFLAGS) -MT src/util/test_copy_keytab-sss_iobuf.o -MD -MP -MF src/util/$(DEPDIR)/test_copy_keytab-sss_iobuf.Tpo -c -o src/util/test_copy_keytab-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_copy_keytab-sss_iobuf.Tpo src/util/$(DEPDIR)/test_copy_keytab-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/test_copy_keytab-sss_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_keytab_CFLAGS) $(CFLAGS) -c -o src/util/test_copy_keytab-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + +src/util/test_copy_keytab-sss_iobuf.obj: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_keytab_CFLAGS) $(CFLAGS) -MT src/util/test_copy_keytab-sss_iobuf.obj -MD -MP -MF src/util/$(DEPDIR)/test_copy_keytab-sss_iobuf.Tpo -c -o src/util/test_copy_keytab-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_copy_keytab-sss_iobuf.Tpo src/util/$(DEPDIR)/test_copy_keytab-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/test_copy_keytab-sss_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_copy_keytab_CFLAGS) $(CFLAGS) -c -o src/util/test_copy_keytab-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` + src/providers/test_data_provider_be-data_provider_be.o: src/providers/data_provider_be.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_data_provider_be_CFLAGS) $(CFLAGS) -MT src/providers/test_data_provider_be-data_provider_be.o -MD -MP -MF src/providers/$(DEPDIR)/test_data_provider_be-data_provider_be.Tpo -c -o src/providers/test_data_provider_be-data_provider_be.o `test -f 'src/providers/data_provider_be.c' || echo '$(srcdir)/'`src/providers/data_provider_be.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/providers/$(DEPDIR)/test_data_provider_be-data_provider_be.Tpo src/providers/$(DEPDIR)/test_data_provider_be-data_provider_be.Po @@ -26522,6 +28306,62 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_fo_srv_CFLAGS) $(CFLAGS) -c -o src/providers/test_fo_srv-fail_over_srv.obj `if test -f 'src/providers/fail_over_srv.c'; then $(CYGPATH_W) 'src/providers/fail_over_srv.c'; else $(CYGPATH_W) '$(srcdir)/src/providers/fail_over_srv.c'; fi` +src/util/test_inotify-inotify.o: src/util/inotify.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_inotify_CFLAGS) $(CFLAGS) -MT src/util/test_inotify-inotify.o -MD -MP -MF src/util/$(DEPDIR)/test_inotify-inotify.Tpo -c -o src/util/test_inotify-inotify.o `test -f 'src/util/inotify.c' || echo '$(srcdir)/'`src/util/inotify.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_inotify-inotify.Tpo src/util/$(DEPDIR)/test_inotify-inotify.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/inotify.c' object='src/util/test_inotify-inotify.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_inotify_CFLAGS) $(CFLAGS) -c -o src/util/test_inotify-inotify.o `test -f 'src/util/inotify.c' || echo '$(srcdir)/'`src/util/inotify.c + +src/util/test_inotify-inotify.obj: src/util/inotify.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_inotify_CFLAGS) $(CFLAGS) -MT src/util/test_inotify-inotify.obj -MD -MP -MF src/util/$(DEPDIR)/test_inotify-inotify.Tpo -c -o src/util/test_inotify-inotify.obj `if test -f 'src/util/inotify.c'; then $(CYGPATH_W) 'src/util/inotify.c'; else $(CYGPATH_W) '$(srcdir)/src/util/inotify.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_inotify-inotify.Tpo src/util/$(DEPDIR)/test_inotify-inotify.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/inotify.c' object='src/util/test_inotify-inotify.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_inotify_CFLAGS) $(CFLAGS) -c -o src/util/test_inotify-inotify.obj `if test -f 'src/util/inotify.c'; then $(CYGPATH_W) 'src/util/inotify.c'; else $(CYGPATH_W) '$(srcdir)/src/util/inotify.c'; fi` + +src/tests/cmocka/test_inotify-test_inotify.o: src/tests/cmocka/test_inotify.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_inotify_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_inotify-test_inotify.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_inotify-test_inotify.Tpo -c -o src/tests/cmocka/test_inotify-test_inotify.o `test -f 'src/tests/cmocka/test_inotify.c' || echo '$(srcdir)/'`src/tests/cmocka/test_inotify.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_inotify-test_inotify.Tpo src/tests/cmocka/$(DEPDIR)/test_inotify-test_inotify.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/cmocka/test_inotify.c' object='src/tests/cmocka/test_inotify-test_inotify.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_inotify_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_inotify-test_inotify.o `test -f 'src/tests/cmocka/test_inotify.c' || echo '$(srcdir)/'`src/tests/cmocka/test_inotify.c + +src/tests/cmocka/test_inotify-test_inotify.obj: src/tests/cmocka/test_inotify.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_inotify_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_inotify-test_inotify.obj -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_inotify-test_inotify.Tpo -c -o src/tests/cmocka/test_inotify-test_inotify.obj `if test -f 'src/tests/cmocka/test_inotify.c'; then $(CYGPATH_W) 'src/tests/cmocka/test_inotify.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/test_inotify.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_inotify-test_inotify.Tpo src/tests/cmocka/$(DEPDIR)/test_inotify-test_inotify.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/cmocka/test_inotify.c' object='src/tests/cmocka/test_inotify-test_inotify.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_inotify_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_inotify-test_inotify.obj `if test -f 'src/tests/cmocka/test_inotify.c'; then $(CYGPATH_W) 'src/tests/cmocka/test_inotify.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/test_inotify.c'; fi` + +src/util/test_iobuf-sss_iobuf.o: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_iobuf_CFLAGS) $(CFLAGS) -MT src/util/test_iobuf-sss_iobuf.o -MD -MP -MF src/util/$(DEPDIR)/test_iobuf-sss_iobuf.Tpo -c -o src/util/test_iobuf-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_iobuf-sss_iobuf.Tpo src/util/$(DEPDIR)/test_iobuf-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/test_iobuf-sss_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_iobuf_CFLAGS) $(CFLAGS) -c -o src/util/test_iobuf-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + +src/util/test_iobuf-sss_iobuf.obj: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_iobuf_CFLAGS) $(CFLAGS) -MT src/util/test_iobuf-sss_iobuf.obj -MD -MP -MF src/util/$(DEPDIR)/test_iobuf-sss_iobuf.Tpo -c -o src/util/test_iobuf-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_iobuf-sss_iobuf.Tpo src/util/$(DEPDIR)/test_iobuf-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/test_iobuf-sss_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_iobuf_CFLAGS) $(CFLAGS) -c -o src/util/test_iobuf-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` + +src/tests/cmocka/test_iobuf-test_iobuf.o: src/tests/cmocka/test_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_iobuf_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_iobuf-test_iobuf.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_iobuf-test_iobuf.Tpo -c -o src/tests/cmocka/test_iobuf-test_iobuf.o `test -f 'src/tests/cmocka/test_iobuf.c' || echo '$(srcdir)/'`src/tests/cmocka/test_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_iobuf-test_iobuf.Tpo src/tests/cmocka/$(DEPDIR)/test_iobuf-test_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/cmocka/test_iobuf.c' object='src/tests/cmocka/test_iobuf-test_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_iobuf_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_iobuf-test_iobuf.o `test -f 'src/tests/cmocka/test_iobuf.c' || echo '$(srcdir)/'`src/tests/cmocka/test_iobuf.c + +src/tests/cmocka/test_iobuf-test_iobuf.obj: src/tests/cmocka/test_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_iobuf_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_iobuf-test_iobuf.obj -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_iobuf-test_iobuf.Tpo -c -o src/tests/cmocka/test_iobuf-test_iobuf.obj `if test -f 'src/tests/cmocka/test_iobuf.c'; then $(CYGPATH_W) 'src/tests/cmocka/test_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/test_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_iobuf-test_iobuf.Tpo src/tests/cmocka/$(DEPDIR)/test_iobuf-test_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/cmocka/test_iobuf.c' object='src/tests/cmocka/test_iobuf-test_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_iobuf_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_iobuf-test_iobuf.obj `if test -f 'src/tests/cmocka/test_iobuf.c'; then $(CYGPATH_W) 'src/tests/cmocka/test_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/test_iobuf.c'; fi` + src/providers/ipa/test_ipa_dn-ipa_dn.o: src/providers/ipa/ipa_dn.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_ipa_dn_CFLAGS) $(CFLAGS) -MT src/providers/ipa/test_ipa_dn-ipa_dn.o -MD -MP -MF src/providers/ipa/$(DEPDIR)/test_ipa_dn-ipa_dn.Tpo -c -o src/providers/ipa/test_ipa_dn-ipa_dn.o `test -f 'src/providers/ipa/ipa_dn.c' || echo '$(srcdir)/'`src/providers/ipa/ipa_dn.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/providers/ipa/$(DEPDIR)/test_ipa_dn-ipa_dn.Tpo src/providers/ipa/$(DEPDIR)/test_ipa_dn-ipa_dn.Po @@ -26746,6 +28586,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_ipa_subdom_server_CFLAGS) $(CFLAGS) -c -o src/util/test_ipa_subdom_server-sss_krb5.obj `if test -f 'src/util/sss_krb5.c'; then $(CYGPATH_W) 'src/util/sss_krb5.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_krb5.c'; fi` +src/util/test_ipa_subdom_server-sss_iobuf.o: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_ipa_subdom_server_CFLAGS) $(CFLAGS) -MT src/util/test_ipa_subdom_server-sss_iobuf.o -MD -MP -MF src/util/$(DEPDIR)/test_ipa_subdom_server-sss_iobuf.Tpo -c -o src/util/test_ipa_subdom_server-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_ipa_subdom_server-sss_iobuf.Tpo src/util/$(DEPDIR)/test_ipa_subdom_server-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/test_ipa_subdom_server-sss_iobuf.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_ipa_subdom_server_CFLAGS) $(CFLAGS) -c -o src/util/test_ipa_subdom_server-sss_iobuf.o `test -f 'src/util/sss_iobuf.c' || echo '$(srcdir)/'`src/util/sss_iobuf.c + +src/util/test_ipa_subdom_server-sss_iobuf.obj: src/util/sss_iobuf.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_ipa_subdom_server_CFLAGS) $(CFLAGS) -MT src/util/test_ipa_subdom_server-sss_iobuf.obj -MD -MP -MF src/util/$(DEPDIR)/test_ipa_subdom_server-sss_iobuf.Tpo -c -o src/util/test_ipa_subdom_server-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_ipa_subdom_server-sss_iobuf.Tpo src/util/$(DEPDIR)/test_ipa_subdom_server-sss_iobuf.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/util/sss_iobuf.c' object='src/util/test_ipa_subdom_server-sss_iobuf.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_ipa_subdom_server_CFLAGS) $(CFLAGS) -c -o src/util/test_ipa_subdom_server-sss_iobuf.obj `if test -f 'src/util/sss_iobuf.c'; then $(CYGPATH_W) 'src/util/sss_iobuf.c'; else $(CYGPATH_W) '$(srcdir)/src/util/sss_iobuf.c'; fi` + src/util/test_ipa_subdom_server-become_user.o: src/util/become_user.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_ipa_subdom_server_CFLAGS) $(CFLAGS) -MT src/util/test_ipa_subdom_server-become_user.o -MD -MP -MF src/util/$(DEPDIR)/test_ipa_subdom_server-become_user.Tpo -c -o src/util/test_ipa_subdom_server-become_user.o `test -f 'src/util/become_user.c' || echo '$(srcdir)/'`src/util/become_user.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/util/$(DEPDIR)/test_ipa_subdom_server-become_user.Tpo src/util/$(DEPDIR)/test_ipa_subdom_server-become_user.Po @@ -26970,6 +28824,48 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sbus_opath_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_sbus_opath-test_sbus_opath.obj `if test -f 'src/tests/cmocka/test_sbus_opath.c'; then $(CYGPATH_W) 'src/tests/cmocka/test_sbus_opath.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/test_sbus_opath.c'; fi` +src/tests/cmocka/test_sdap_initgr-common_mock_sdap.o: src/tests/cmocka/common_mock_sdap.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_sdap_initgr-common_mock_sdap.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sdap.Tpo -c -o src/tests/cmocka/test_sdap_initgr-common_mock_sdap.o `test -f 'src/tests/cmocka/common_mock_sdap.c' || echo '$(srcdir)/'`src/tests/cmocka/common_mock_sdap.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sdap.Tpo src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sdap.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/cmocka/common_mock_sdap.c' object='src/tests/cmocka/test_sdap_initgr-common_mock_sdap.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_sdap_initgr-common_mock_sdap.o `test -f 'src/tests/cmocka/common_mock_sdap.c' || echo '$(srcdir)/'`src/tests/cmocka/common_mock_sdap.c + +src/tests/cmocka/test_sdap_initgr-common_mock_sdap.obj: src/tests/cmocka/common_mock_sdap.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_sdap_initgr-common_mock_sdap.obj -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sdap.Tpo -c -o src/tests/cmocka/test_sdap_initgr-common_mock_sdap.obj `if test -f 'src/tests/cmocka/common_mock_sdap.c'; then $(CYGPATH_W) 'src/tests/cmocka/common_mock_sdap.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/common_mock_sdap.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sdap.Tpo src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sdap.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/cmocka/common_mock_sdap.c' object='src/tests/cmocka/test_sdap_initgr-common_mock_sdap.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_sdap_initgr-common_mock_sdap.obj `if test -f 'src/tests/cmocka/common_mock_sdap.c'; then $(CYGPATH_W) 'src/tests/cmocka/common_mock_sdap.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/common_mock_sdap.c'; fi` + +src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.o: src/tests/cmocka/common_mock_sysdb_objects.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sysdb_objects.Tpo -c -o src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.o `test -f 'src/tests/cmocka/common_mock_sysdb_objects.c' || echo '$(srcdir)/'`src/tests/cmocka/common_mock_sysdb_objects.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sysdb_objects.Tpo src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sysdb_objects.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/cmocka/common_mock_sysdb_objects.c' object='src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.o `test -f 'src/tests/cmocka/common_mock_sysdb_objects.c' || echo '$(srcdir)/'`src/tests/cmocka/common_mock_sysdb_objects.c + +src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.obj: src/tests/cmocka/common_mock_sysdb_objects.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.obj -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sysdb_objects.Tpo -c -o src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.obj `if test -f 'src/tests/cmocka/common_mock_sysdb_objects.c'; then $(CYGPATH_W) 'src/tests/cmocka/common_mock_sysdb_objects.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/common_mock_sysdb_objects.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sysdb_objects.Tpo src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-common_mock_sysdb_objects.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/cmocka/common_mock_sysdb_objects.c' object='src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_sdap_initgr-common_mock_sysdb_objects.obj `if test -f 'src/tests/cmocka/common_mock_sysdb_objects.c'; then $(CYGPATH_W) 'src/tests/cmocka/common_mock_sysdb_objects.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/common_mock_sysdb_objects.c'; fi` + +src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.o: src/tests/cmocka/test_sdap_initgr.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-test_sdap_initgr.Tpo -c -o src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.o `test -f 'src/tests/cmocka/test_sdap_initgr.c' || echo '$(srcdir)/'`src/tests/cmocka/test_sdap_initgr.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-test_sdap_initgr.Tpo src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-test_sdap_initgr.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/cmocka/test_sdap_initgr.c' object='src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.o `test -f 'src/tests/cmocka/test_sdap_initgr.c' || echo '$(srcdir)/'`src/tests/cmocka/test_sdap_initgr.c + +src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.obj: src/tests/cmocka/test_sdap_initgr.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.obj -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-test_sdap_initgr.Tpo -c -o src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.obj `if test -f 'src/tests/cmocka/test_sdap_initgr.c'; then $(CYGPATH_W) 'src/tests/cmocka/test_sdap_initgr.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/test_sdap_initgr.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-test_sdap_initgr.Tpo src/tests/cmocka/$(DEPDIR)/test_sdap_initgr-test_sdap_initgr.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='src/tests/cmocka/test_sdap_initgr.c' object='src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sdap_initgr_CFLAGS) $(CFLAGS) -c -o src/tests/cmocka/test_sdap_initgr-test_sdap_initgr.obj `if test -f 'src/tests/cmocka/test_sdap_initgr.c'; then $(CYGPATH_W) 'src/tests/cmocka/test_sdap_initgr.c'; else $(CYGPATH_W) '$(srcdir)/src/tests/cmocka/test_sdap_initgr.c'; fi` + src/tests/cmocka/test_sss_idmap-test_sss_idmap.o: src/tests/cmocka/test_sss_idmap.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(test_sss_idmap_CFLAGS) $(CFLAGS) -MT src/tests/cmocka/test_sss_idmap-test_sss_idmap.o -MD -MP -MF src/tests/cmocka/$(DEPDIR)/test_sss_idmap-test_sss_idmap.Tpo -c -o src/tests/cmocka/test_sss_idmap-test_sss_idmap.o `test -f 'src/tests/cmocka/test_sss_idmap.c' || echo '$(srcdir)/'`src/tests/cmocka/test_sss_idmap.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) src/tests/cmocka/$(DEPDIR)/test_sss_idmap-test_sss_idmap.Tpo src/tests/cmocka/$(DEPDIR)/test_sss_idmap-test_sss_idmap.Po @@ -27268,6 +29164,7 @@ -rm -rf src/providers/.libs src/providers/_libs -rm -rf src/providers/ad/.libs src/providers/ad/_libs -rm -rf src/providers/data_provider/.libs src/providers/data_provider/_libs + -rm -rf src/providers/files/.libs src/providers/files/_libs -rm -rf src/providers/ipa/.libs src/providers/ipa/_libs -rm -rf src/providers/krb5/.libs src/providers/krb5/_libs -rm -rf src/providers/ldap/.libs src/providers/ldap/_libs @@ -28159,6 +30056,13 @@ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) +test_iobuf.log: test_iobuf$(EXEEXT) + @p='test_iobuf$(EXEEXT)'; \ + b='test_iobuf'; \ + $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ + --log-file $$b.log --trs-file $$b.trs \ + $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ + "$$tst" $(AM_TESTS_FD_REDIRECT) test_resolv_fake.log: test_resolv_fake$(EXEEXT) @p='test_resolv_fake$(EXEEXT)'; \ b='test_resolv_fake'; \ @@ -28173,6 +30077,13 @@ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) +test_inotify.log: test_inotify$(EXEEXT) + @p='test_inotify$(EXEEXT)'; \ + b='test_inotify'; \ + $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ + --log-file $$b.log --trs-file $$b.trs \ + $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ + "$$tst" $(AM_TESTS_FD_REDIRECT) ad_access_filter_tests.log: ad_access_filter_tests$(EXEEXT) @p='ad_access_filter_tests$(EXEEXT)'; \ b='ad_access_filter_tests'; \ @@ -28194,6 +30105,13 @@ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) +test_sdap_initgr.log: test_sdap_initgr$(EXEEXT) + @p='test_sdap_initgr$(EXEEXT)'; \ + b='test_sdap_initgr'; \ + $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ + --log-file $$b.log --trs-file $$b.trs \ + $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ + "$$tst" $(AM_TESTS_FD_REDIRECT) test_ad_subdom.log: test_ad_subdom$(EXEEXT) @p='test_ad_subdom$(EXEEXT)'; \ b='test_ad_subdom'; \ @@ -28659,6 +30577,8 @@ -rm -f src/providers/ad/$(am__dirstamp) -rm -f src/providers/data_provider/$(DEPDIR)/$(am__dirstamp) -rm -f src/providers/data_provider/$(am__dirstamp) + -rm -f src/providers/files/$(DEPDIR)/$(am__dirstamp) + -rm -f src/providers/files/$(am__dirstamp) -rm -f src/providers/ipa/$(DEPDIR)/$(am__dirstamp) -rm -f src/providers/ipa/$(am__dirstamp) -rm -f src/providers/krb5/$(DEPDIR)/$(am__dirstamp) @@ -28683,6 +30603,8 @@ -rm -f src/responder/common/cache_req/plugins/$(am__dirstamp) -rm -f src/responder/common/data_provider/$(DEPDIR)/$(am__dirstamp) -rm -f src/responder/common/data_provider/$(am__dirstamp) + -rm -f src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) + -rm -f src/responder/common/iface/$(am__dirstamp) -rm -f src/responder/ifp/$(DEPDIR)/$(am__dirstamp) -rm -f src/responder/ifp/$(am__dirstamp) -rm -f src/responder/nss/$(DEPDIR)/$(am__dirstamp) @@ -28766,7 +30688,7 @@ distclean: distclean-recursive -rm -f $(am__CONFIG_DISTCLEAN_FILES) - -rm -rf src/confdb/$(DEPDIR) src/db/$(DEPDIR) src/krb5_plugin/$(DEPDIR) src/ldb_modules/$(DEPDIR) src/lib/cifs_idmap_sss/$(DEPDIR) src/lib/idmap/$(DEPDIR) src/lib/ipa_hbac/$(DEPDIR) src/lib/sifp/$(DEPDIR) src/lib/winbind_idmap_sss/$(DEPDIR) src/monitor/$(DEPDIR) src/p11_child/$(DEPDIR) src/providers/$(DEPDIR) src/providers/ad/$(DEPDIR) src/providers/data_provider/$(DEPDIR) src/providers/ipa/$(DEPDIR) src/providers/krb5/$(DEPDIR) src/providers/ldap/$(DEPDIR) src/providers/proxy/$(DEPDIR) src/providers/simple/$(DEPDIR) src/python/$(DEPDIR) src/resolv/$(DEPDIR) src/responder/autofs/$(DEPDIR) src/responder/common/$(DEPDIR) src/responder/common/cache_req/$(DEPDIR) src/responder/common/cache_req/plugins/$(DEPDIR) src/responder/common/data_provider/$(DEPDIR) src/responder/ifp/$(DEPDIR) src/responder/nss/$(DEPDIR) src/responder/pac/$(DEPDIR) src/responder/pam/$(DEPDIR) src/responder/secrets/$(DEPDIR) src/responder/ssh/$(DEPDIR) src/responder/sudo/$(DEPDIR) src/sbus/$(DEPDIR) src/sss_client/$(DEPDIR) src/sss_client/autofs/$(DEPDIR) src/sss_client/idmap/$(DEPDIR) src/sss_client/libwbclient/$(DEPDIR) src/sss_client/nfs/$(DEPDIR) src/sss_client/ssh/$(DEPDIR) src/sss_client/sudo/$(DEPDIR) src/sss_client/sudo_testcli/$(DEPDIR) src/tests/$(DEPDIR) src/tests/cmocka/$(DEPDIR) src/tests/cmocka/data_provider/$(DEPDIR) src/tools/$(DEPDIR) src/tools/common/$(DEPDIR) src/tools/sssctl/$(DEPDIR) src/util/$(DEPDIR) src/util/cert/$(DEPDIR) src/util/cert/libcrypto/$(DEPDIR) src/util/cert/nss/$(DEPDIR) src/util/crypto/$(DEPDIR) src/util/crypto/libcrypto/$(DEPDIR) src/util/crypto/nss/$(DEPDIR) + -rm -rf src/confdb/$(DEPDIR) src/db/$(DEPDIR) src/krb5_plugin/$(DEPDIR) src/ldb_modules/$(DEPDIR) src/lib/cifs_idmap_sss/$(DEPDIR) src/lib/idmap/$(DEPDIR) src/lib/ipa_hbac/$(DEPDIR) src/lib/sifp/$(DEPDIR) src/lib/winbind_idmap_sss/$(DEPDIR) src/monitor/$(DEPDIR) src/p11_child/$(DEPDIR) src/providers/$(DEPDIR) src/providers/ad/$(DEPDIR) src/providers/data_provider/$(DEPDIR) src/providers/files/$(DEPDIR) src/providers/ipa/$(DEPDIR) src/providers/krb5/$(DEPDIR) src/providers/ldap/$(DEPDIR) src/providers/proxy/$(DEPDIR) src/providers/simple/$(DEPDIR) src/python/$(DEPDIR) src/resolv/$(DEPDIR) src/responder/autofs/$(DEPDIR) src/responder/common/$(DEPDIR) src/responder/common/cache_req/$(DEPDIR) src/responder/common/cache_req/plugins/$(DEPDIR) src/responder/common/data_provider/$(DEPDIR) src/responder/common/iface/$(DEPDIR) src/responder/ifp/$(DEPDIR) src/responder/nss/$(DEPDIR) src/responder/pac/$(DEPDIR) src/responder/pam/$(DEPDIR) src/responder/secrets/$(DEPDIR) src/responder/ssh/$(DEPDIR) src/responder/sudo/$(DEPDIR) src/sbus/$(DEPDIR) src/sss_client/$(DEPDIR) src/sss_client/autofs/$(DEPDIR) src/sss_client/idmap/$(DEPDIR) src/sss_client/libwbclient/$(DEPDIR) src/sss_client/nfs/$(DEPDIR) src/sss_client/ssh/$(DEPDIR) src/sss_client/sudo/$(DEPDIR) src/sss_client/sudo_testcli/$(DEPDIR) src/tests/$(DEPDIR) src/tests/cmocka/$(DEPDIR) src/tests/cmocka/data_provider/$(DEPDIR) src/tools/$(DEPDIR) src/tools/common/$(DEPDIR) src/tools/sssctl/$(DEPDIR) src/util/$(DEPDIR) src/util/cert/$(DEPDIR) src/util/cert/libcrypto/$(DEPDIR) src/util/cert/nss/$(DEPDIR) src/util/crypto/$(DEPDIR) src/util/crypto/libcrypto/$(DEPDIR) src/util/crypto/nss/$(DEPDIR) -rm -f Makefile distclean-am: clean-am distclean-compile distclean-generic \ distclean-hdr distclean-libtool distclean-tags @@ -28836,7 +30758,7 @@ maintainer-clean: maintainer-clean-recursive -rm -f $(am__CONFIG_DISTCLEAN_FILES) -rm -rf $(top_srcdir)/autom4te.cache - -rm -rf src/confdb/$(DEPDIR) src/db/$(DEPDIR) src/krb5_plugin/$(DEPDIR) src/ldb_modules/$(DEPDIR) src/lib/cifs_idmap_sss/$(DEPDIR) src/lib/idmap/$(DEPDIR) src/lib/ipa_hbac/$(DEPDIR) src/lib/sifp/$(DEPDIR) src/lib/winbind_idmap_sss/$(DEPDIR) src/monitor/$(DEPDIR) src/p11_child/$(DEPDIR) src/providers/$(DEPDIR) src/providers/ad/$(DEPDIR) src/providers/data_provider/$(DEPDIR) src/providers/ipa/$(DEPDIR) src/providers/krb5/$(DEPDIR) src/providers/ldap/$(DEPDIR) src/providers/proxy/$(DEPDIR) src/providers/simple/$(DEPDIR) src/python/$(DEPDIR) src/resolv/$(DEPDIR) src/responder/autofs/$(DEPDIR) src/responder/common/$(DEPDIR) src/responder/common/cache_req/$(DEPDIR) src/responder/common/cache_req/plugins/$(DEPDIR) src/responder/common/data_provider/$(DEPDIR) src/responder/ifp/$(DEPDIR) src/responder/nss/$(DEPDIR) src/responder/pac/$(DEPDIR) src/responder/pam/$(DEPDIR) src/responder/secrets/$(DEPDIR) src/responder/ssh/$(DEPDIR) src/responder/sudo/$(DEPDIR) src/sbus/$(DEPDIR) src/sss_client/$(DEPDIR) src/sss_client/autofs/$(DEPDIR) src/sss_client/idmap/$(DEPDIR) src/sss_client/libwbclient/$(DEPDIR) src/sss_client/nfs/$(DEPDIR) src/sss_client/ssh/$(DEPDIR) src/sss_client/sudo/$(DEPDIR) src/sss_client/sudo_testcli/$(DEPDIR) src/tests/$(DEPDIR) src/tests/cmocka/$(DEPDIR) src/tests/cmocka/data_provider/$(DEPDIR) src/tools/$(DEPDIR) src/tools/common/$(DEPDIR) src/tools/sssctl/$(DEPDIR) src/util/$(DEPDIR) src/util/cert/$(DEPDIR) src/util/cert/libcrypto/$(DEPDIR) src/util/cert/nss/$(DEPDIR) src/util/crypto/$(DEPDIR) src/util/crypto/libcrypto/$(DEPDIR) src/util/crypto/nss/$(DEPDIR) + -rm -rf src/confdb/$(DEPDIR) src/db/$(DEPDIR) src/krb5_plugin/$(DEPDIR) src/ldb_modules/$(DEPDIR) src/lib/cifs_idmap_sss/$(DEPDIR) src/lib/idmap/$(DEPDIR) src/lib/ipa_hbac/$(DEPDIR) src/lib/sifp/$(DEPDIR) src/lib/winbind_idmap_sss/$(DEPDIR) src/monitor/$(DEPDIR) src/p11_child/$(DEPDIR) src/providers/$(DEPDIR) src/providers/ad/$(DEPDIR) src/providers/data_provider/$(DEPDIR) src/providers/files/$(DEPDIR) src/providers/ipa/$(DEPDIR) src/providers/krb5/$(DEPDIR) src/providers/ldap/$(DEPDIR) src/providers/proxy/$(DEPDIR) src/providers/simple/$(DEPDIR) src/python/$(DEPDIR) src/resolv/$(DEPDIR) src/responder/autofs/$(DEPDIR) src/responder/common/$(DEPDIR) src/responder/common/cache_req/$(DEPDIR) src/responder/common/cache_req/plugins/$(DEPDIR) src/responder/common/data_provider/$(DEPDIR) src/responder/common/iface/$(DEPDIR) src/responder/ifp/$(DEPDIR) src/responder/nss/$(DEPDIR) src/responder/pac/$(DEPDIR) src/responder/pam/$(DEPDIR) src/responder/secrets/$(DEPDIR) src/responder/ssh/$(DEPDIR) src/responder/sudo/$(DEPDIR) src/sbus/$(DEPDIR) src/sss_client/$(DEPDIR) src/sss_client/autofs/$(DEPDIR) src/sss_client/idmap/$(DEPDIR) src/sss_client/libwbclient/$(DEPDIR) src/sss_client/nfs/$(DEPDIR) src/sss_client/ssh/$(DEPDIR) src/sss_client/sudo/$(DEPDIR) src/sss_client/sudo_testcli/$(DEPDIR) src/tests/$(DEPDIR) src/tests/cmocka/$(DEPDIR) src/tests/cmocka/data_provider/$(DEPDIR) src/tools/$(DEPDIR) src/tools/common/$(DEPDIR) src/tools/sssctl/$(DEPDIR) src/util/$(DEPDIR) src/util/cert/$(DEPDIR) src/util/cert/libcrypto/$(DEPDIR) src/util/cert/nss/$(DEPDIR) src/util/crypto/$(DEPDIR) src/util/crypto/libcrypto/$(DEPDIR) src/util/crypto/nss/$(DEPDIR) -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic @@ -29009,6 +30931,7 @@ --with-ldb-lib-dir="$$prefix"/lib/ldb \ --enable-intgcheck-reqs \ --without-semanage \ + --enable-files-domain \ $(INTGCHECK_CONFIGURE_FLAGS); \ $(MAKE) $(AM_MAKEFLAGS); \ : Force single-thread install to workaround concurrency issues; \ Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/bg.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/bg.gmo differ diff -Nru sssd-1.15.0/po/bg.po sssd-1.15.2/po/bg.po --- sssd-1.15.0/po/bg.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/bg.po 2017-03-15 16:53:24.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:44-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Bulgarian (http://www.transifex.com/projects/p/sssd/language/" @@ -62,137 +62,145 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "SSSD услуги за стартиране" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "SSSD домейни за стартиране" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Изчакване за съобщения, изпратени през SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "Regex за намиране на потребителско име и домейн" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "Printf-съвместим формат за изобразяване на пълно-квалифицирани имена" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Изисква TLS проверка на сертификат" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 msgid "Files negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Потребители, които SSSD изрично трябва да игнорира" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Групи, които SSSD изрично трябва да игнорира" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Да се показват ли филтрираните потребители в групи" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "Стойността на полето парола, което NSS доставчикът трябва да върне" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "Колко дни да се позволява кеширано влизане между влизания онлайн" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "Колко неуспешни опита за влизане са разрешени, когато сме офлайн" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -200,1271 +208,1271 @@ "Колко време (в минути) да е забранено влизането, след достигане броя " "неуспешни опити за влизане, когато сме офлайн" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Файл, съдържащ CA сертификати" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Доставчик на самоличност" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Доставчик на удостоверяване" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Доставчик на контрол на достъп" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Доставчик на смяна на парола" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Доставчик на самоличност" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Минимално ID на потребител" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Максимално ID на потребител" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Кеширай идентификационни данни за офлайн влизане" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Съхранявай хешове на пароли" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Показвай потребители/групи в пълно -валифицирана форма" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "Ограничава или предпочита определена фамилия адреси при DNS търсения" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Колко дни да се пазят кешираните записи след последното успешно влизане" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" "Колко време да чакам за отговори от DNS при търсене на сървъри (секунди)" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "Частта Домейн от DNS заявката за откриване на услуга" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "Интерфейсът, чийто IP да се ползва за динамични DNS обновявания" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA домейн" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "Адрес на IPA сървър" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "Име на хост на IPA клиент" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "Дали автоматично да се обновява клиентския DNS запис във FreeIPA" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "LDAP филтър за определяне права на достъп" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Адрес на Kerberos сървър" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Kerberos област" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Директория за съхранение на кеша за данни за удостоверяване" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Местоположение на кеша за данни за удостоверяване на потребители" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Местоположение на keytab за валидиране на данните за удостоверяване" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Разреши проверката на данните за удостоверяване" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "Записва паролата ако е офлайн за по-късно удостоверяване" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "Сървърът, на който работи услугата за смяна на парола ако не е на KDC" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, URI на LDAP сървъра" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "Базовият DN по подразбиране" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Използваният тип схема на LDAP сървъра, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "Подразбиращият се bind DN" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Продължителност на опитите за свързване" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Продължителност на опитите за синхронни LDAP операции" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "Продължителност на времето между опитите за връзка докато е офлайн" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Файл, съдържащ CA сертификати" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Път до директорията на CA сертификат" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Изисква TLS проверка на сертификат" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Задава за използване механизма sasl" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Задаване на sasl authorization id за употреба" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "keytab на Kerberos услуга" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Ползвай Kerberos auth за LDAP връзка" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Следвай LDAP референциите" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "Продължителност на живот на TGT за LDAP връзка" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Продължителност на време за изчакване на заявка за търсене" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Продължителност на време между актуализации на изброяване" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "Изисква TLS за ИД справките" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "атрибут Потребителско име" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "атрибут UID" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "атрибут Първичен GID" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "атрибут GECOS" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "атрибут Домашна директория" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "атрибут Команден интерпретатор" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "атрибут User principal (за Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Пълно име" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "атрибут членНа" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "атрибут Момент на промяна" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Политика за определяне срок на валидност на парола" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Списък разрешени потребители, разделени със запетая" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Списък забранени потребители, разделени със запетая" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Подразбиращ се команден интерпретатор, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Място за домашните директории" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Продължава като демон (по подразбиране)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Интерактивна работа (а не като демон)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Задаване на друг (не подразбиращия се) конфиг файл" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Ниво на debug" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Kerberos област" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1492,88 +1500,88 @@ msgid "Unexpected error while looking for an error description" msgstr "Неочаквана грешка при търсене на описание на грешка" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Съобщение от сървъра:" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Паролите не съвпадат" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "Промяна на паролата от root не се поддържа." -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "Удостоверен с кеширани идентификационни данни" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", кешираната парола ще изтече на: " -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "Удостоверяването е забранено до: " -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "Системата е офлайн, промяна на паролата не е възможна" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Промяната на паролата не успя." -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Нова парола:" -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Отново новата парола:" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Парола:" -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Текуща парола:" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "Паролата Ви е остаряла. Сменете я сега." @@ -1582,7 +1590,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "Нивото на debug записи при работа" @@ -1595,7 +1603,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "Грешка при задаване локални настр.\n" @@ -2027,102 +2035,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/ca.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/ca.gmo differ diff -Nru sssd-1.15.0/po/ca.po sssd-1.15.2/po/ca.po --- sssd-1.15.0/po/ca.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/ca.po 2017-03-15 16:53:24.000000000 +0000 @@ -13,7 +13,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2015-10-18 03:21-0400\n" "Last-Translator: jhrozek \n" "Language-Team: Catalan (http://www.transifex.com/projects/p/sssd/language/" @@ -71,29 +71,33 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "El temps d'inactivitat abans de la desconnexió automàtica d'un client" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Els serveis del SSSD a iniciar" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "Els dominis del SSSD a iniciar" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "El temps d'expiració per als missatges enviats a través del SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "L'expressió regular per analitzar el nom d'usuari i el domini" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "Format compatible amb printf per mostrar els FQN" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." @@ -101,100 +105,104 @@ "El directori del sistema de fitxers on el SSSD ha d'emmagatzemar els fitxers " "de la memòria cau de repetició de Kerberos." -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "El domini per afegir als noms sense un component de domini." -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "L'usuari a qui se li disminueixen els permisos" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Requereix verificació de certificat TLS" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" "Tots els espais, als noms dels grups o dels usuaris, se substituiran amb " "aquest caràcter" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" "Període de temps per a l'expiració de la memòria cau de les enumeracions (en " "segons)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" "Període de temps per a l'expiració de l'actualització en rerefons de les " "entrades de la memòria cau (en segons)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" "Període de temps per a l'expiració de la memòria cau negativa (en segons)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "" "Període de temps per a l'expiració de la memòria cau negativa (en segons)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Els usuaris que l'SSSD hauria d'ignorar explícitament" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Els grups que l'SSSD hauria d'ignorar explícitament" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Si els usuaris filtrats han d'aparèixer als grups" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" "El valor del camp de la contrasenya que ha de retornar el proveïdor NSS" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" "Substitueix el valor de homedir del proveïdor d'identitat amb aquest valor" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" "Substitueix el valor buit de homedir del proveïdor d'identitat amb aquest " "valor" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" "Substitueix el valor del shell del proveïdor d'identitat amb aquest valor" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" "La llista dels shells que els usuaris poden utilitzar per iniciar la sessió" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" "La llista dels shells que es vetaran i se substituiran amb el shell " "alternatiu" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" @@ -202,32 +210,32 @@ "Si un shell emmagatzemat al directori central està permès però no es troba " "disponible, utilitza aquesta alternativa" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "El shell a utilitzar si el proveïdor no en llista cap" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "Quant de temps seran vàlids els registres a la memòria cau" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 #, fuzzy msgid "List of user attributes the NSS responder is allowed to publish" msgstr "La llista dels atributs de l'usuari que l'InfoPipe pot publicar" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" "Quant de temps s'ha de permetre entre els inicis de sessions en memòria cau " "i els inicis de sessions en línia (en dies)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" "Quants intents fallits d'inicis de sessió es permeten quan s'està " "desconnectat" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -235,71 +243,71 @@ "Quant de temps (en minuts) s'ha de denegar l'inici de sessió després d'haver " "assolit offline_failed_login_attempts" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "Quins tipus de missatges es mostren a l'usuari durant l'autenticació" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" "Quants segons s'ha de mantenir la informació en la memòria cau per a les " "peticions PAM" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" "Quants dies abans del venciment de la contrasenya s'hauria de mostrar una " "advertència" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "La llista dels uid o dels noms d'usuari de confiança" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" "La llista dels dominis accessibles fins i tot per als usuaris que no són de " "confiança." -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "El missatge que es mostra quan venç el compte de l'usuari." -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 #, fuzzy msgid "Message printed when user account is locked." msgstr "El missatge que es mostra quan venç el compte de l'usuari." -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "Si s'avaluen els atributs basats en temps a les regles sudo" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" "Si s'esbocinen els noms i les adreces dels amfitrions al fitxer known_hosts" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" @@ -307,278 +315,278 @@ "Quants segons s'ha de mantenir un amfitrió al fitxer known_hosts després que " "s'hagi sol·licitat la seva clau" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Fitxer que conté els certificats de l'AC" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" "La llista dels UID o dels noms d'usuari que poden accedir al contestador del " "PAC" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" "La llista dels UID o dels noms d'usuari que poden accedir al contestador de " "l'InfoPipe" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "La llista dels atributs de l'usuari que l'InfoPipe pot publicar" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Proveïdor d'identitat" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Proveïdor d'autenticació" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Proveïdor de control d'accés" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Proveïdor de canvi de contrasenya" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "Proveïdor de SUDO" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "Proveïdor d'Autofs" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "Proveïdor d'identitat d'amfitrions" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Proveïdor de SUDO" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Id. mínim d'usuari" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Id. màxim d'usuari" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Habilita l'enumeració de tots els usuaris/grups" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Credencials en memòria cau per als inicis de sessions sense connexió" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Emmagatzema els codis hash de les contrasenyes" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Mostra els usuaris/grups en format plenament qualificat" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "No incloure als membres dels grups en la recerca del grup" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" "Període de temps per a l'expiració de les entrades de la memòria cau (en " "segons)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" "Restringeix o prefereix una família específica d'adreces quan es realitzi la " "recerca del DNS" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Quant de temps s'han de mantenir les entrades en la memòria cau després de " "l'últim inici de sessió reeixit (en dies)" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" "Temps d'expiració per a les respostes del DNS en la resolució dels servidors " "(en segons)" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "La part del domini de la consulta DNS del descobriment del servei" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" "Substitueix el valor del GID del proveïdor d'identitat amb aquest valor" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "Distingeix entre majúscules i minúscules als noms d'usuari" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "Amb quina freqüència les entrades vençudes s'actualitzen al rerefons" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "Si s'actualitza automàticament l'entrada DNS del client" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "El TTL per aplicar a l'entrada DNS del client després d'actualitzar-ho" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" "La interfície amb la IP que s'hauria d'utilitzar per a les actualitzacions " "dinàmiques DNS" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "Cada quant s'actualitzarà automàticament l'entrada DNS del client" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "Si el proveïdor ha d'actualitzar explícitament així el registre PTR" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "Si la utilitat nsupdate per defecte ha d'utilitzar TCP" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" "Quin tipus d'autenticació s'ha d'utilitzar per realitzar l'actualització del " "DNS" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 #, fuzzy msgid "Override the DNS server used to perform the DNS update" msgstr "" "Quin tipus d'autenticació s'ha d'utilitzar per realitzar l'actualització del " "DNS" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "Control de l'enumeració dels amfitrions de confiança" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "Amb quina freqüència s'ha de refrescar la llista dels subdominis" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "Llista de les opcions que han de ser inherents a un subdomini" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "Domini IPA" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "Adreça del servidor IPA" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "Adreça del servidor IPA de reserva " -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "Nom d'amfitrió del client IPA" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "Si s'actualitza automàticament l'entrada DNS del client a FreeIPA" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "Base de cerca per als objectes relacionats amb HBAC" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" "Quantitat de temps entre recerques de les regles HBAC contra el servidor IPA" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" @@ -586,99 +594,99 @@ "Quantitat de temps en segons entre recerques de les assignacions SELinux " "contra el servidor IPA" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" "Si s'estableix a fals, s'ignorarà l'argument de l'amfitrió proporcionat amb " "PAM" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" "La ubicació de l'eina de muntatge automàtic que aquest client IPA està " "utilitzant" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" "Base de cerca per a l'objecte que conté la informació sobre el domini de " "l'IPA" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" "Base de cerca per als objectes que contenen informació sobre els intervals " "d'id." -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" "Habilita els llocs DNS - el descobriment del servei es basa en la ubicació" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "Base de cerca per als contenidors de la vista" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "Objectclass per als contenidors de la vista" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "L'atribut amb el nom de la vista" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "Objectclass per substituir els objectes" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "L'atribut amb la referència a l'objecte original" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "Objectclass per als objectes de substitució d'usuari" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "Objectclass per als objectes de substitució de grup" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "Domini Active Directory" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 #, fuzzy msgid "Enabled Active Directory domains" msgstr "Domini Active Directory" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "Adreça del servidor de l'Active Directory" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "Adreça del servidor de l'Active Directory de reserva" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "Nom d'amfitrió del client d'Active Directory" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "Filtre LDAP per determinar els privilegis d'accés" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "Si s'utilitza el catàleg global per a les recerques" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "Mode d'operació per al control d'accés basat en GPO" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" @@ -686,7 +694,7 @@ "Quantitat de temps entre recerques de fitxers de polítiques GPO contra el " "servidor d'AD" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" @@ -694,7 +702,7 @@ "Noms dels serveis del PAM que s'assignen als ajusts de les polítiques " "(Deny)InteractiveLogonRight del GPO" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" @@ -702,266 +710,266 @@ "Noms dels serveis del PAM que s'assignen als ajusts de les polítiques " "(Deny)RemoteInteractiveLogonRight del GPO" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" "Noms dels serveis del PAM que s'assignen als ajusts de les polítiques " "(Deny)NetworkLogonRight del GPO" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" "Noms dels serveis del PAM que s'assignen als ajusts de les polítiques " "(Deny)BatchLogonRight del GPO" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" "Noms dels serveis del PAM que s'assignen als ajusts de les polítiques " "(Deny)ServiceLogonRight del GPO" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" "Noms dels serveis del PAM als quals sempre se'ls garanteix l'accés basat en " "GPO" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" "Noms dels serveis del PAM als quals sempre se'ls denega l'accés basat en GPO" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" "Dret (permet o denega) predeterminat de l'inici de sessió a utilitzar per " "als noms dels serveis del PAM sense assignar" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "un lloc determinat per utilitzar amb el client" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Adreça del servidor Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "Adreça del servidor Kerberos de reserva" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Reialme Kerberos" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Temps d'expiració de l'autenticació" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "Si es creen els fitxers kdcinfo" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "Si es rebutgen les parts de la configuració del krb5" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Directori per emmagatzemar la memòria cau de les credencials" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Ubicació de la memòria cau de les credencials de l'usuari" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Ubicació de la clau per validar les credencials" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Habilita la validació de credencials" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" "Emmagatzema la contrasenya si s'està desconnectat per a l'autenticació " "posterior amb connexió" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "Temps de vida renovable del TGT" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "Temps de vida del TGT" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "Temps entre les dues comprovacions per a la renovació" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "Habilita FAST" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "Selecciona el principal per utilitzar amb FAST" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "Habilita la canonització del principal" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "Habilita els principals empresarials" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" "Una assignació des dels noms dels usuaris als noms del principal de kerberos" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" "Servidor on es troba el servei de canvi de contrasenya si no està al KDC" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, La URI del servidor LDAP" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "ldap_backup_uri, la URI del servidor LDAP" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "El DN base per defecte" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "El tipus d'esquema en ús al servidor LDAP, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "El DN de creació del vincle per defecte" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" "El tipus del testimoni d'autenticació del DN de creació del vincle per " "defecte" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "El testimoni d'autenticació del DN de creació del vincle per defecte" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Període de temps per intentar una connexió" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Període de temps per intentar operacions LDAP asíncrones" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" "Període de temps entre els intents per tornar a connectar mentre s'està " "desconnectat" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "Utilitza només majúscules pels noms de reialme" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Fitxer que conté els certificats de l'AC" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Camí al directori del certificat de l'AC" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "Fitxer que conté el certificat de client" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "Fitxer que conté la clau de client" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "Llista de paquets de xifrat possibles" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Requereix verificació de certificat TLS" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Especifica el mecanisme SASL a utilitzar" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Especifica l'id. d'autorització SASL a utilitzar" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "Especifica el reialme d'autorització SASL a utilitzar" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "Especifica el SSF mínim per a l'autorització SASL de LDAP" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Taula de claus del servei del Kerberos" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Utilitza l'autenticació Kerberos per a la connexió LDAP" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Segueix les referències LDAP" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "Temps de vida del TGT per la connexió LDAP" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "Com desreferenciar els àlies" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "Nom del servei per a la recerca del servei del DNS" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "El nombre de registres a recuperar en una sola consulta LDAP" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" "El nombre de membres que han de faltar per activar una de-referència completa" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" @@ -969,390 +977,390 @@ "Si la biblioteca LDAP hauria de realitzar una recerca inversa per canonitzar " "el nom d'amfitrió durant la creació del vincle SASL" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "L'atribut entryUSN" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "L'atribut lastUSN" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" "Quant de temps s'ha de retenir una connexió al servidor LDAP abans de " "desconnectar" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "Inhabilita el control de paginació LDAP" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "Inhabilita la recuperació de l'interval de l'Active Directory" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Període de temps per esperar una petició de cerca" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "Període de temps per esperar una petició d'enumeració" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Període de temps entre les actualitzacions de les enumeracions" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "Període de temps entre les neteges de la memòria cau" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "Requereix TLS per a la recerca d'id." -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" "Utilitza l'assignació dels id. de l'objectSID en lloc dels id. pre-establerts" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "DN base per a la recerca de l'usuari" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Abast de la recerca de l'usuari" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Filtre per a la recerca de l'usuari" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Objectclass per als usuaris" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "L'atribut nom d'usuari" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "L'atribut UID" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "L'atribut GID primari" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "L'atribut GECOS" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "L'atribut directori inicial" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "L'atribut shell" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "L'atribut UUID" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "L'atribut objectSID" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "L'atribut grup primari de l'Active Directory per a l'assignació d'id." -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "L'atribut usuari principal (per a Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Nom complet" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "L'atribut memberOf" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "L'atribut data de modificació" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "L'atribut shadowLastChange" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "L'atribut shadowMin" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "L'atribut shadowMax" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "L'atribut shadowWarning" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "L'atribut shadowInactive" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "L'atribut shadowExpire" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "L'atribut shadowFlag" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "L'atribut que llista els serveis PAM autoritzats" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "L'atribut que llista els amfitrions dels servidors autoritzats" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "L'atribut krbLastPwdChange" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "L'atribut krbPasswordExpiration" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" "L'atribut que indica l'activació de les polítiques de contrasenya de servidor" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "L'atribut accountExpires de l'AD" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "L'atribut userAccountControl de l'AD" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "L'atribut nsAccountLock" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "L'atribut loginDisabled del NDS" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "L'atribut loginExpirationTime del NDS" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "L'atribut loginAllowedTimeMap del NDS" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "L'atribut clau pública SSH" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "atribut que llista els tipus permesos d'autenticació per a un usuari" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "atribut que conté el certificat X509 de l'usuari" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 #, fuzzy msgid "attribute containing the email address of the user" msgstr "atribut que conté el certificat X509 de l'usuari" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" "Una llista dels atributs extres per baixar juntament amb l'entrada de " "l'usuari" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "DN base per a la recerca del grup" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "L'objectclass per als grups" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Nom del grup" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Contrasenya del grup" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "L'atribut GID" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "L'atribut membre del grup" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "L'atribut UUID del grup" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "L'atribut data de modificació per als grups" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "Tipus del grup i altres senyals" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 #, fuzzy msgid "The LDAP group external member attribute" msgstr "L'atribut membres del grup de xarxa" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "Nivell màxim d'encadenament que seguirà l'SSSd" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "DN base per a la recerca del grup de xarxa" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "L'objectclass per als grups de xarxa" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "Nom de grup de xarxa" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "L'atribut membres del grup de xarxa" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "L'atribut triple del grup de xarxa" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "L'atribut data de modificació per als grups de xarxa" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "DN base per a la recerca del servei" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "Objectclass per als serveis" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "L'atribut nom del servei" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "L'atribut port del servei" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "L'atribut protocol del servei" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "Límit inferior per a l'assignació d'id." -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "Límit superior per a l'assignació d'id." -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "Nombres d'id. per cada porció en l'assignació d'id." -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "Utilitza l'algoritme compatible d'autorid per a l'assignació d'id." -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "Nom del domini per defecte per a l'assignació d'id." -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "SID del domini per defecte per a l'assignació d'id." -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "Utilitza LDAP_MATCHING_RULE_IN_CHAIN per a la recerca del grup" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "Utilitza LDAP_MATCHING_RULE_IN_CHAIN per a la recerca del grup inicial" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "Si s'utilitzen els grups amb testimonis" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "Estableix el límit inferior per als id. permesos del servidor LDAP" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "Estableix el límit superior per als id. permesos del servidor LDAP" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "DN per a les consultes ppolicy" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Política per avaluar el venciment de la contrasenya" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" "Quins atributs s'haurien d'utilitzar per avaluar si el compte ha vençut" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "Quines regles s'haurien d'utilitzar per avaluar el control d'accés" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "URI d'un servidor LDAP on es permeten els canvis de contrasenya" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" "URI d'un servidor LDAP de reserva on es permeten els canvis de contrasenya" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "Nom del servei DNS pel servidor LDAP de canvi de contrasenyes" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" @@ -1360,23 +1368,23 @@ "Si s'actualitza l'atribut ldap_user_shadow_last_change després d'un canvi de " "contrasenya" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "DN base per a la recerca de les regles sudo" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "Període d'actualització automàtica completa" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "Període d'actualització automàtica intel·ligent" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "Si es filtren les regles per nom d'amfitrió, adreça IP i xarxa" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" @@ -1384,219 +1392,219 @@ "Noms d'amfitrió i/o noms de domini plenament qualificat d'aquesta màquina " "per filtrar les regles de sudo" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" "Adreces IPv4 o IPv6 o xarxa d'aquesta màquina per filtrar regles de sudo" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" "Si s'inclouen les regles que contenen el grup de xarxa a l'atribut de " "l'amfitrió" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" "Si s'inclouen les regles que contenen expressions regulars a l'atribut de " "l'amfitrió" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "Objectclass de les regles sudo" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "Nom de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "Attribut command de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "L'atribut host de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "L'atribut user de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "L'atribut option de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "L'atribut runas de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "L'atribut runasuser de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "L'atribut runasgroup de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "L'atribut notbefore de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "L'atribut notafter de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "L'atribut order de la regla sudo" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "Objectclass per a les assignacions de l'eina de muntatge automàtic" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "L'atribut nom de l'assignació de l'eina de muntatge automàtic" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" "Objectclass per a les entrades de les assignacions de l'eina de muntatge " "automàtic" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" "L'atribut clau d'entrada de l'assignació de l'eina de muntatge automàtic" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" "L'atribut valor de l'entrada de l'assignació l'eina de muntatge automàtic" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" "DN base per a la recerca de l'assignació de l'eina de muntatge automàtic" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Llista separada per comes dels usuaris autoritzats" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Llista separada per comes dels usuaris no autoritzats" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "El shell predeterminat, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Base per als directoris inicials" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "El nom de la biblioteca NSS a utilitzar" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" "Si se cerca el nom del grup canònic des de la memòria cau, si és possible" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "Pila PAM a utilitzar" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Esdevé un dimoni (per defecte)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Executa en mode interactiu (no com a dimoni)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Especifica un fitxer de configuració diferent del predeterminat" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "Imprimeix el número de versió i surt" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Nivell de depuració" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Afegeix les marques temporals de depuració" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "Mostra les marques temporals amb microsegons" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Un descriptor de fitxer obert pels registres de depuració" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "Envia directament la sortida de depuració al stderr." -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "L'usuari amb què es crea la ccache FAST" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "El grup amb què es crea la ccache FAST" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Reialme Kerberos" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 #, fuzzy msgid "Requested lifetime of the ticket" msgstr "Temps de vida renovable del TGT" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 #, fuzzy msgid "Requested renewable lifetime of the ticket" msgstr "Temps de vida renovable del TGT" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 #, fuzzy msgid "Specifies the server principal to use for FAST" msgstr "Selecciona el principal per utilitzar amb FAST" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Domini del proveïdor d'informació (obligatori)" @@ -1624,52 +1632,52 @@ msgid "Unexpected error while looking for an error description" msgstr "Error inesperat en cercar una descripció de l'error" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "Permís denegat." -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Missatge del servidor: " -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Les contrasenyes no coincideixen" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "No s'admet el restabliment de la contrasenya pel root." -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "S'ha autenticat amb credencials de la memòria cau" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", la vostra contrasenya en memòria cau vencerà el: " -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" "La vostra contrasenya ha vençut. Teniu %1$d inicis de sessió restants de " "cortesia." -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "La vostra contrasenya vencerà en %1$d %2$s." -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "S'ha denegat l'autenticació fins: " -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "El sistema està desconnectat, el canvi de contrasenya no és possible" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" @@ -1677,40 +1685,40 @@ "Després de canviar la contrasenya OTP, heu de tancar la sessió i tornar-la a " "iniciar per tal d'adquirir un tiquet" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Ha fallat el canvi de contrasenya." -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Nova contrasenya: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Torneu a introduir la nova contrasenya: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "Primer factor:" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 #, fuzzy msgid "Second Factor (optional): " msgstr "Segon factor:" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "Segon factor:" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Contrasenya: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Contrasenya actual: " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "La contrasenya ha vençut. Canvieu ara la vostra contrasenya." @@ -1719,7 +1727,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "El nivell de depuració amb què s'executa" @@ -1732,7 +1740,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "S'ha produït un error en establir la configuració regional\n" @@ -2200,100 +2208,100 @@ msgstr "" "S'ha produït un error en la transacció. No s'ha pogut modificar l'usuari.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "Cap objecte de la memòria cau ha coincidit amb la cerca especificada\n" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "No s'ha pogut invalidar %1$s\n" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "No s'ha pogut invalidar %1$s %2$s\n" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 #, fuzzy msgid "Invalidate all cached entries" msgstr "Invalida tots els serveis" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "Invalida un usuari determinat" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "Invalida tots els usuaris" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "Invalida un grup determinat" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "Invalida tots els grups" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "Invalida un grup de xarxa determinat" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "Invalida tots els grups de xarxa" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "Invalida un servei determinat" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "Invalida tots els serveis" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "Invalida una assignació autofs determinada" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "Invalida totes les assignacions autofs" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "Invalida un amfitrió SSH determinat" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "Invalida tots els amfitrions SSH" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 #, fuzzy msgid "Invalidate particular sudo rule" msgstr "Invalida un usuari determinat" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 #, fuzzy msgid "Invalidate all cached sudo rules" msgstr "" "Invalida totes les entrades de la memòria cau amb l'excepció de les regles " "sudo" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "Invalida les entrades només d'un domini determinat" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "Si us plau, seleccioneu almenys un objecte a invalidar\n" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " @@ -2302,7 +2310,7 @@ "No es pot obrir el domini %1$s. Si el domini és un subdomini (domini de " "confiança), utilitzeu el FQN en lloc del paràmetre --domain/-d.\n" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "No s'han pogut obrir els dominis disponibles\n" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/de.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/de.gmo differ diff -Nru sssd-1.15.0/po/de.po sssd-1.15.2/po/de.po --- sssd-1.15.0/po/de.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/de.po 2017-03-15 16:53:24.000000000 +0000 @@ -10,7 +10,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:45-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: German (http://www.transifex.com/projects/p/sssd/language/" @@ -67,30 +67,34 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "Untätige Zeit vor der automatischen Verbindungstrennung eines Clients " -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "SSSD-Dienste zum Starten" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "SSSD-Domains zum Starten" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Zeitüberschreitung für Meldungen, die über SBUS gesendet werden" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "Regulärer Ausdruck zum Verarbeiten von Benutzername und Domain" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "" "Printf-kompatibles Format für die Darstellung voll ausgeschriebener Namen" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." @@ -98,93 +102,97 @@ "Verzeichnis im Dateisystem, in welchem SSSD Anwort-Zwischenspeicher-Dateien " "ablegt." -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "Domain, die zu Namen ohne Domain-Komponente hinzugefügt werden soll." -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "TLS-Zertifikatüberprüfung erforderlich machen" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "Zeitspanne für den Aufzählungs-Zwischenspeicher (Sekunden)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" "Zeitspanne für die Aktualisierung des Eintrags-Zwischenspeichers (Sekunden)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "Zeitspanne für den negativen Zwischenspeicher (Sekunden)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Zeitspanne für den negativen Zwischenspeicher (Sekunden)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Benutzer, die SSSD ausdrücklich ignorieren soll" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Gruppen, die SSSD ausdrücklich ignorieren soll" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Anzeige von gefilterten Benutzern in Gruppen" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" "Der Wert des Passwort-Feldes, das der NSS-Dienstanbieter zurückgeben sollte" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" "homedir-Wert des Identitäts-Anbieters wird durch diesen Wert außer Kraft " "gesetzt" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" "Leerer homedir-Wert des Identitäts-Anbieters wird durch diesen Wert ersetzt" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" "Shell-Wert des Identitäts-Anbieters wird durch diesen Wert außer Kraft " "gesetzt" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "Liste der Shells, mit denen sich der Benutzer anmelden darf" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" "Die Liste der Shells, die abgewiesen und durch eine Ausweich-Shell ersetzt " "werden" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" @@ -192,30 +200,30 @@ "Falls eine Shell im zentralen Verzeichnis zugelassen, aber nicht verfügbar " "ist, wird auf diese ausgewichen" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "Zu verwendende Shell, wenn der Anbieter keine auflistet" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "Gültigkeitsdauer der speichereigenen Zwischenspeicher-Datensätze" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 #, fuzzy msgid "List of user attributes the NSS responder is allowed to publish" msgstr "Liste der Benutzerattribute, die InfoPipe veröffentlichen darf" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" "Gibt die Anzahl der Tage an, für die zwischengespeicherte Anmeldungen " "zwischen Online-Anmeldungen zulässig sind" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "Anzahl der zulässigen fehlgeschlagenen Anmeldungen im Offline-Modus" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -223,72 +231,72 @@ "Zeitspanne in Minuten, nach der die Anmeldung verweigert wird, wenn " "offline_failed_login_attempts erreicht wurde" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" "Gibt die Art der Meldungen an, die dem Benutzer während der " "Authentifizierung angezeigt werden" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" "Anzahl der Sekunden, die zwischengespeicherte PAM-Anfragen aufbewahrt werden " "sollen" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" "Gibt die Anzahl der Tage vor dem Ablauf des Passworts an, bis eine Warnung " "angezeigt wird" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" "Gibt an, ob zeitbasierte Attribute in Sudo-Regeln berechnet werden sollen" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" "Gibt an, ob Prüfsummen von Hostnamen und Adressen in der Datei known_hosts " "gespeichert werden" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" @@ -296,281 +304,281 @@ "Anzahl der Sekunden, die ein Rechner in der Datei known_host behalten werden " "soll, nachdem dessen Schlüssel abgefragt wurden" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Datei, die CA-Zertifikate enthält" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" "Liste von Benutzer-IDs oder Benutzernamen für den Zugriff auf den PAC-" "Responder" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" "Liste von Benutzer-IDs oder Benutzernamen für den Zugriff auf den InfoPipe-" "Responder" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "Liste der Benutzerattribute, die InfoPipe veröffentlichen darf" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Identitäts-Anbieter" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Authentifizierungs-Anbieter" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Zugriffskontroll-Anbieter" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Passwortänderungs-Anbieter" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "SUDO-Anbieter" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "Autofs-Anbieter" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "Rechner-Identitäts-Anbieter" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "SUDO-Anbieter" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Minimale Benutzer‐ID" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Maximale Benutzer‐ID" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Auflistung aller Benutzer/Gruppen aktivieren" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Zwischengespeicherte Anmeldedaten für Offline-Anmeldung" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Passwort-Prüfsummen speichern" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Benutzer/Gruppen in voll ausgeschriebener Form anzeigen" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "Gruppenmitglieder in Gruppen-Suchanfragen nicht einschließen" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Zeitspanne für den Eintrags-Zwischenspeicher (Sekunden)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" "Eine spezifische Adressfamilie beim Ausführen von DNS-Suchanfragen " "beschränken oder bevorzugen" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Gibt die Anzahl der Tage an, wie lange zwischengespeicherte Einträge nach " "der letzten Anmeldung aufbewahrt werden" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" "Gibt die Anzahl Sekunden an, wie lange beim Auflösen von Servernamen auf " "Antworten vom DNS-Dienst gewartet werden soll" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "Der Domain-Teil der DNS-Abfrage zur Dienstsuche" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" "Den Gruppen-ID-Wert des Identitäts-Anbieters mit diesem Wert überschreiben" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "Groß-/Kleinschreibung in Benutzernamen berücksichtigen" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "Anzahl der Auffrischung abgelaufener Einträge im Hintergrund" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "Automatische Aktualisierung des DNS-Eintrags des Clients" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" "Die auf den DNS-Eintrag des Clients anzuwendende TTL, nachdem dieser " "aktualisiert wurde" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" "Schnittstelle, deren IP für dynamische DNS-Aktualisierungen verwendet werden " "soll" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "Gibt an, wie oft der DNS-Eintrag des Clients aktualisiert werden soll" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" "Gibt an, ob der Anbieter den PTR-Datensatz ebenfalls explizit aktualisieren " "soll" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "Gibt an, ob das nsupdate-Dienstprogramm per Vorgabe TCP verwenden soll" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" "Gibt an, welche Art der Authentifizierung bei der DNS-Aktualisierung " "verwendet werden soll" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 #, fuzzy msgid "Override the DNS server used to perform the DNS update" msgstr "" "Gibt an, welche Art der Authentifizierung bei der DNS-Aktualisierung " "verwendet werden soll" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "Aufzählung vertrauenswürdiger Domains steuern" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "Anzahl der Auffrischung der Subdomain-Liste" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA-Domain" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "IPA-Serveradresse" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "Adresse des Ersatz-IPA-Servers" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "IPA-Client-Rechnername" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" "Gibt an, ob der DNS-Eintrag des Clients in FreeIPA automatisch aktualisiert " "werden soll" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "Suchbasis für HBAC-bezogene Objekte" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "Die Zeitspanne zwischen Suchanfragen der HBAC-Regeln an den IPA-Server" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" @@ -578,354 +586,354 @@ "Die Zeitspanne in Sekunden zwischen Suchanfragen der SELinux-Zuweisung an " "den IPA-Server" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" "Falls auf »false« gesetzt, wird das von PAM angegebene Host-Argument " "ignoriert" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "Der Automounter-Ort, den dieser IPA-Client verwendet" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" "Suchbasis für Objekte, die Informationen über eine IPA-Domain enthalten" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "Suchbasis für Objekte, die Informationen über ID-Bereiche enthalten" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "DNS-Sites aktivieren – standortbasierte Dienstsuche" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "Active-Directory-Domain" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 #, fuzzy msgid "Enabled Active Directory domains" msgstr "Active-Directory-Domain" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "Adresse des Active-Directory-Servers" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "Adresse des Ersatz-Active-Directory-Servers" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "Hostname des Active-Directory-Clients" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "LDAP-Filter zum Bestimmen der Zugriffsprivilegien" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "Verwendung des globalen Katalogs für Suchvorgänge" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "Operationsmodus für GPO-basierte Zuhgriffskontrolle" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Kerberos-Serveradresse" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "Adresse des Ersatz-Kerberos-Servers" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Kerberos-Realm" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Zeitüberschreitung bei Authentifizierung" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "Gibt an, ob kdcinfo-Dateien angelegt werden" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Verzeichnis zum Speichern der Anmeldedaten" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Ort des Zwischenspeichers für die Anmeldedaten des Benutzers" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Ort der Schlüsseltabelle zum Überprüfen von Anmeldedaten" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Validierung der Anmeldedaten aktivieren" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "Passwort im Offline-Modus für spätere Online-Anmeldung speichern" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "Erneuerung der Lebensdauer des TGT" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "Lebensdauer des TGT" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "Zeitspanne zwischen zwei Prüfungen, ob Erneuerung nötig ist" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "Aktiviert FAST" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "Wählt den für FAST zu verwendenden Principal aus" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "Aktiviert Kanonisierung des Principals" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "Enterprise-Principals aktivieren" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" "Server, auf dem der Dienst zum Ändern des Passworts läuft, falls nicht KDC" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, die URI des LDAP-Servers" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "ldap_backup_uri, die URI des LDAP-Servers" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "Vorgegebene Basis-DN" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Der vom LDAP-Server verwendete Schema-Typ gemäß RFC2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "Vorgegebene Bind-DN" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "Typ des Authentifizierungs-Tokens der vorgegebenen Bind-DN" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "Authentifizierungs-Token für die vorgegebene Bind-DN" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Zeitspanne für einen Verbindungsversuch" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Zeitspanne für Versuche zur Ausführung synchroner LDAP-Vorgänge" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" "Zeitspanne zwischen Versuchen zum erneuten Verbindungsaufbau im Offline-Modus" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "Nur Großschreibung für Realm-Namen verwenden" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Datei, die CA-Zertifikate enthält" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Pfad zum CA-Zertifikatverzeichnis" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "Datei, die das Client-Zertifikat enthält" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "Datei, die den Client-Schlüssel enthält" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "Liste der möglichen Verschlüsselungs-Suites" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "TLS-Zertifikatüberprüfung erforderlich machen" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Zu verwendenden sasl-Mechanismus angeben" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Zu verwendende ID für sasl-Authentifizierung angeben" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "Zu verwendenden Realm für sasl-Authentifizierung angeben" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "Gibt den minimalen SSF für die SASL-Authentifizierung über LDAP an" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Schlüsseltabelle des Kerberos-Dienstes" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Kerberos-Authentifizierung für LDAP-Verbindung verwenden" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "LDAP-Verweisen folgen" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "Lebensdauer von TGT für LDAP-Verbindung" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "Dereferenzierung von Aliasen" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "Dienstname für DNS-Service-Suchanfragen" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "Anzahl der in einer einzelnen LDAP-Abfrage zu holenden Datensätze" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" "Anzahl der Elemente, die fehlen müssen, um eine vollständige " "Dereferenzierung auszulösen" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" @@ -933,388 +941,388 @@ "Gibt an, ob die LDAP-Bibliothek eine Rückwärtssuche ausführen soll, um den " "Rechnernamen während einer SASL-Bindung zu kanonisieren" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "entryUSN-Attribut" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "lastUSN-Attribut" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" "Zeitspanne zum Halten einer Verbindung zum LDAP-Server, bis diese " "unterbrochen wird" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "LDAP-Paging-Steuerung deaktivieren" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "Bereichsermittlung für Active Directory deaktivieren" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Zeitspanne zum Warten auf eine Suchanfrage" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "Zeitspanne zum Warten auf eine Auflistungsanfrage" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Zeitspanne zwischen Auflistungsanfragen" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "Zeitspanne zwischen den Leerungen des Zwischenspeichers" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "TLS für ID-Suchvorgänge erforderlich machen" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "ID-Zuweisung von objectSID anstelle von voreingestellten IDs verwenden" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "Basis-DN für Benutzer-Suchanfragen" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Bereich für Benutzer-Suchanfragen" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Filter für Benutzer-Suchanfragen" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Objektklasse für Benutzer" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Benutzername-Attribut" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "UID-Attribut" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Primäres GID-Attribut" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "GECOS-Attribut" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Home-Verzeichnis-Attribut" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Shell-Attribut" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "objectSID -Attribut" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "Active-Directory-Primärgruppen-Attribut für ID-Zuweisung" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Principal-Attribut verwenden (für Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Vollständiger Name" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "memberOf-Attribut" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Änderungszeit-Attribut" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "shadowLastChange-attribut" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "shadowMin-Attribut" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "shadowMax Attribut" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "shadowWarning-Attribut" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "shadowInactive-Attribut" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "shadowExpire-Attribut" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "shadowFlag-Attribut" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "Attribut, welches die autorisierten PAM-Dienste auflistet" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "Attribut, welches die autorisierten Server-Hosts auflistet" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "krbLastPwdChange-Attribut" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "krbPasswordExpiration-Attribut" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" "Attribut, welches angibt, dass die serverseitigen Passwortregeln aktiv sind" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "accountExpires-Attribut von AD" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "userAccountControl-Attribut von AD" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "nsAccountLock-Attribut" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "loginDisabled-Attribut von NDS" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "loginExpirationTime-Attribut von NDS" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "loginAllowedTimeMap-Attribut von NDS" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "Attribut für öffentlichen SSH-Schlüssel" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" "Eine Liste der zusätzlich herunterzuladender Attribute zusammen mit dem " "Benutzereintrag" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "Basis-DN für Gruppen-Suchanfragen" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "Objektklasse für Gruppen" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Gruppenname" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Gruppenpasswort" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "Gruppen-ID-Attribut" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "Gruppen-Mitgliedschafts-Attribut" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "Änderungszeit-Attribut für Gruppen" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "Typ der Gruppe und weitere Flags" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 #, fuzzy msgid "The LDAP group external member attribute" msgstr "Netzgruppen-Mitglieder-Attribut" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "Maximale Ebene der Verschachtelung, der SSSd folgt" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "Basis-DN für Netzgruppen-Suchanfragen" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "Objektklasse für Netzgruppen" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "Netzgruppenname" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "Netzgruppen-Mitglieder-Attribut" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "Netzgruppen-Tripel-Attribut" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "Änderungszeit-Attribut für Netzgruppen" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "Basis-DN für Dienste-Suchanfragen" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "Objektklasse für Dienste" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "Name-Attribut des Dienstes" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "Port-Attribut des Dienstes" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "Protokoll-Attribut des Dienstes" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "Untere Grenze für ID-Zuweisung" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "Obere Grenze für ID-Zuweisung" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "Anzahl der IDs für jeden Teil bei der ID-Zuweisung" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "autorid-kompatiblen Algorithmus für ID-Zuweisung verwenden" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "Name der Vorgabe-Domain für ID-Zuweisung" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "SID der Vorgabedomain für ID-Zuweisung" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "LDAP_MATCHING_RULE_IN_CHAIN für Gruppen-Suchanfragen verwenden" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "LDAP_MATCHING_RULE_IN_CHAIN für initgroup-Suchanfragen verwenden" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "Verwendung von Token-Gruppen" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "Untere Grenze für zulässige IDs des LDAP-Servers angeben" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "Obere Grenze für zulässige IDs des LDAP-Servers angeben" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Regel zum Ermitteln der Ablaufzeit des Passworts" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" "Attribute, die bei der Ermittlung verwendet werden, ob ein Konto abgelaufen " "ist" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "Regeln für die Ermittlung der Zugriffskontrolle" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "URI eines LDAP-Servers, wo Passwortänderungen zulässig sind" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "URI eines Ersatz-LDAP-Servers, wo Passwortänderungen zulässig sind" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "DNS-Dienstname für den LDAP-Passwortänderungsserver" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" @@ -1322,25 +1330,25 @@ "Gibt an, ob das Attribut ldap_user_shadow_last_change nach einer " "Passwortänderung aktualisiert werden soll" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "Basis-DN für Suchanfragen nach Sudo-Regeln" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "Periode für automatische vollständige Aktualisierung" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "Periode für bedingte vollständige Aktualisierung" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" "Gibt an, ob Regeln nach Hostnamen, IP-Adressen oder Netzwerken gefiltert " "werden sollen" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" @@ -1348,216 +1356,216 @@ "Hostnamen und/oder voll ausgeschriebene Domain-Namen dieses Rechners zum " "Filtern von Sudo-Regeln" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" "IPv4- oder IPv6-Adressen oder Netzwerk dieses Rechners zum Filtern von sudo-" "Regeln" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" "Gibt an, ob Regeln im Host-Attribut einbezogen werden sollen, die " "Netzgruppen enthalten" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" "Gibt an, ob Regeln im Host-Attribut einbezogen werden sollen, die reguläre " "Ausdrücke enthalten" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "Objektklasse für Sudo-Regeln" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "Sudo-Regelname" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "Befehlsattribut der Sudo-Regel" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "Host-Attribut der Sudo-Regel" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "Benutzer-Attribut der Sudo-Regel" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "Optionsattribut der Sudo-Regel" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "runasuser-Attribut der Sudo-Regel" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "runasgroup-Attribut der Sudo-Regel" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "notbefore-Attribut der Sudo-Regel" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "notafter-Attribut der sudo-Regel" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "Reihenfolge-Attribut der Sudo-Regel" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "Objektklasse für Automounter-Zuweisungen" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "Name-Attribut der Automounter-Zuweisung" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "Objektklasse für Einträge von Automounter-Zuweisungen" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "Schlüssel-Attribut des Automounter-Zuweisungseintrags" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "Wert-Attribut des Automounter-Zuweisungseintrags" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "Basis-DN für Suchanfragen nach Automounter-Zuweisungen" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Durch Kommata getrennte Liste der erlaubten Benutzer" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Durch Kommata getrennte Liste der verbotenen Benutzer" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Vorgabeshell, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Wurzel für Benutzerverzeichnisse" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "Name der zu verwendenden NSS-Bibliothek" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" "Gibt an, ob wenn möglich im Zwischenspeicher nach dem kanonischen " "Gruppennamen gesucht werden soll" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "Zu verwendender PAM-Stapel" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Zum Hintergrunddienst werden (Vorgabe)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Interaktiv ausführen (nicht als Hintergrunddienst)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Angabe einer nicht standardmäßigen Konfigurationsdatei" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "Versionsnummer ausgeben und das Programm beenden" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Fehlerdiagnosestufe" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Debug-Zeitstempel hinzufügen" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "Zeitstempel mit Mikrosekunden anzeigen" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Offener Dateideskriptor für die Debug-Protokolle" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Kerberos-Realm" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 #, fuzzy msgid "Requested lifetime of the ticket" msgstr "Erneuerung der Lebensdauer des TGT" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 #, fuzzy msgid "Requested renewable lifetime of the ticket" msgstr "Erneuerung der Lebensdauer des TGT" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 #, fuzzy msgid "Specifies the server principal to use for FAST" msgstr "Wählt den für FAST zu verwendenden Principal aus" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Domain des Informationsanbieters (obligatorisch)" @@ -1586,51 +1594,51 @@ msgid "Unexpected error while looking for an error description" msgstr "Unerwarteter Fehler beim Suchen nach einer Fehlerbeschreibung" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Server-Meldung: " -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Passwörter stimmen nicht überein" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "Das Zurücksetzen des Passworts durch Root wird nicht unterstützt." -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "Authentifiziert mit zwischengespeicherten Anmeldedaten" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", Ihr zwischengespeichertes Passwort läuft ab am: " -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" "Ihr Passwort ist abgelaufen. Ihnen verbleiben nur noch %1$d Anmeldungen." -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "Ihr Passwort wird in %1$d %2$s ablaufen." -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "Authentifizierung wird verweigert bis: " -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "System ist offline, Änderung des Passworts ist nicht möglich" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" @@ -1638,39 +1646,39 @@ "Nach dem Ändern des OTP-Passworts müssen Sie sich ab- und wieder anmelden, " "um ein Ticket erhalten zu können" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Änderung des Passworts fehlgeschlagen. " -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Neues Passwort: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Neues Passwort wiederholen: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Passwort: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Aktuelles Passwort: " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "Passwort ist abgelaufen. Ändern Sie Ihr Passwort jetzt." @@ -1679,7 +1687,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "Stufe, mit der die Fehlerdiagnose ausgeführt werden soll" @@ -1692,7 +1700,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "Fehler beim Setzen der Locale-Einstellung\n" @@ -2161,100 +2169,100 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Transaktionsfehler. Benutzer kann nicht geändert werden.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" "Kein Objekt im Zwischenspeicher entspricht der angegebenen Suchanfrage\n" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 #, fuzzy msgid "Invalidate all cached entries" msgstr "Alle Dienste annullieren" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "Bestimmten Benutzer annullieren" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "Alle Benutzer annullieren" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "Bestimmte Gruppe annullieren" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "Alle Gruppen annullieren" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "Bestimmte Netzgruppe annullieren" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "Alle Netzgruppen annullieren" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "Bestimmten Dienst annullieren" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "Alle Dienste annullieren" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "Bestimmte autofs-Zuweisung annullieren" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "Alle autofs-Zuweisungen annullieren" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 #, fuzzy msgid "Invalidate particular sudo rule" msgstr "Bestimmten Benutzer annullieren" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 #, fuzzy msgid "Invalidate all cached sudo rules" msgstr "" "Alle zwischengespeicherten Einträge mit Ausnahme von Sudo-Regeln annullieren" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "Nur Einträge einer bestimmten Domain annullieren" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "Bitte wählen Sie mindestens ein Objekt für die Annullierung\n" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " @@ -2264,7 +2272,7 @@ "(trusted domain) handelt, verwenden Sie den voll ausgeschriebenen Namen " "anstelle des Parameters --domain/-d.\n" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "Verfügbare Domains konnten nicht geöffnet werden\n" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/es.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/es.gmo differ diff -Nru sssd-1.15.0/po/es.po sssd-1.15.2/po/es.po --- sssd-1.15.0/po/es.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/es.po 2017-03-15 16:53:24.000000000 +0000 @@ -16,7 +16,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:45-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Spanish (http://www.transifex.com/projects/p/sssd/language/" @@ -72,32 +72,36 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Servicios SSSD a iniciar" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "Dominios SSSD a iniciar" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Tiempo máximo para los mensajes enviados a través de SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "" "Expresión regular para analizar sintácticamente el nombre de usuario y " "dominio" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "" "Formato compatible con printf para mostrar nombres completamente calificados" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." @@ -105,88 +109,92 @@ "Directorio en el sistema de archivos donde SSSD debería guardar fichero de " "reproducción de cache de Kerberos." -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Requiere la verificación de certificado TLS" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "Tiempo máximo (segundos) del caché de enumeración" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" "Tiempo máximo (segundos) de la entrada de caché a actualizar en segundo plano" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "Tiempo máximo negativo del cache (segundos)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Tiempo máximo negativo del cache (segundos)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Usuarios que deben ser explícitamente ignorados por SSSD" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Grupos que deben ser explícitamente ignorados por SSSD" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Deben aparecer los usuarios filtrados en los grupos" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "El valor del campo contraseña que el proveedor NSS debe devolver" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" "Sustituye valores del directorio personal del proveedor de la identidad con " "este valor" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "Lista de los usuarios de consola habilitados para registrarse" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" "Lista de consolas que serán vetadas, y reemplazadas por la consola de reserva" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" @@ -194,29 +202,29 @@ "Si una consola almacenada en el directorio central es permitida pero no se " "encuentra disponible, utilice esta de reserva" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" "Por cuánto tiempo permitir ingresos cacheados entre ingresos en línea (días)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" "Cuantos intentos de ingreso fallidos se permiten cuando está desconectado" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -224,681 +232,681 @@ "Cuántos minutos se denegará el ingreso después de que se alcance el máximo " "de ingresos fallidos offline_failed_login_attempts" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "Que clase de mensajes se muestran al usuario durante la autenticación" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" "Cuanto segundos se mantendrá la información de identidad almacenada para " "solicitudes de PAM" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "Cuanto días se debe mostrar un aviso de expiración de contraseña" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "Ya sea para evaluar los atributos basados en el tiempo en reglas sudo" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Archivo que contiene los certificados CA" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Proveedor de identidad" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Proveedor de Autenticación" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Proveedor de control de acceso" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Proveedor de cambio de contraseña" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "Proveedor de SUDO" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "Proveedor de Autofs" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "Suministrador de identidad de host" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Proveedor de SUDO" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "ID mínimo de usuario" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "ID máximo de usuario" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Habilitar la enumeración de todos los usuarios/grupos" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Hacer caché de las credenciales para ingresos fuera de línea" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Guardar los hashes de la contraseña" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Mostrar los usuarios/grupos en un formato completamente calificado" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Tiempo máximo de una entrada del caché (segundos)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" "Restringir o preferir una familia de direcciones específica, cuando se " "realicen búsquedas DNS" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "Por cuánto tiempo permitir ingresos cacheados luego del último (días)" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" "Cantidad de tiempo (en segundos) a esperar respuestas desde DNS cuando se " "estén resolviendo servidores" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "La sección del dominio de la consulta para descubrir servicios DNS" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "Sustituye valor GID del proveedor de la identidad con este valor" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "Trate al nombre de usuario con mayúsculas y minúsculas" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" "La interfaz cuya IP debería ser utilizada para actualizaciones DNS " "automáticas" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "Dominio IPA" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "Dirección del servidor IPA" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "Nombre de equipo del cliente IPA" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" "Si actualizar o no en forma automática la entrada DNS del cliente en FreeIPA" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "Búsqueda base para objetos HBAC" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" "Cantidad de tiempo entre búsquedas de reglas HBAC contra el servidor IPA" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" "Si se lo define en 'false', será ignorado el argumento de equipo ofrecido " "por PAM" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "La ubicación de montaje automático que este cliente de IPA está usando" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "Filtro LDAP para determinar privilegios de acceso" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Dirección del servidor Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Reinado Kerberos" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Expiración de la autenticación" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Directorio donde almacenar las credenciales cacheadas" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Ubicación del caché de credenciales del usuario" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Ubicación de la tabla de claves para validar las credenciales" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Habilitar la validación de credenciales" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" "Si se encuentra desconectado, almacena contraseñas para más tarde realizar " "una autenticación en línea" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "ciclo de vida renovable del TGT" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "ciclo de vida del TGT" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "tiempo entre dos comprobaciones para renovación " -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "Habilita FAST" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "Selecciona el principal para su uso por FAST" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "Habilita canonicalización principal" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" "El servidor en donde está ejecutándose el servicio de modificación de " "contraseña, en caso de no ser KDC. " -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, El URI del servidor LDAP" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "DN base predeterminado" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "El Tipo de Esquema a usar en el servidor LDAP, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "El DN Bind predeterminado" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "El tipo del token de autenticación del DN bind predeterminado" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "El token de autenticación del DN bind predeterminado" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Tiempo durante el que se intentará la conexión" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Tiempo durante el que se intentará operaciones LDAP sincrónicas" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "Tiempo entre intentos de reconexión cuando esté fuera de línea" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "Use solo el caso superior para nombres reales" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Archivo que contiene los certificados CA" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Ruta hacia un directorio certificado CA" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "Fichero que contiene el certificado de cliente" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "Fichero que contiene la llave de cliente" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "Lista de posibles suites de cifrado" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Requiere la verificación de certificado TLS" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Especificar el mecanismo sasl a usar" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Especifique el id de autorización sasl a usar" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "Especifica el reinado de autorización sasl a ser utilizado" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "Especificar los SSF mínimos para autorizaciones sasl de LDAP" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Tabla de clave del servicio Kerberos" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Usar auth Kerberos para la conexión LDAP" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Seguir referencias LDAP" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "Período de vida del TGT para la conexión LDAP" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "Como eliminar aliases" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "Nombre de servicio para busquedas de servicios DNS" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "La cantidad de registros a ser obtenidos en una única consulta LDAP" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" "La cantidad de miembros que deben faltar para desencadenar una deref completa" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" @@ -906,618 +914,618 @@ "Si la Biblioteca LDAP debería realizar una búsqueda inversa para " "canonicalizar el nombre del host durante un enlace SASL" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "atributo entryUSN" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "atributo lastUSN" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" "El período de tiempo máximo para retener una conexión con el servidor LDAP " "antes de desconectar" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "Deshabilita el control de paginación LDAP" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Tiempo máximo a esperar un pedido de búsqueda" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "periodo de espera para solicitud de enumeración" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Tiempo en segundos entre las actualizaciones de enumeración" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "periodo de tiempo entre borrados de la caché" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "Requiere TLS para búsquedas de ID" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "DN base para búsquedas de usuario" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Ambito de las búsquedas del usuario" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Filtro para las búsquedas del usuario" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Objectclass para los usuarios" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Atributo Username" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "Atributo UID" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Atributo GID primario" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "Atributo GECOS" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Atributo Directorio de inicio" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Atributo shell" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Atributo principal del usuario (para Kerberos) " -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Nombre completo" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "Atributo memberOf" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Atributo hora de modificación" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "atributo shadowLastChange" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "atributo shadowMin " -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "atributo shadowMax" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "atributo shadowWarning " -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "atributo shadowInactive " -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "atributo shadowExpire" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "atributo shadowFlag " -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "listado de atributos de servicios PAM autorizados" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "Atributo de listado de equipos de servidor autorizados" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "atributo krbLastPwdChange " -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "atributo krbPasswordExpiration " -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" "atributo indicando que las políticas de contraseña del lado del servidor " "están activas" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "atributo accountExpires de AD" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "atributo userAccountControl de AD" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "atributo nsAccountLock " -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "loginDisabled atributo de NDS" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "loginExpirationTime atributo de NDS" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "loginAllowedTimeMap atributo de NDS" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "Atributo de clave pública SSH" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "DN base para busqueda de grupos" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "clase objeto para" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Nombre del grupo" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Contraseña del grupo" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "Atributo GID" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "Atributo de miembro del grupo" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "Atributo de modificación de tiempo para los grupos" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 #, fuzzy msgid "The LDAP group external member attribute" msgstr "Atributo de miembros de grupos de red" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "A continuación, nivel SSSD de anidado máximo" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "DN base para búsquedas de grupos de red" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "Clases de objetos para grupos de red" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "Nombre de grupo de red" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "Atributo de miembros de grupos de red" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "Atributo triple de grupo de red" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "Atributo de modificación de tiempo para grupos de red" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "Base DN para servicio de búsquedas" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "Clase de objeto para servicio" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "Atributo de nombre de servicio" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "Atributo de puerto de servicio" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "Atributo de protocolo de servidor" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Política para evaluar el vencimiento de la contraseña" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" "Los atributos que deberán ser utilizados para evaluar si una cuenta ha " "expirado" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "Las reglas que deberían ser utilizadas para evaluar control de acceso" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" "URI de un servidor LDAP donde se permite la modificación de contraseñas" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" "Nombre del servicio DNS para el servidor de modificación de contraseñas LDAP" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "Base DN para búsquedas de reglas sudo" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "Objeto clase para reglas sudo" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "Nombre de regla sudo" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "Atributo de regla de comando sudo" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "Atributo de la regla host de sudo" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "Atributo de la regla usuario de sudo" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "Atributo de la regla opción de sudo" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "Atributo de la regla suda runasuser" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "Atributo de regla runasgroup de sudo" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "Atributo de regla notbefore de sudo" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "Atributo de regla noafter de sudo" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "Atributo de regla orden de sudo" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "Objeto clase para mapas automontador" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "Atributo de nombre de mapa de automontador" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "Objeto clase para entradas de mapa de automontador" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "Atributo de clave de entrada para mapa de automontador" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "Atributo de valor de entrada para mapa de automontador" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "Base DN para búsquedas de mapa de automontador" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Lista separada por comas de usuarios autorizados" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Lista separada por comas de usuarios prohibidos" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Shell predeterminado, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Base de los directorios de inicio" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "Nombre de la biblioteca NSS a usar" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "Pila PAM a usar" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Convertirse en demonio (predeterminado)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Ejecutarse en forma interactiva (no un demonio)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Indicar un archivo de configuración diferente al predeterminado" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "Muestra el número de versión y finaliza" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Nive de depuración" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Agregar marcas de tiempo de depuración" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "Mostrar marcas de tiempo con microsegundos" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Un arhivo abierto de descriptor para los registros de depuración" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Reinado Kerberos" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 #, fuzzy msgid "Requested lifetime of the ticket" msgstr "ciclo de vida renovable del TGT" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 #, fuzzy msgid "Requested renewable lifetime of the ticket" msgstr "ciclo de vida renovable del TGT" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 #, fuzzy msgid "Specifies the server principal to use for FAST" msgstr "Selecciona el principal para su uso por FAST" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Dominio del proveedor de información (obligatorio)" @@ -1546,88 +1554,88 @@ msgstr "" "Ha ocurrido un error no esperado mientras se buscaba la descripción del error" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Mensaje del servidor:" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Las contraseñas no coinciden" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "No existe soporte para reseteado de la contraseña por el usuario root." -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "Autenticado mediante credenciales cacheada" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", su contraseña cacheada vencerá el:" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "La autenticación ha sido denegada hasta:" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "El sistema está fuera de línea, no se puede cambiar la contraseña" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Falló el cambio de contraseña." -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Nueva contraseña: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Reingrese la contraseña nueva:" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Contraseña: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Contraseña actual: " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "La contraseña ha expirado. Modifíquela en este preciso momento." @@ -1636,7 +1644,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "Nivel de depuración en que se debe ejecutar" @@ -1649,7 +1657,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "Error al poner la región\n" @@ -2100,105 +2108,105 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Error de transacción. No se pudo modificar el usuario.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 #, fuzzy msgid "Invalidate all cached entries" msgstr "Todos los usuarios invalidados" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "Usuario particular invalidado" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "Todos los usuarios invalidados" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 #, fuzzy msgid "Invalidate particular sudo rule" msgstr "Usuario particular invalidado" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 #, fuzzy msgid "Invalidate all cached sudo rules" msgstr "Todos los usuarios invalidados" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/eu.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/eu.gmo differ diff -Nru sssd-1.15.0/po/eu.po sssd-1.15.2/po/eu.po --- sssd-1.15.0/po/eu.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/eu.po 2017-03-15 16:53:24.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:45-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Basque (http://www.transifex.com/projects/p/sssd/language/" @@ -61,1401 +61,1409 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 -msgid "SSSD Services to start" +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" msgstr "" #: src/config/SSSDConfig/__init__.py.in:57 -msgid "SSSD Domains to start" +msgid "SSSD Services to start" msgstr "" #: src/config/SSSDConfig/__init__.py.in:58 -msgid "Timeout for messages sent over the SBUS" +msgid "SSSD Domains to start" msgstr "" #: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 -msgid "Regex to parse username and domain" +msgid "Timeout for messages sent over the SBUS" msgstr "" #: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 -msgid "Printf-compatible format for displaying fully-qualified names" +#: src/config/SSSDConfig/__init__.py.in:184 +msgid "Regex to parse username and domain" msgstr "" #: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 +msgid "Printf-compatible format for displaying fully-qualified names" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 msgid "Tune certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 msgid "Files negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 msgid "Path to storage of trusted CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 msgid "SELinux provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Gutxienezko erabiltzaile IDa" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Gehienezko erabiltzaile IDa" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA domeinua" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "IPA zerbitzariaren helbidea" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "IPA bezeroaren ostalari-izena" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "FAST gaitzen du" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "entryUSN atributua" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "lastUSN atributua" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "UID atributua" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "objectSID atributua" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Izen osoa" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "shadowLastChange atributua" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "shadowMin atributua" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "shadowMax atributua" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "shadowWarning atributua" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "shadowInactive atributua" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "shadowExpire atributua" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "shadowFlag atributua" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "krbLastPwdChange atributua" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "krbPasswordExpiration atributua" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "ADren accountExpires atributua" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "ADren userAccountControl atributua" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "nsAccountLock atributua" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Talde-izena" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Taldearen pasahitza" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "GID atributua" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Shell lehenetsia, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "Inprimatu bertsio zenbakia eta irten" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Arazketa maila" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Gehitu arazketako data-zigiluak" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 msgid "Kerberos realm to use" msgstr "" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1483,88 +1491,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr "" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Huts egin du pasahitza aldatzeak. " -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Pasahitz berria: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Berriz sartu pasahitz berria: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Pasahitza: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Uneko pasahitza: " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "Pasahitza iraungita. Aldatu zure pasahitza orain." @@ -1573,7 +1581,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "" @@ -1586,7 +1594,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "" @@ -2016,105 +2024,105 @@ msgid "Transaction error. Could not modify user.\n" msgstr "" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 #, fuzzy msgid "Invalidate all cached entries" msgstr "Baliogabetu zerbitzu guztiak" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "Baliogabetu erabiltzaile bat" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "Baliogabetu erabiltzaile guztiak" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "Baliogabetu talde bat" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "Baliogabetu talde guztiak" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "Baliogabetu zerbitzu bat" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "Baliogabetu zerbitzu guztiak" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 #, fuzzy msgid "Invalidate particular sudo rule" msgstr "Baliogabetu erabiltzaile bat" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 #, fuzzy msgid "Invalidate all cached sudo rules" msgstr "Baliogabetu erabiltzaile guztiak" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/fr.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/fr.gmo differ diff -Nru sssd-1.15.0/po/fr.po sssd-1.15.2/po/fr.po --- sssd-1.15.0/po/fr.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/fr.po 2017-03-15 16:53:24.000000000 +0000 @@ -13,7 +13,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2016-02-24 03:43-0500\n" "Last-Translator: Jérôme Fenal \n" "Language-Team: French (http://www.transifex.com/projects/p/sssd/language/" @@ -71,29 +71,33 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "durée d'inactivité avant la déconnexion automatique d'un client" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Services SSSD à démarrer" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "Domaines SSSD à démarrer" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Délai d'attente pour les messages à envoyer à travers SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "Expression rationnelle d'analyse des noms d'utilisateur et de domaine" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "Format compatible printf d'affichage des noms complétement qualifiés" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." @@ -101,94 +105,98 @@ "Répertoire du système de fichiers où SSSD doit stocker les fichiers de " "relecture de Kerberos." -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "Domaine à ajouter aux noms sans composant de nom de domaine." -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "L'utilisation vers lequel abandonner les privilèges" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Requiert une vérification de certificat TLS" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" "Tous les espaces dans les noms de groupes ou d'utilisateurs seront remplacés " "par ce caractère" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "Délai d'attente du cache d'énumération (en secondes)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" "Délai d'attente de mise à jour en arrière-plan de l'entrée de cache (en " "secondes)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "Délai d'attente du cache négatif (en secondes)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Délai d'attente du cache négatif (en secondes)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Utilisateurs que SSSD doit explicitement ignorer" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Groupes que SSSD doit explicitement ignorer" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Les utilisateurs filtrés doivent-ils apparaître dans les groupes" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "Valeur du champ de mot de passe que le fournisseur NSS doit renvoyer" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" "Remplacer par cette valeur celle du répertoire personnel obtenu avec le " "fournisseur d'identité" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" "Substitution de la valeur homedir vide du fournisseur d'identité avec cette " "valeur" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "Écraser le shell donné par le fournisseur d'identité avec cette valeur" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" "Liste des interpréteurs de commandes utilisateurs autorisés pour se connecter" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" "Liste des interpréteurs de commandes bannis et remplacés par celui par défaut" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" @@ -196,30 +204,30 @@ "Si un interpréteur de commandes stocké dans l'annuaire central est autorisé " "mais indisponible, utiliser à défaut celui-ci" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "Shell à utiliser si le fournisseur n'en propose aucun" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "Durée de maintien en cache des enregistrements valides" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 #, fuzzy msgid "List of user attributes the NSS responder is allowed to publish" msgstr "Liste des attributs utilisateur que l'InfoPipe est autorisé à publier" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" "Délai pendant lequel les connexions utilisant le cache sont autorisées entre " "deux connexions en ligne (en jours)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "Nombre d'échecs de connexions hors-ligne autorisés" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -227,73 +235,73 @@ "Durée d'interdiction de connexion après que offline_failed_login_attempts " "est atteint (en minutes)" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" "Quels types de messages sont affichés à l'utilisateur pendant " "l'authentification" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" "Durée en secondes pendant laquelle les informations d'identité sont gardées " "en cache pour les requêtes PAM" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" "Nombre de jours précédent l'expiration du mot de passe avant lesquels un " "avertissement doit être affiché" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "Liste des uid ou noms d'utilisateurs dignes de confiance" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" "Liste des domaines accessibles y compris par les utilisateurs non dignes de " "confiance" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "Message affiché lorsque le compte a expiré" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 #, fuzzy msgid "Message printed when user account is locked." msgstr "Message affiché lorsque le compte a expiré" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "Faut-il évaluer les attributs dépendants du temps dans les règles sudo" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" "Condenser ou non les noms de systèmes et adresses du fichier known_hosts" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" @@ -301,368 +309,368 @@ "Le nombre de secondes pour garder un hôte dans le fichier known_hosts après " "que ses clés d'hôte ont été demandées" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Fichier contenant les certificats des CA" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" "Listes des UID ou nom d'utilisateurs autorisés à accéder le répondeur PAC" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" "Listes des UID ou nom d'utilisateurs autorisés à accéder le répondeur " "InfoPipe" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "Liste des attributs utilisateur que l'InfoPipe est autorisé à publier" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Fournisseur d'identité" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Fournisseur d'authentification" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Fournisseur de contrôle d'accès" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Fournisseur de changement de mot de passe" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "Fournisseur SUDO" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "Fournisseur autofs" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "Fournisseur d'identité de l'hôte" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Fournisseur SUDO" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Identifiant utilisateur minimum" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Identifiant utilisateur maximum" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Activer l'énumération de tous les utilisateurs/groupes" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Mettre en cache les crédits pour une connexion hors-ligne" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Stocker les sommes de contrôle des mots de passe" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Afficher les utilisateurs/groupes dans un format complétement qualifié" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "Ne pas inclure les membres des groupes dans les recherches de groupes." -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Durée de validité des entrées en cache (en secondes)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "Restreindre ou préférer une famille d'adresses lors des recherches DNS" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Durée de validité des entrées en cache après la dernière connexion réussie " "(en jours)" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" "Délai d'attente des réponses du DNS lors de la résolution des serveurs (en " "secondes)" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "La partie domaine de la requête de découverte de service DNS" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "Écraser la valeur du GID du fournisseur d'identité avec cette valeur" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "Considère les noms d'utilisateur comme casse dépendant" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "Fréquence de rafraîchissement en arrière plan des entrées expirées" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "Choisir de mettre à jour automatiquement l'entrée DNS du client" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "Le TTL à appliquer à l'entrée DNS du client après modification" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" "L'interface dont l'adresse IP doit être utilisée pour les mises à jour " "dynamiques du DNS" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "Fréquence de mise à jour automatique de l'entrée DNS du client" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" "Selon que le fournisseur doit aussi ou non mettre à jour explicitement " "l'enregistrement PTR" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "Selon que l'utilitaire nsupdate doit utiliser TCP par défaut" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" "Quel type d'authentification doit être utilisée pour effectuer la mise à " "jour DNS" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 #, fuzzy msgid "Override the DNS server used to perform the DNS update" msgstr "" "Quel type d'authentification doit être utilisée pour effectuer la mise à " "jour DNS" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "Contrôle l'énumération des domaines approuvés" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "Fréquence de rafraîchissement des sous-domaines" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "Listes des options qui doivent être héritées dans le sous-domaine" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "Domaine IPA" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "Adresse du serveur IPA" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "Adresse du serveur IPA de secours" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "Nom de système du client IPA" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" "Choisir de mettre à jour automatiquement l'entrée DNS du client dans FreeIPA" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "Base de recherche pour les objets HBAC" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "Délai entre les recherches de règles HBAC sur le serveur IPA" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "Délai entre les recherches de cartes SELinux sur le serveur IPA" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "Si mit à false, l’argument de l'hôte donné par PAM est ignoré" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" "L'emplacement de la carte de montage automatique utilisée par le client IPA" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" "Base de recherche pour l'objet contenant les informations de base à propos " "du domaine IPA" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" "Base de recherche pour les objets contenant les informations à propos des " "plages d'ID" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "Activer les sites DNS - découverte de service basée sur l'emplacement" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "Base de recherche des conteneurs de vues" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "Classe d'objet pour les conteneurs de vues" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "Attribut avec le nom de la vue" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "Classe d'objet surchargeant les objets" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "Attribut faisant référence à l'objet originel " -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "Classe d'objet surchargeant les utilisateurs" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "Classe d'objet surchargeant les groupes" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "Domaine Active Directory" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 #, fuzzy msgid "Enabled Active Directory domains" msgstr "Domaine Active Directory" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "Adresse du serveur Active Directory" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "Adresse du serveur Active Directory de secours" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "Nom de système du client Active Directory" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "Filtre LDAP pour déterminer les autorisations d'accès" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "Choisir d'utiliser ou non le catalogue global pour les recherches" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "Mode opératoire pour les contrôles d'accès basé sur les GPO" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" @@ -670,7 +678,7 @@ "Durée entre les recherches de fichiers de politiques de GPO dans le serveur " "AD" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" @@ -678,7 +686,7 @@ "Noms de services PAM correspondant à la configuration de la politique " "(Deny)InteractiveLogonRight de la GPO" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" @@ -686,266 +694,266 @@ "Noms de services PAM correspondant à la configuration de la politique " "(Deny)RemoteInteractiveLogonRight de la GPO" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" "Noms de services PAM correspondant à la configuration de la politique " "(Deny)NetworkLogonRight de la GPO" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" "Noms de services PAM correspondant à la configuration de la politique " "(Deny)BatchLogonRight de la GPO" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" "Noms de services PAM correspondant à la configuration de la politique " "(Deny)ServiceLogonRight de la GPO" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" "Noms de services PAM pour lesquels les accès s'appuyant sur la GPO sont " "toujours autorisés" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" "Noms de services PAM pour lesquels les accès s'appuyant sur la GPO sont " "toujours interdits" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" "Droit de connexion par défaut (ou permission/interdiction) à utiliser pour " "les noms de services sans correspondance" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "un site particulier utilisé par le client" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Adresse du serveur Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "Adresse du serveur Kerberos de secours" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Domaine Kerberos" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Délai avant expiration de l'authentification" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "Choisir de créer ou non les fichiers kdcinfo" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "Où déposer les extraits de configuration krb5" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Répertoire pour stocker les caches de crédits" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Emplacement du cache de crédits de l'utilisateur" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Emplacement du fichier keytab de validation des crédits" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Activer la validation des crédits" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" "Stocker le mot de passe, si hors-ligne, pour une authentification ultérieure " "en ligne" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "Durée de vie renouvelable du TGT" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "Durée de vie du TGT" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "Durée entre deux vérifications pour le renouvellement" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "Active FAST" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "Sélectionne le principal à utiliser avec FAST" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "Active la canonisation du principal" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "Active les principals d'entreprise" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" "Une liste de correspondances entre noms d'utilisateurs et noms de principaux " "kerberos" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" "Serveur où tourne le service de changement de mot de passe s'il n'est pas " "sur le KDC" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, l'adresse du serveur LDAP" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "ldap_backup_uri, l'URI du serveur LDAP" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "La base DN par défaut" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Le type de schéma utilisé sur le serveur LDAP, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "Le DN de connexion par défaut" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "Le type de jeton d'authentification du DN de connexion par défaut" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "Le jeton d'authentification du DN de connexion par défaut" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Durée pendant laquelle il sera tenté d'établir la connexion" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Durée pendant laquelle il sera tenté des opérations LDAP synchrones" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "Durée d'attente entre deux essais de reconnexion en mode hors-ligne" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "N'utiliser que des majuscules pour les noms de domaine" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Fichier contenant les certificats des CA" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Chemin vers le répertoire de certificats des CA" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "Fichier contenant le certificat client" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "Fichier contenant la clé du client" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "Liste des suites de chiffrement possibles" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Requiert une vérification de certificat TLS" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Spécifier le mécanisme SASL à utiliser" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Spécifier l'identité d'authorisation SASL à utiliser" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "Spécifier le domaine d'authorisation SASL à utiliser" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "Spécifie le minimum SSF pour l'autorisation sasl LDAP" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Service du fichier keytab de Kerberos" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Utiliser l'authentification Kerberos pour la connexion LDAP" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Suivre les référents LDAP" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "Durée de vie du TGT pour la connexion LDAP" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "Comment déréférencer les alias" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "Nom du service pour les recherches DNS" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "Le nombre d'enregistrements à récupérer dans une requête LDAP unique" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" "Nombre de membres qui doivent être manquants pour activer un déréférencement " "complet" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" @@ -953,397 +961,397 @@ "Est-ce que la bibliothèque LDAP doit effectuer une requête pour canoniser le " "nom d'hôte pendant une connexion SASL ?" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "attribut entryUSN" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "attribut lastUSN" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" "Combien de temps conserver la connexion au serveur LDAP avant de se " "déconnecter" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "Désactiver le contrôle des pages LDAP" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "Désactiver la récupération de plage Active Directory." -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Durée d'attente pour une requête de recherche" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "Durée d'attente pour une requête d'énumération" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Durée entre deux mises à jour d'énumération" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "Durée entre les nettoyages de cache" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "TLS est requis pour les recherches d'identifiants" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" "Utilisation de la correspondance d'ID pour les objectSID au lieu d'ID pré-" "établis" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "Base DN pour les recherches d'utilisateurs" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Scope des recherches d'utilisateurs" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Filtre pour les recherches d'utilisateurs" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Classe d'objet pour les utilisateurs" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Attribut de nom d'utilisateur" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "Attribut UID" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Attribut de GID primaire" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "Attribut GECOS" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Attribut de répertoire utilisateur" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Attribut d'interpréteur de commandes" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "attribut UUID" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "attribut objectSID" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "Groupe primaire Active Directory pour la correspondance d'ID" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Attribut d'utilisateur principal (pour Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Nom complet" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "Attribut memberOf" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Attribut de date de modification" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "Attribut shadowLastChange" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "Attribut shadowMin" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "Attribut shadowMax" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "Attribut shadowWarning" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "Attribut shadowInactive" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "Attribut shadowExpire" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "Attribut shadowFlag" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "Attribut listant les services PAM autorisés" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "Attribut listant les systèmes serveurs autorisés" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "Attribut krbLastPwdChange" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "Attribut krbPasswordExpiration" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" "Attribut indiquant que la stratégie de mot de passe du serveur est active" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "Attribut AD accountExpires" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "Attribut AD userAccountControl" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "Attribut nsAccountLock" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "Attribut NDS loginDisabled" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "Attribut NDS loginExpirationTime" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "Attribut NDS loginAllowedTimeMap" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "Attribut de clé public SSH" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" "attribut énumérant les types d'authentification autorisés pour un utilisateur" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "attribut contenant le certificat X509 de l'utilisateur" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 #, fuzzy msgid "attribute containing the email address of the user" msgstr "attribut contenant le certificat X509 de l'utilisateur" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" "Une liste des attributs supplémentaires à télécharger avec l'entrée de " "l'utilisateur" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "DN de base pour les recherches de groupes" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "Classe d'objet pour les groupes" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Nom du groupe" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Mot de passe du groupe" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "Attribut GID" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "Attribut membre du groupe" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "attribut de l'UUID du groupe" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "Attribut de date de modification pour les groupes" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "Type de groupe et autres indicateurs" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 #, fuzzy msgid "The LDAP group external member attribute" msgstr "Attribut des membres des groupes réseau" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "Niveau de récursion maximum que SSSd doit suivre" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "DN de base pour les recherches de netgroup" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "Classe d'objet pour les groupes réseau" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "Nom du groupe réseau" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "Attribut des membres des groupes réseau" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "Attribut triplet du groupe réseau" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "Attribut date de modification pour les groupes réseau" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "Nom de domaine (DN) de base pour les recherches de service" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "Classe objet pour les services" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "Attribut de nom de service" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "Attribut de port du service" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "Attribut de service du protocole" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "Limite inférieure pour la correspondance d'ID" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "Limite supérieure pour la correspondance d'ID" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "Nombre d'ID par tranche pour la correspondance d'ID" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" "Utilisation d'un algorithme compatible autorid pour la correspondance d'ID" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "Nom du domaine par défaut pour la correspondance d'ID" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "SID du domaine par défaut pour la correspondance d'ID" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "Utiliser LDAP_MATCHING_RULE_IN_CHAIN pour les recherches de groupes" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" "Utiliser LDAP_MATCHING_RULE_IN_CHAIN pour les recherches de groupes " "d'initialisation" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "Choisir d'utiliser ou non les groupes de jetons" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" "Définir la limite inférieure d'identifiants autorisés pour l'annuaire LDAP" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" "Définir la limite supérieure d'identifiants autorisés pour l'annuaire LDAP" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "DN pour les requêtes sur ppolicy" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Stratégie d'évaluation de l'expiration du mot de passe" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "Quels attributs utiliser pour déterminer si un compte a expiré" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "Quelles règles utiliser pour évaluer le contrôle d'accès" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "URI d'un serveur LDAP où les changements de mot de passe sont acceptés" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" "URI d'un serveur LDAP de secours où sont autorisées les modifications de mot " "de passe" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "Nom du service DNS pour le serveur de changement de mot de passe LDAP" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" @@ -1351,23 +1359,23 @@ "Choix de mise à jour de l'attribut ldap_user_shadow_last_change après un " "changement de mot de passe" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "Nom de domaine (DN) de base pour les recherches de règles sudo" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "Périodicité de rafraichissement total" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "Périodicité de rafraichissement intelligent" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "Filter ou non sur les noms de systèmes, adresses IP et réseaux" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" @@ -1375,213 +1383,213 @@ "Noms de systèmes et/ou noms pleinement qualifiés de cette machine pour " "filtrer les règles sudo" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" "Adresses ou réseaux IPv4 ou IPv6 de cette machine pour filtrer les règles " "sudo" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" "Inclure ou non les règles qui contiennent un netgroup dans l'attribut host" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" "Inclure ou non les règles qui contiennent une expression rationnelle dans " "l'attribut host" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "Classe objet pour les règles sudo" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "Règle de nom sudo" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "Attribut de commande de règle sudo" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "Attribut hôte de la règle sudo" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "Attribut utilisateur de la règle sudo" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "Attribut option de la règle sudo" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "Attribut de règle sudo runas" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "Attribut runasuser de la règle sudo" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "Attribut runasgroup de la règle sudo" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "Attribut notbefore de la règle sudo" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "Attribut notafter de règle sudo" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "Attribut d'ordre de règle sudo" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "Classe objet pour la carte de montage automatique" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "Nom de l'attribut de carte de montage automatique" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "Classe objet pour l'entrée de référence de montage automatique" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "Attribut de clé d'entrée pour la carte de montage automatique" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "Attribut de valeur pour la carte de montage automatique" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "Base DN pour les requêtes de carte de montage automatique" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Liste, séparée par des virgules, d'utilisateurs autorisés" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Liste, séparée par des virgules, d'utilisateurs interdits" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Interpréteur de commande par défaut : /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Base pour les répertoires utilisateur" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "Nom de la bibliothèque NSS à utiliser" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "Rechercher le nom canonique du groupe dans le cache si possible" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "Pile PAM à utiliser" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Devenir un démon (par défaut)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Fonctionner en interactif (non démon)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Définir un fichier de configuration différent de celui par défaut" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "Afficher le numéro de version et quitte" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Niveau de débogage" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Ajouter l'horodatage au débogage" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "Afficher l'horodatage en microsecondes" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Un descripteur de fichier ouvert pour les journaux de débogage" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "Envoyer la sortie de débogage directement vers l'erreur standard." -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "L'utilisateur à utiliser pour la création du ccache FAST" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "Le groupe à utiliser pour la création du ccache FAST" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Domaine Kerberos" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 #, fuzzy msgid "Requested lifetime of the ticket" msgstr "Durée de vie renouvelable du TGT" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 #, fuzzy msgid "Requested renewable lifetime of the ticket" msgstr "Durée de vie renouvelable du TGT" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 #, fuzzy msgid "Specifies the server principal to use for FAST" msgstr "Sélectionne le principal à utiliser avec FAST" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Domaine du fournisseur d'informations (obligatoire)" @@ -1611,53 +1619,53 @@ msgid "Unexpected error while looking for an error description" msgstr "Erreur inattendue lors de la recherche de la description de l'erreur" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "Accès refusé." -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Message du serveur : " -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Les mots de passe ne correspondent pas" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" "La réinitialisation du mot de passe par root n'est pas prise en charge." -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "Authentifié avec les crédits mis en cache" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", votre mot de passe en cache expirera à :" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" "Votre mot de passe a expiré. Il vous reste %1$d connexion(s) autorisée(s)." -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "Votre mot de passe expirera dans %1$d %2$s." -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "L'authentification est refusée jusque :" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "" "Le système est hors-ligne, les modifications du mot de passe sont impossibles" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" @@ -1665,40 +1673,40 @@ "Après avoir modifié le mot de passe OTP, vous devez vous déconnecter et vous " "reconnecter afin d'acquérir un ticket" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Échec du changement de mot de passe." -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Nouveau mot de passe : " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Retaper le nouveau mot de passe : " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "Premier facteur :" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 #, fuzzy msgid "Second Factor (optional): " msgstr "Second facteur :" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "Second facteur :" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Mot de passe : " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Mot de passe actuel : " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "Mot de passe expiré. Changez votre mot de passe maintenant." @@ -1707,7 +1715,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "Le niveau de débogage utilisé avec" @@ -1720,7 +1728,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "Erreur lors du paramétrage de la locale\n" @@ -2195,98 +2203,98 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Erreur de transaction. Impossible de modifier l'utlisateur.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "Aucun object trouvé dans le cache pour la recherche spécifiée\n" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "Impossible d'invalider %1$s\n" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "Impossible d'invalider %1$s %2$s\n" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 #, fuzzy msgid "Invalidate all cached entries" msgstr "Invalidation de tous les services" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "Invalider un utilisateur spécifique" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "Invalider tous les utilisateurs" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "Invalider un groupe particulier" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "Invalider tous les groupes" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "Invalider un groupe réseau particulier" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "Invalider tous les groupes réseau" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "Invalidation d'un service particulier" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "Invalidation de tous les services" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "Invalidation d'une carte autofs particulière" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "Invalidation de toutes les cartes autofs" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "Invalider un hôte SSH particulier" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "Invalider tous les hôtes SSH" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 #, fuzzy msgid "Invalidate particular sudo rule" msgstr "Invalider un utilisateur spécifique" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 #, fuzzy msgid "Invalidate all cached sudo rules" msgstr "Invalider toutes les entrées en cache hormis les règles sudo" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "N'invalider des entrées que d'un domaine spécifique" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "Merci de sélectionner au moins un objet à invalider\n" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " @@ -2296,7 +2304,7 @@ "(domaine approuvé), utiliser le nom pleinement qualifié au lieu du paramètre " "--domain/-d.\n" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "Impossible d'ouvrir aucun des domaines disponibles\n" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/hu.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/hu.gmo differ diff -Nru sssd-1.15.0/po/hu.po sssd-1.15.2/po/hu.po --- sssd-1.15.0/po/hu.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/hu.po 2017-03-15 16:53:24.000000000 +0000 @@ -10,7 +10,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:45-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Hungarian (http://www.transifex.com/projects/p/sssd/language/" @@ -63,1405 +63,1413 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Elindítandó SSSD szolgáltatások" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "TLS tanusítvány ellenőrzése" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Bejegyzés-gyorsítótár érvényessége (másodperc)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "SSSD által figyelmen kívül hagyott felhasználók" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "SSSD által figyelmen kívül hagyott csoportok" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "Hány sikertelen bejelentkezés engedélyezett offline állapotban" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "A CA tanusítványokat tartalmazó fájl" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Azonosító-kiszolgáló" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 msgid "SELinux provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Legkisebb felhasználói azonosító" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Legnagyobb felhasználói azonosító" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Azonosítók gyorsítótárazása offline használathoz" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Jelszó hash-ek tárolása" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Bejegyzés-gyorsítótár érvényessége (másodperc)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA-tartomány" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "IPA kiszolgáló címe" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "IPA kliens hosztneve" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Kerberos-kiszolgáló címe" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Kerberos-tartomány" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Időtúllépés azonosításkor" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, az LDAP szerver URI-ja" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "Alapértelmezett LDAP alap-DN-je" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Az LDAP szerveren használt séma-típus, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "Az alapértelmezett bind DN" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "A kapcsolódási próbálkozás időtartama" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "A CA tanusítványokat tartalmazó fájl" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "TLS tanusítvány ellenőrzése" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "TLS megkövetelése ID keresésekor" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "GECOS attribútum" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Shell attribútum" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Teljes név" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "memberOf attribútum" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Csoport neve" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Csoport jelszava" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Alapértelmezett shell, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Időbélyegek a hibakeresési kimenetben" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "Mikroszekundum pontosságú időbélyegek" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Kerberos-tartomány" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1489,88 +1497,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Szerver üzenete:" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "A jelszavak nem egyeznek" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "A jelszó root általi visszaállítása nem támogatott." -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "Azonosítva gyorsítótárazott adatbázisból" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", a gyorsítótárazott jelszó lejár ekkor: " -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "A bejelentkezés tiltott eddig:" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "A rendszer nem érhető el, a jelszó megváltoztatása nem lehetséges" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "A jelszó megváltoztatása nem sikerült." -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Új jelszó:" -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Jelszó mégegyszer: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Jelszó: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Jelenlegi jelszó:" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "A jelszava lejárt, változtass meg most." @@ -1579,7 +1587,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "" @@ -1592,7 +1600,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "" @@ -2024,102 +2032,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Tranzakcióhiba történt, a felhasználó nem módosítható.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/id.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/id.gmo differ diff -Nru sssd-1.15.0/po/id.po sssd-1.15.2/po/id.po --- sssd-1.15.0/po/id.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/id.po 2017-03-15 16:53:24.000000000 +0000 @@ -7,7 +7,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:46-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Indonesian (http://www.transifex.com/projects/p/sssd/language/" @@ -60,1404 +60,1412 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Layanan SSSD akan dijalankan" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "Domain SSSD akan dijalankan" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Membutuhkan verifikasi sertifikat TLS" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 msgid "Files negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Pengguna yang diabaikan secara eksplisit oleh SSSD" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Grup yang diabaikan secara eksplisit oleh SSSD" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Haruskah pengguna yang disaring muncul dalam grup" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "Nilai kolom kata sandi yang harus dikembalikan oleh penyedia NSS" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 msgid "Path to storage of trusted CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Penyedia identitas" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Penyedia otentikasi" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Penyedia kontrol akses" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Penyedia pengubah kata sandi" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Penyedia identitas" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "ID pengguna minimum" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "ID pengguna maksimum" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "Domain IPA" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "Alamat server IPA" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "Nama host klien IPA" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Alamat server Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Realm Kerberos" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, URI server LDAP" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Jenis Skema yang digunakan pada server LDAP, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Lamanya waktu untuk mencoba koneksi" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Lamanya waktu untuk mencoba operasi LDAP yang sinkron" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "Lamanya waktu antara upaya untuk menyambung kembali saat luring" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Membutuhkan verifikasi sertifikat TLS" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Tentukan mekanisme sasl yang digunakan" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Tentukan id otorisasi sasl yang digunakan" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Keytab layanan Kerberos" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Gunakan otentikasi Kerberos untuk koneksi LDAP" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Lingkup pencarian pengguna" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Filter pencarian pengguna" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Objectclass untuk pengguna" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Atribut Nama pengguna" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "Atribut UID" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Atribut GID Primer" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "Atribut GECOS" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Atribut direktori Home" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Atribut Shell" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Atribut utama pengguna (untuk Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Nama Lengkap" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "Atribut memberOf" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Atribut waktu modifikasi" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Daftar pengguna yang diijinkan dalam format yang dipisahkan koma" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Daftar pengguna yang tidak diijinkan dalam format yang dipisahkan koma" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Shell default, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Realm Kerberos" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1485,88 +1493,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Pesan server:" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Kata sandi tidak cocok" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr "" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "Sistem sedang luring, perubahan kata sandi tidak dimungkinkan" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Perubahan kata sandi gagal." -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Kata Sandi Baru: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Masukkan lagi kata sandi baru:" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Kata sandi:" -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Kata sandi saat ini:" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "" @@ -1575,7 +1583,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "" @@ -1588,7 +1596,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "" @@ -2032,102 +2040,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Kesalahan transaksi. Pengguna tidak dapat dimodifikasi.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/it.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/it.gmo differ diff -Nru sssd-1.15.0/po/it.po sssd-1.15.2/po/it.po --- sssd-1.15.0/po/it.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/it.po 2017-03-15 16:53:24.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:46-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Italian (http://www.transifex.com/projects/p/sssd/language/" @@ -62,139 +62,147 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Avvio dei servizi SSSD" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "Avvio dei domini SSSD" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Timeout dei messaggi inviati sul SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "Regex per il parsing di nome utente e dominio" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "Formato compatibile con printf per la visualizzazione di nomi completi" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Richiedere la verifica del certificato TLS" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "Durata timeout per la cache enumeration (secondi)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "Durata timeout aggiornamento cache in background (secondi)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "Durata timeout negative cache (secondi)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Durata timeout negative cache (secondi)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Utenti che SSSD dovrebbe ignorare esplicitamente" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Gruppi che SSSD dovrebbe ignorare esplicitamente" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Specifica se mostrare gli utenti filtrati nei gruppi" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" "Il valore del campo password che deve essere ritornato dal provider NSS" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "Per quanto tempo accettare login in cache tra login online (giorni)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "Numero di tentativi di login falliti quando offline" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -202,1276 +210,1276 @@ "Per quanto tempo (minuti) negare i tentativi di login dopo che " "offline_failed_login_attemps è stato raggiunto" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "File contenente i certificati CA" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Provider di identità" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Provider di autenticazione" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Provider di access control" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Provider di cambio password" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Provider di identità" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "ID utente minimo" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "ID utente massimo" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Consentire l'enumerazione di tutti gli utenti/gruppi" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Salvare in cache le credenziali per login offline" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Salvare gli hash delle password" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Mostrare utenti/gruppi in formato fully-qualified" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Durata timeout elementi in cache (secondi)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" "Restringere o preferire una specifica famiglia di indirizzi per l'esecuzione " "di lookup DNS" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Per quanto tempo tenere in cache gli elementi dopo un login che ha avuto " "successo (giorni)" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "Il tempo di attesa per le richieste DNS (secondi)" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" "L'interfaccia il cui indirizzo IP dovrebbe essere usato per aggiornamenti " "DNS dinamici." -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "Dominio IPA" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "Indirizzo del server IPA" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "Hostname del client IPA" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "Filtro LDAP per determinare i privilegi di accesso" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Indirizzo del server Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Realm Kerberos" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Timeout di autenticazione" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Directory in cui salvare le credenziali" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Percorso della cache delle credenziali utente" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Percorso del keytab per la validazione delle credenziali" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Abilita la validazione delle credenziali" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "Intervallo di tempo tra due controlli di rinnovo" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "Abilita FAST" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" "Server dove viene eseguito il servizio di cambio password, se non nel KDC" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, l'indirizzo del server LDAP" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "Il base DN predefinito" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Lo Schema Type utilizzato dal server LDAP, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "Il bind DN predefinito" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "Il tipo di token di autenticazione del bind DN predefinito" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "Il token di autenticazione del bind DN predefinito" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Durata del tentativo di connessione" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Durata del tentativo di esecuzione di operazioni LDAP sincrone" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "Durata tra tentativi di riconnessione quando offline" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "Usare solo maiuscole per i nomi dei realm" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "File contenente i certificati CA" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Percorso della directory dei cerficati della CA" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "File contenente il certificato client" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "File contenente la chiave client" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "Lista delle possibili cipher suite" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Richiedere la verifica del certificato TLS" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Specificare il meccanismo sasl da usare" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Specificare l'id di autorizzazione sasl da usare" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Keytab del servizio Kerberos" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Usare autorizzazione Kerberos per la connessione LDAP" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Seguire i referral LDAP" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "Metodo di deferenziazione degli alias" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Durata attesa per le richieste di ricerca" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Durata tra gli aggiornamenti alle enumeration" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "Intervallo di tempo per la pulizia cache" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "Richiedere TLS per gli ID lookup" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "Base DN per i lookup utente" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Ambito di applicazione dei lookup utente" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Filtro per i lookup utente" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Objectclass per gli utenti" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Attributo del nome utente" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "Attributo UID" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Attributo del GID primario" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "Attributo GECOS" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Attributo della home directory" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Attributo della shell" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Attributo user principal (per Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Nome completo" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "Attributo memberOf" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Attributo data di modifica" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Politica per controllare la scadenza della password" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Lista separata da virgola degli utenti abilitati" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Lista separata da virgola degli utenti non abilitati" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Shell predefinita, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Base delle home directory" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "Il nome della libreria NSS da usare" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "Stack PAM da usare" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Esegui come demone (default)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Esegui interattivamente (non come demone)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Specificare un file di configurazione specifico" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Livello debug" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Includi timestamp di debug" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Un descrittore di file aperto per l'output di debug" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Realm Kerberos" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Dominio del provider di informazioni (obbligatorio)" @@ -1499,88 +1507,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Messaggio del server:" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Le password non coincidono" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "Autenticato con le credenziali nella cache" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", la password in cache scadrà il: " -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "L'autenticazione verrà negata fino al: " -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "Il sistema è offline, non è possibile richiedere un cambio password" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Cambio password fallito." -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Nuova password: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Conferma nuova password: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Password: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Password corrente: " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "Password scaduta. Cambiare la password ora." @@ -1589,7 +1597,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "Il livello di debug da utilizzare" @@ -1602,7 +1610,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "Errore di impostazione del locale\n" @@ -2051,102 +2059,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Errore nella transazione. Impossibile modificare l'utente.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/ja.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/ja.gmo differ diff -Nru sssd-1.15.0/po/ja.po sssd-1.15.2/po/ja.po --- sssd-1.15.0/po/ja.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/ja.po 2017-03-15 16:53:24.000000000 +0000 @@ -9,7 +9,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2016-08-18 08:06-0400\n" "Last-Translator: Noriko Mizumoto \n" "Language-Team: Japanese (http://www.transifex.com/projects/p/sssd/language/" @@ -64,29 +64,33 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "クライアントの自動切断までのアイドル時間" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "開始する SSSD サービス" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "開始する SSSD ドメイン" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "SBUS 経由のメッセージ送信のタイムアウト" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "ユーザー名とドメインを構文解析する正規表現" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "完全修飾名を表示するための printf 互換の形式" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." @@ -94,86 +98,90 @@ "SSSD が Kerberos リプレイキャッシュファイルを保存するファイルシステムのディレ" "クトリです。" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "domain 要素なしで追加するドメインの名前。" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "TLS 証明書の検証を要求する" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "列挙キャッシュのタイムアウト(秒)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "エントリーキャッシュのバックグラウンド更新のタイムアウト時間(秒)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "ネガティブキャッシュのタイムアウト(秒)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "ネガティブキャッシュのタイムアウト(秒)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "SSSD が明示的に無視するユーザー" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "SSSD が明示的に無視するグループ" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "フィルターされたユーザーをグループに表示する" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "NSS プロバイダーが返すパスワード項目の値" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "識別プロバイダーからのホームディレクトリーの値をこの値で上書きする" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" "アイデンティティプロバイダーからの空のホームディレクトリーをこの値で置き換え" "ます" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "アイデンティティプロバイダーからのシェル値をこの値で上書きします" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "ユーザーがログインを許可されるシェルの一覧" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "拒否されてフォールバックシェルで置き換えられるシェルの一覧" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" @@ -181,693 +189,693 @@ "中央ディレクトリーに保存されたシェルが許可されるが、利用できない場合、この" "フォールバックを使用する" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "プロバイダーが一覧に持っていないとき使用するシェル" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "メモリー内のキャッシュレコードが有効な期間" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "オンラインログイン中にキャッシュによるログインが許容される期間(日数)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "オフラインのときに許容されるログイン試行失敗回数" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "offline_failed_login_attempts に達した後にログインを拒否する時間(分)" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "認証中にユーザーに表示されるメッセージの種類" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "PAM 要求に対してキャッシュされた認証情報を保持する秒数" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "警告が表示されるパスワード失効前の日数" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "sudo ルールにおいて時間による属性を評価するかどうか" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "known_hosts ファイルにおいてホスト名とアドレスをハッシュ化するかどうか" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "ホスト鍵が要求された後 known_hosts ファイルにホストを保持する秒数" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "CA 証明書を含むファイル" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "PAC レスポンダーへのアクセスが許可された UID またはユーザー名の一覧" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "アイデンティティプロバイダー" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "認証プロバイダー" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "アクセス制御プロバイダー" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "パスワード変更プロバイダー" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "SUDO プロバイダー" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "Autofs プロバイダー" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "ホスト識別プロバイダー" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "SUDO プロバイダー" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "最小ユーザー ID" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "最大ユーザー ID" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "すべてのユーザー・グループの列挙を有効にする" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "オフラインログインのためにクレディンシャルをキャッシュする" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "パスワードハッシュを保存する" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "ユーザー・グループを完全修飾形式で表示する" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "グループ検索にグループメンバーを含めない" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "エントリーキャッシュのタイムアウト長(秒)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "DNS 検索を実行するときに特定のアドレスファミリーを制限または優先します" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "最終ログイン成功時からキャッシュエントリーを保持する日数" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "サーバーを名前解決するときに DNS から応答を待つ時間(秒)" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "サービス検索 DNS クエリーのドメイン部分" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "識別プロバイダーからの GID 値をこの値で上書きする" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "ユーザー名が大文字小文字を区別するよう取り扱う" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "期限切れのエントリーがバックグラウンドで更新される頻度" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "自動的にクライアントの DNS エントリーを更新するかどうか" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "クライアントの DNS 項目を更新後、適用する TTL" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "動的 DNS 更新のために使用される IP のインターフェース" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "どのくらい定期的にクライアントの DNS エントリーを更新するか" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" "プロバイダーが同じように PTR レコードを明示的に更新する必要があるかどうか" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "nsupdate ユーティリティが標準で TCP を使用するかどうか" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "DNS 更新を実行するために使用すべき認証の種類" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 #, fuzzy msgid "Override the DNS server used to perform the DNS update" msgstr "DNS 更新を実行するために使用すべき認証の種類" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA ドメイン" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "IPA サーバーのアドレス" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "バックアップ IPA サーバーのアドレス" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "IPA クライアントのホスト名" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "FreeIPA にあるクライアントの DNS エントリーを自動的に更新するかどうか" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "HBAC 関連オブジェクトの検索ベース" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "IPA サーバーに対する HBAC ルールを検索している間の合計時間" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "IPA サーバーに対する SELinux マップの検索の間の秒単位の合計時間" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "もし偽に設定されていると、 PAM により渡されたホスト引数は無視されます" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "この IPA クライアントが使用している automounter の場所" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "IPA ドメインに関する情報を含むオブジェクトに対する検索ベース" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "ID 範囲に関する情報を含むオブジェクトに対する検索ベース" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "DNS サイトの有効化 - 位置にサービス探索" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "Active Directory ドメイン" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 #, fuzzy msgid "Enabled Active Directory domains" msgstr "Active Directory ドメイン" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "Active Directory サーバーアドレス" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "Active Directory バックアップサーバーのアドレス" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "Active Directory クライアントホスト名" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "アクセス権限を決めるための LDAP フィルター" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Kerberos サーバーのアドレス" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "Kerberos バックアップサーバーのアドレス" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Kerberos レルム" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "認証のタイムアウト" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "kdcinfo ファイルを作成するかどうか" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "クレディンシャルのキャッシュを保存するディレクトリー" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "ユーザーのクレディンシャルキャッシュの位置" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "クレディンシャルを検証するキーテーブルの場所" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "クレディンシャルの検証を有効にする" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "後からオンライン認証するためにオフラインの場合にパスワードを保存します" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "更新可能な TGT の有効期間" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "TGT の有効期間" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "更新を確認する間隔" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "FAST を有効にする" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "FAST に使用するプリンシパルを選択する" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "プリンシパル正規化を有効にする" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "エンタープライズ・プリンシパルの有効化" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "KDC になければ、パスワード変更サービスが実行されているサーバー" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, LDAP サーバーの URI" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "ldap_backup_uri, LDAP サーバーの URI" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "デフォルトのベース DN" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "LDAP サーバーにおいて使用中のスキーマ形式, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "デフォルトのバインド DN" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "デフォルトのバインド DN の認証トークンの種類" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "デフォルトのバインド DN の認証トークン" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "接続を試行する時間" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "LDAP 同期操作を試行する時間" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "オフラインの間に再接続を試行する時間" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "レルム名に対して大文字のみを使用する" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "CA 証明書を含むファイル" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "CA 証明書のディレクトリーのパス" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "クライアント証明書を含むファイル" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "クライアントの鍵を含むファイル" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "利用可能な暗号の一覧" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "TLS 証明書の検証を要求する" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "使用する SASL メカニズムを指定する" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "使用する SASL 認可 ID を指定する" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "使用する SASL 認可レルムを指定する" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "LDAP SASL 認可の最小 SSF を指定する" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Kerberos サービスのキーテーブル" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "LDAP 接続に対して Kerberos 認証を使用する" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "LDAP リフェラルにしたがう" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "LDAP 接続の TGT の有効期間" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "エイリアスを参照解決する方法" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "DNS サービス検索のサービス名" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "単一の LDAP 問い合わせにおいて取得するレコード数" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "完全な参照解決を引き起こすために欠けている必要があるメンバーの数" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" @@ -875,405 +883,405 @@ "LDAP ライブラリーが SASL バインド中にホスト名を正規化するために逆引きを実行す" "るかどうか" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "entryUSN 属性" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "lastUSN 属性" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "LDAP サーバーを切断する前に接続を保持する時間" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "LDAP ページング制御を無効化する" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "Active Directory 範囲の取得の無効化" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "検索要求を待つ時間" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "列挙の要求を待つ時間" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "列挙の更新間隔" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "キャッシュをクリーンアップする間隔" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "ID 検索に TLS を要求する" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "事前設定済み ID の代わりに objectSID の ID マッピングを使用します" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "ユーザー検索のベース DN" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "ユーザー検索の範囲" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "ユーザー検索のフィルター" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "ユーザーのオブジェクトクラス" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "ユーザー名の属性" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "UID の属性" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "プライマリー GID の属性" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "GECOS の属性" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "ホームディレクトリの属性" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "シェルの属性" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "objectSID 属性" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "ID マッピングの Active Directory プライマリーグループ属性" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "ユーザープリンシパルの属性(Kerberos 用)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "氏名" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "memberOf 属性" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "変更日時の属性" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "shadowLastChange 属性" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "shadowMin 属性" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "shadowMax 属性" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "shadowWarning 属性" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "shadowInactive 属性" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "shadowExpire 属性" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "shadowFlag 属性" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "認可された PAM サービスを一覧化する属性" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "認可されたサーバーホストを一覧化する属性" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "krbLastPwdChange 属性" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "krbPasswordExpiration 属性" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "サーバー側パスワードポリシーが有効であることを意味する属性" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "AD の accountExpires 属性" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "AD の userAccountControl 属性" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "nsAccountLock 属性" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "NDS の loginDisabled 属性" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "NDS の loginExpirationTime 属性" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "NDS の loginAllowedTimeMap 属性" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "SSH 公開鍵の属性" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "グループ検索のベース DN" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "グループのオブジェクトクラス" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "グループ名" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "グループのパスワード" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "GID 属性" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "グループメンバー属性" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "グループの変更日時の属性" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 #, fuzzy msgid "The LDAP group external member attribute" msgstr "ネットグループメンバーの属性" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "SSSd がしたがう最大入れ子レベル" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "ネットグループ検索のベース DN" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "ネットグループのオブジェクトクラス" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "ネットグループ名" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "ネットグループメンバーの属性" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "ネットグループの三つ組の属性" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "ネットグループの変更日時の属性" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "サービス検索のベース DN" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "サービスのオブジェクトクラス" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "サービス名の属性" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "サービスポートの属性" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "サービスプロトコルの属性" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "ID マッピングの下限" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "ID マッピングの上限" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "ID マッピングするとき、各スライスに対する ID の数" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "ID マッピングに対する autorid 互換アルゴリズムを使用します" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "ID マッピングに対するデフォルトドメインの名前" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "ID マッピングに対するデフォルトドメインの SID" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "グループ検索のために LDAP_MATCHING_RULE_IN_CHAIN を使用します" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "初期グループの検索のために LDAP_MATCHING_RULE_IN_CHAIN を使用します" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "LDAP サーバーから許可される ID の下限の設定" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "LDAP サーバーから許可される ID の上限の設定" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "パスワード失効の評価のポリシー" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "どの属性がアカウントが失効しているかを評価するために使用されるか" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "どのルールがアクセス制御を評価するために使用されるか" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "パスワードの変更が許可される LDAP サーバーの URI" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "パスワードの変更が許可されるバックアップ LDAP サーバーの URI" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "LDAP パスワードの変更サーバーの DNS サービス名" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "パスワード変更後 ldap_user_shadow_last_change 属性を更新するかどうか" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "sudo ルール検索のベース DN" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "自動的な完全更新間隔" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "自動的なスマート更新間隔" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" "ホスト名、IP アドレスおよびネットワークによるフィルタールールを使用するかどう" "か" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" @@ -1281,210 +1289,210 @@ "sudo ルールをフィルターするこのマシンのホスト名および/または完全修飾ドメイン" "名" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" "sudo ルールをフィルターするこのマシンの IPv4 または IPv6 アドレスまたはネット" "ワーク" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "ホスト属性にネットワークグループを含むルールを含めるかどうか" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "ホスト属性に正規表現を含むルールを含めるかどうか" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "sudo ルールのオブジェクトクラス" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "sudo ルール名" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "sudo ルールのコマンドの属性" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "sudo ルールのホストの属性" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "sudo ルールのユーザーの属性" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "sudo ルールのオプションの属性" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "sudo ルールの runasuser の属性" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "sudo ルールの runasgroup の属性" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "sudo ルールの notbefore の属性" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "sudo ルールの notafter の属性" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "sudo ルールの order の属性" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "automounter マップのオブジェクトクラス" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "オートマウントのマップ名の属性" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "automounter マップエントリーのオブジェクトクラス" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "automounter マップエントリーのキー属性" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "automounter マップエントリーの値属性" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "automonter のマップ検索のベース DN" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "許可ユーザーのカンマ区切り一覧" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "禁止ユーザーのカンマ区切り一覧" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "デフォルトのシェル, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "ホームディレクトリーのベース" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "使用する NSS ライブラリーの名前" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "可能ならばキャッシュから正規化されたグループ名を検索するかどうか" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "使用する PAM スタック" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "デーモンとして実行(デフォルト)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "対話的に実行(デーモンではない)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "非標準の設定ファイルの指定" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "バージョン番号を表示して終了する" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "デバッグレベル" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "デバッグのタイムスタンプを追加する" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "タイムスタンプをミリ秒単位で表示する" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "デバッグログのオープンファイルディスクリプター" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Kerberos レルム" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 #, fuzzy msgid "Requested lifetime of the ticket" msgstr "更新可能な TGT の有効期間" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 #, fuzzy msgid "Requested renewable lifetime of the ticket" msgstr "更新可能な TGT の有効期間" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 #, fuzzy msgid "Specifies the server principal to use for FAST" msgstr "FAST に使用するプリンシパルを選択する" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "情報プロバイダーのドメイン (必須)" @@ -1512,88 +1520,88 @@ msgid "Unexpected error while looking for an error description" msgstr "エラーの説明を検索中に予期しないエラーが発生しました" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "サーバーのメッセージ: " -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "パスワードが一致しません" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "root によるパスワードのリセットはサポートされません。" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "キャッシュされているクレディンシャルを用いて認証されました" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr "、キャッシュされたパスワードが失効します: " -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "パスワードの期限が切れています。あと %1$d 回ログインできます。" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "あなたのパスワードは %1$d %2$s に期限切れになります。" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "次まで認証が拒否されます: " -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "システムがオフラインです、パスワード変更ができません" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "パスワードの変更に失敗しました。 " -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "新しいパスワード: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "新しいパスワードの再入力: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "パスワード: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "現在のパスワード: " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "パスワードの期限が切れました。いますぐパスワードを変更してください。" @@ -1602,7 +1610,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "実行するデバッグレベル" @@ -1615,7 +1623,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "ロケールの設定中にエラーが発生しました\n" @@ -2073,98 +2081,98 @@ msgid "Transaction error. Could not modify user.\n" msgstr "トランザクションエラー。ユーザーを変更できませんでした。\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "指定された検索に一致するキャッシュオブジェクトがありません\n" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 #, fuzzy msgid "Invalidate all cached entries" msgstr "すべてのサービスの無効化" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "特定のユーザーを無効にする" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "すべてのユーザーを無効にする" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "特定のグループを無効にする" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "すべてのグループを無効にする" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "特定のネットワークグループを無効にする" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "すべてのネットワークグループを無効にする" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "特定のサービスの無効化" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "すべてのサービスの無効化" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "特定の autofs マップの無効化" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "すべての autofs マップの無効化" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 #, fuzzy msgid "Invalidate particular sudo rule" msgstr "特定のユーザーを無効にする" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 #, fuzzy msgid "Invalidate all cached sudo rules" msgstr "すべてのユーザーを無効にする" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "特定のドメインのみからエントリーを無効にする" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "無効化するオブジェクトを少なくとも一つ選択してください\n" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " @@ -2173,7 +2181,7 @@ "ドメイン %1$s を開けませんでした。ドメインがサブドメイン (信頼済みドメイン) " "であれば、--domain/-d パラメーターの代わりに完全修飾名を使用してください。\n" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "利用可能なドメインを開けませんでした\n" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/nb.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/nb.gmo differ diff -Nru sssd-1.15.0/po/nb.po sssd-1.15.2/po/nb.po --- sssd-1.15.0/po/nb.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/nb.po 2017-03-15 16:53:24.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:46-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Norwegian Bokmål (http://www.transifex.com/projects/p/sssd/" @@ -61,1403 +61,1411 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "SSSD-tjenester som skal startes" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "SSSD-domener som skal startes" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Tidsavbrudd for meldinger som sendes over SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 msgid "Tune certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 msgid "Files negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 msgid "Path to storage of trusted CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Identitetstilbyder" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Autentiseringstilbyder" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Tilgangskontrolltilbyder" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Passordbyttetilbyder" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Identitetstilbyder" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Minste bruker-ID" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Største bruker-ID" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA-domene" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "IPA-tjeneradresse" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "Vertsnavn for IPA-klient" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Tjeneradresse for Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Kerberos-område" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Tidsavbrudd for autentisering" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Kerberos-område" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1485,88 +1493,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr "" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "" -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "" -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "" -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "" @@ -1575,7 +1583,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "" @@ -1588,7 +1596,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "" @@ -2018,102 +2026,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/nl.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/nl.gmo differ diff -Nru sssd-1.15.0/po/nl.po sssd-1.15.2/po/nl.po --- sssd-1.15.0/po/nl.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/nl.po 2017-03-15 16:53:24.000000000 +0000 @@ -13,7 +13,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:47-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Dutch (http://www.transifex.com/projects/p/sssd/language/" @@ -70,29 +70,33 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "Duur van inactiviteit voor het automatisch loskoppelen van een cliënt" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "SSSD Services die gestart moeten worden" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "SSSD Domeinen die gestart moeten worden" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Timeout voor berichten die over SBUS worden verzonden" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "Reguliere expressie om gebruikersnamen en domeinen te ontleden" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "Printf-compatibel formaat voor het tonen van namen in volledige vorm" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." @@ -100,88 +104,92 @@ "Map in het bestandssysteem waarin SSSD Kerberos replay cache bestanden moet " "opslaan." -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "Domein toe te voegen aan namen zonder een domein component." -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Vereis verificatie van het TLS-certificaat" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "Enumeratie cache timeout duur (in seconden)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "Entry cache achtergrond update timeout duur (in seconden)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "Negatieve cache timeout duur (in seconden)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Negatieve cache timeout duur (in seconden)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Gebruikers die SSSD expliciet dient te negeren" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Groepen die SSSD expliciet dient te negeren" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Dienen gefilterde gebruikers zichtbaar te zijn in groepen" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "De waarde van het wachtwoordveld die de NSS aanbieder terug moet geven" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" "Overschrijf homedir waarde van de identiteit aanbieder met deze waarde " -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" "Vervang lege persoonlijke map waarde van de eindentiteitsaanbieder met deze " "waarde" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "Overschrijf shell waarde van identiteit provider met deze waarde" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "De lijst van shells waarmee ingelogd kan worden" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" "De lijst van shells die verboden zijn, en vervangen door de fallback shell" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" @@ -189,27 +197,27 @@ "Als een shell opgeslagen in de centrale map toegestaan is, maar niet " "beschikbaar, gebruik dan deze" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "Te gebruiken shell als de aanbieder er geen aangeeft " -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "Hoe lang zullen cache records in het geheugen geldig blijven" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "Hoe lang zijn cached logins toegestaan tussen online logins (in dagen)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "Hoe veel mislukte inlogpogingen zijn toegestaan in offline-modus" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -217,70 +225,70 @@ "Hoe lang (in minuten) logins weigeren nadat offline_failed_login_attempts is " "bereikt" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" "Welke boodschappen worden aan de gebruiker getoond tijdens authenticatie" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" "Hoeveel seconden moet de identiteit informatie in cache opgeslagen worden " "voor PAN aanvragen" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" "Hoeveel dagen voor het verlopen van het wachtwoord moet een waarschuwing " "getoond worden" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" "Of de tijd-gebaseerde attributen in sudo regels moeten worden geëvalueerd" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" "Moeten host namen en adressen gehashd worden in het known_hosts bestand" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" @@ -288,275 +296,275 @@ "Hoeveel seconden moet een host in het known_hosts bestand blijven nadat de " "host sleutels ervan werden aangevraagd" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Bestand dat de bekende CA-certificaten bevat" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" "Lijst met UID's of gebruikersnamen waarvoor toegang tot de PAC responder " "toegestaan is" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Identiteitaanbieder" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Authentiecatieaanbieder" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Toegangscontroleaanbieder" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Wachtwoordwijzigingsaanbieder" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "SUDO provider" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "Autofs provider" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "Host identity provider" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "SUDO provider" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Minimum gebruiker ID" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Maximum gebruiker ID" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Schakel enumeratie van alle gebruikers/groepen" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Cache inloggegevens voor offline gebruik" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Sla vingerafdrukken van wachtwoorden op" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Laat gebruikers/groepen in volledige vorm zien" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "Neem groepsleden niet mee in groep zoekacties" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Entry cache timeout duur (in seconden)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" "Beperk of geef de voorkeur aan een specifieke adresfamilie wanneer er DNS-" "lookups uitgevoerd worden" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Hoe lang blijven gegevens opgeslagen na een succesvolle login (in dagen)" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" "Hoe lang te wachten op antwoord van de DSN bij het opzoeken van servers (in " "seconden)" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "Het domeingedeelte van DNS queries die service discovery uitvoeren" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "Overschrijf GID waarde van de identiteit aanbieder met deze waarde" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "Behandel gebruikersnamen als hoofdlettergevoelig" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "Hoe vaak moeten verlopen ingangen op de achtergrond ververst worden" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "Of de DNS ingang van de cliënt automatisch vernieuwd moet worden" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" "De TTL die toegepast moet worden op de DNS ingang van de cliënt na het " "vernieuwen hiervan" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" "De adapter wiens IP-adres gebruikt moet worden voor het dynamisch bijwerken " "van de DNS" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "Hoe vaak de DNS ingang van de client periodiek vernieuwd moet worden" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "Of de provider ook de PTR record expliciet moet vernieuwen" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "Of het nsupdate hulpprogramma standaard TCP moet gebruiken" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" "Welke soort authenticatie moet gebruikt worden om de DNS vernieuwing uit te " "voeren" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 #, fuzzy msgid "Override the DNS server used to perform the DNS update" msgstr "" "Welke soort authenticatie moet gebruikt worden om de DNS vernieuwing uit te " "voeren" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA-domein" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "IPA-serveradres" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "Adres van back-up IPA server" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "IPA-clienthostname" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" "Of de DNS-gegevens van de client automatisch bijgewerkt moeten worden in " "FreeIPA" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "Zoek basis voor HBAC gerelateerde objecten" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "De tijdsduur tussen het opzoeken van HBAC regels voor de IPA server" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" @@ -564,357 +572,357 @@ "De tijdsduur in seconden tussen zoekopdrachten in de SELinux mappen voor de " "IPA server" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" "Als dit op false ingesteld is, wordt het host argument gegeven door PAM " "genegeerd" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "De automounter locatie die door deze IPA client wordt gebruikt" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "Zoek in base voor object die info over IPA domein bevat " -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "Zoek in base voor objecten die info over ID bereiken bevat" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "Zet DNS sites aan - locatie gebaseerde service ontdekking" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "Active Directory domein" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 #, fuzzy msgid "Enabled Active Directory domains" msgstr "Active Directory domein" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "Active Directory server adres" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "Active Directory back-up server adres" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "Active Directory cliënt hostnaam" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "LDAP-filter om toegangsprivileges mee te bepalen" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Kerberos-serveradres" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "Kerberos back-up server adres" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Kerberos-rijk" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Authenticatie timeout" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "Moeten kdcinfo bestanden aangemaakt worden" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Werkmap waar authenticatiegegevens opgeslagen worden" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Locatie van de authenticatiecache van de gebruiker" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Locatie van de keytab om authenticatiegegevens te valideren" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Schakel authenticatiegegevensvalidatie in" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" "Sla het wachtwoord op indien offline voor later gebruik bij online " "authenticatie" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "Vernieuwbare levensduur van de TGT" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "Levensduur van de TGT" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "Tijd tussen twee checks voor vernieuwing" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "Zet FAST aan" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "Selecteert de hoofdpersoon te gebruiken voor FAST " -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "Zet hoofdpersoon sanctioneren aan" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "Zet enterprise principals aan" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" "Server waar het wachtwoord wijzigingsservice draait indien niet op de KDC" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, de URI van de LDAP server" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "ldap_backup_uri, De URI van de LDAP server" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "De standaard base DN" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Het schema type wat gebruikt wordt op de LDAP server, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "De standaard bind DN" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "Het type authenticatietoken van de standaard bind DN" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "Het authenticatietoken van de standaard bind DN" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Hoe lang pogen te verbinden" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Hoe lang proberen synchroon LDAP te benaderen" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" "Duur tussen pogingen om de verbinding opnieuw tot stand te brengen tijdens " "offline zijn" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "Gebruik alleen hoofdletters voor gebiedsnamen" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Bestand dat de bekende CA-certificaten bevat" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Pad naar de CA-certificatenmap" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "Bestand dat het client certificaat bevat" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "Bestand dat de client sleutel bevat" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "Lijst van mogelijke sleutel suites" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Vereis verificatie van het TLS-certificaat" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Geef het SASL-mechanisme op wat gebruikt moet worden" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Geef het SASL-authorisatie-ID op wat gebruikt moet worden" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "Specificeer het te gebruiken sasl autorisatiegebied " -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "Specificeer de minimale SSF voor LDAP sasl autorisatie" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Kerberos service keytab" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Gebruik Kerberos authenticatie voor LDAP-connectie" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Volg LDAP-doorverwijzingen" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "Levensduur van TGT voor LDAP-connectie" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "Hoe moet de alias referentie verwijderd worden" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "Service naam voor DNS service opzoeken" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" "Het aantal records dat opgehaald moet worden met een enkele LDAP bevraging" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" "Het aantal leden van moet ontbreken om een volledige de-referentie te " "veroorzaken" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" @@ -922,387 +930,387 @@ "Moet de LDAP bibliotheek omgekeerd opzoeken uitvoeren om de hostnaam te " "autoriseren tijdens een SASL binding" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "entryUSN attribuut" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "lastUSN attribuut" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" "Hoe lang een verbinding met de LDAP server gebouden moet blijven voordat het " "losgekoppeld wordt" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "Het LDAP paging besturingselement uitschakelen" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "Zet Active Directory bereik opvragen uit" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Tijd om te wachten op een zoekopdracht" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "Tijdsduur te wachten voor een opsommingsverzoek" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Tijd om te wachten tussen enumeratie-updates" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "Tijdsduur tussen cache opschoningen" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "Vereis TLS voor het opzoeken van ID's" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "Gebruik ID-mapping van objectSID gebruiken in plaats van pre-set ID's" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "Base DN voor het opzoeken van gebruikers" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Scope voor het opzoeken van gebruikers" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Filter voor het opzoeken van gebruikers" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Objectclass voor gebruikers" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Username-attribuut" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "UID-attribuut" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Primair GID-attribuut" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "GECOS-attribuut" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Gebruikersmap-attribuut" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Shell-attribuut" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "objectSID attribuut" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "Active Directory primaire groep attribuut voor ID-mapping" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Userprincipal-attribuut (voor Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Volledige naam" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "memberOf-attribuut" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Modification time-attribuut" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "shadowLastChange attribuut" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "shadowMin attribuut" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "shadowMax attribuut" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "shadowWarning attribuut" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "shadowInactive attribuut" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "shadowExpire attribuut" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "shadowFlag attribuut" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "Attribuut voor tonen van geautoriseerde PAM services" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "Attribuut dat geautoriseerde server hosts toont" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "krbLastPwdChange attribuut" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "krbPasswordExpiration attribuut" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "Attribuut welke aangeeft dat wachtwoordtactiek op de server actief is" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "accountExpires attribuut van AD" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "userAccountControl attribuut van AD" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "nsAccountLock attribuut" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "loginDisabled attribuut van NDS" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "loginExpirationTime attribuut van NDS" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "loginAllowedTimeMap attribuut van NDS" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "SSH publieke sleutel attribuut" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "Basis DN voor groep opzoeken" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "Objectklasse voor groepen" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Groepsnaam" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Groep wachtwoord" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "GID attribuut" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "Groep deelnemer attribuut" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "Verandertijd attribuut voor groepen" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 #, fuzzy msgid "The LDAP group external member attribute" msgstr "Netgroep leden attribuut" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "Maximale nest niveau dat SSSd zal volgen" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "Basis DN voor netgroep opzoeken" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "Objectklasse voor netgroepen" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "Netgroep naam" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "Netgroep leden attribuut" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "Netgroep triple attibuut" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "Verandertijd attribuut voor netgroepen" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "Basis DN voor service lookups" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "Objectclass voor services" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "Service naam attribuut" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "Service port attribuut" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "Service protocol attribuut" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "Ondergrens voor ID-mapping" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "Bovengrens voor ID-mapping" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "Aantal ID's voor elk segment bij ID-mapping" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "Gebruik autorid-compatibel algoritme voor ID-mapping" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "Naam van het standaard domein voor ID-mapping" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "SID van het standaard domein voor ID-mapping" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "Gebruik LDAP_MATCHING_RULE_IN_CHAIN voor groep opzoeken" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "Gebruik LDAP_MATCHING_RULE_IN_CHAIN voor initgroep opzoeken" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "Laagste grens instellen voor toegestane id's van de LDAP-server" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "Hoogste grens instellen voor toegestane id's van de LDAP-server" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Policy om wacthwoordverloop mee te evalueren" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" "Welke attributen worden gebruikt voor evaluatie als het account verlopen is" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" "Welke regels moeten gebruikt worden voor de evaluatie van toegangscontrole" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" "URI van een LDAP server waarop wachtwoord veranderingen toegestaan zijn" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" "URI van een back-up LDAP server waar wachtwoord veranderingen toegestaan zijn" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "DNS service naam voor LDAP wachtwoord verander server" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" @@ -1310,23 +1318,23 @@ "Moet het ldap_user_shadow_last_change attribuut vernieuwd worden na een " "wachtwoordwijziging" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "Basis DN voor sudo regels lookups" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "Automatische volledige ververs periode" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "Automatische slimme ververs periode" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "Moeten regels gefilterd worden volgens hostnaam, IP adres en netwerk" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" @@ -1334,213 +1342,213 @@ "Hostnamen en/of volledig gekwalificeerde domeinnamen van deze machine voor " "het filteren van sudo regels" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" "IPv4 of IPv6 adressen of netwerk van deze machine voor het filteren van sudo " "regels" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" "Moeten regels toegevoegd worden die netgroep bevatten in host attribuut " -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" "Moeten regels toegevoegd worden die regulaire expressie bevatten in host " "attribuut " -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "Objectklasse voor sudo regels" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "Sudo regelnaam" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "Sudo regel opdracht attribuut" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "Sudo regel host attribuut" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "Sudo regel gebruiker attribuut" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "Sudo regel optie attribuut" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "Sudo regel runasuser attribuut" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "Sudo regel runasgroup attribuut" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "Sudo regel notbefore attribuut" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "Sudo regel notafter attribuut" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "Sudo regel volgorde attribuut" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "Object class voor automounter maps" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "Automounter map naam attribuut" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "Objectklasse voor automounter map ingaven" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "Automounter map sleutel ingave attribuut" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "Automounter map ingavewaarde attribuut" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "Basis DN voor automounter kaart opzoeken" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Kommagescheiden lijst van toegestane gebruikers" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Kommagescheiden lijst van geweigerde gebruikers" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Standaard shell, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Basis voor gebruikersmappen" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "De naam van de NSS-bibliotheek die gebruikt wordt" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "Moet indien mogelijk canonieke groepsnaam in cache opgezocht worden " -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "PAM-stack die gebruikt wordt" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Start in de achtergrond (standaard)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Start interactief (standaard)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Geef een niet-standaard configuratiebestand op" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "Print versie nummer en sluit af" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Debug niveau" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Voeg tijdstempels toe aan debugberichten" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "Toon tijdstempel met microseconden" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Een geopend bestand voor de debug logs" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Kerberos-rijk" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 #, fuzzy msgid "Requested lifetime of the ticket" msgstr "Vernieuwbare levensduur van de TGT" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 #, fuzzy msgid "Requested renewable lifetime of the ticket" msgstr "Vernieuwbare levensduur van de TGT" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 #, fuzzy msgid "Specifies the server principal to use for FAST" msgstr "Selecteert de hoofdpersoon te gebruiken voor FAST " -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Domein voor de informatie provider (verplicht)" @@ -1569,89 +1577,89 @@ msgid "Unexpected error while looking for an error description" msgstr "Onverwachtte fout bij het opzoeken van een omschrijving" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Serverbericht:" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Wachtwoorden komen niet overeen" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "Wachtwoorden als root wijzigen wordt niet ondersteund." -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "Geauthenticeerd met gecachte inloggegevens." -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", uw wachtwoord verloopt op:" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" "Je wachtwoord is verlopen. Je hebt nog slechts %1$d login(s) beschikbaar." -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "Je wachtwoord zal verlopen in %1$d %2$s." -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "Inloggen wordt geweigerd tot:" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "Systeem is offline, wachtwoord wijzigen niet mogelijk" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Wijzigen van wachtwoord mislukt." -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Nieuw Wachtwoord: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Voer nieuw wachtwoord nogmaals in: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Wachtwoord: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Huidig wachtwoord:" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "Wachtwoord verlopen. Verander nu uw wachtwoord." @@ -1660,7 +1668,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "Het debugniveau waarmee gestart wordt" @@ -1673,7 +1681,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "Fout bij het zetten van de locale\n" @@ -2135,99 +2143,99 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Transactiefout. Kan de gebruiker niet aanpassen.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" "Geen enkel cache object komt overeen met de gespecificeerde zoekopdracht\n" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 #, fuzzy msgid "Invalidate all cached entries" msgstr "Maak alle services ongeldig" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "Maak bepaalde gebruiker ongeldig" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "Maak alle gebruikers ongeldig" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "Maak bepaalde groep ongeldig" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "Maak alle groepen ongeldig" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "Maak bepaalde netgroep ongeldig" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "Maak alle netgroepen ongeldig" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "Maak bepaalde service ongeldig " -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "Maak alle services ongeldig" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "Maak bepaalde autofs map ongeldig" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "Maak alle autofs mappen ongeldig" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 #, fuzzy msgid "Invalidate particular sudo rule" msgstr "Maak bepaalde gebruiker ongeldig" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 #, fuzzy msgid "Invalidate all cached sudo rules" msgstr "Maak alle gebruikers ongeldig" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "Maak alleen ingangen van een bepaald domein ongeldig" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "Selecteer tenminste een object om ongeldig te maken\n" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " @@ -2237,7 +2245,7 @@ "is, gebruik dan de volledig gekwalificeerde naam in plaats van --domain/-d " "parameter.\n" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "Kon beschikbare domeinen niet openen\n" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/pl.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/pl.gmo differ diff -Nru sssd-1.15.0/po/pl.po sssd-1.15.2/po/pl.po --- sssd-1.15.0/po/pl.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/pl.po 2017-03-15 16:53:24.000000000 +0000 @@ -11,7 +11,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2016-09-05 02:42-0400\n" "Last-Translator: Piotr Drąg \n" "Language-Team: Polish (http://www.transifex.com/projects/p/sssd/language/" @@ -69,29 +69,33 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "Czas bezczynności przed automatycznym rozłączeniem klienta" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Usługi SSSD do uruchomienia" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "Domeny SSSD do uruchomienia" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Czas oczekiwania na komunikaty wysyłane przez SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "Wyrażenie regularne do przetworzenia nazwy użytkownika i domeny" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "Format zgodny z printf do wyświetlania w pełni kwalifikowanych nazw" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." @@ -99,86 +103,90 @@ "Katalog w systemie plików, w którym SSSD powinno przechowywać pliki pamięci " "podręcznej odtwarzania Kerberosa." -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "Domeny do dodania do nazw bez składnika domeny." -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "Użytkownik, któremu porzucić uprawnienia" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Wymaga sprawdzenia certyfikatu TLS" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" "Wszystkie spacji w nazwach grup i użytkowników zostaną zastąpione tym znakiem" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "Czas oczekiwania pamięci podręcznej wyliczania (sekundy)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "Czas oczekiwania aktualizacji tła pamięci podręcznej wpisów (sekundy)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "Ujemny czas oczekiwania pamięci podręcznej (sekundy)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Ujemny czas oczekiwania pamięci podręcznej (sekundy)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Użytkownicy, którzy powinni być bezpośrednio ignorowani przez SSSD" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Grupy, które powinny być bezpośrednio ignorowane przez SSSD" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Czy filtrowani użytkownicy powinni pojawiać się w grupach" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "Wartość pola hasła, jaką dostawca NSS powinien zwrócić" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "Zastępuje wartość katalogu domowego z dostawcy tożsamości tą wartością" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" "Zastępuje pustą wartość katalogu domowego z dostawcy tożsamości tą wartością" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "Zastępuje wartość powłoki od dostawcy tożsamości tą wartością" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "Lista powłok, za pomocą których użytkownicy mogą się logować" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "Lista powłok, które zostaną zawetowane i zastąpione powłoką zastępczą" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" @@ -186,30 +194,30 @@ "Jeśli powłoka przechowywana w katalogu centralnym jest dozwolona, ale nie " "jest dostępna, to zostanie użyta ta powłoka zastępcza" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "Powłoka do użycia, jeśli dostawca nie dostarcza żadnej" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "Jak długo wpisy pamięci podręcznej in-memory są prawidłowe" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 #, fuzzy msgid "List of user attributes the NSS responder is allowed to publish" msgstr "Lista atrybutów użytkownika, które InfoPipe może publikować" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" "Jak długo umożliwiać logowania w pamięci podręcznej między logowaniami " "w trybie online (dni)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "Ile nieudanych prób zalogowania jest dozwolonych w trybie offline" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -217,442 +225,442 @@ "Ile czasu (minut) nie pozwalać na zalogowanie po osiągnięciu " "offline_failed_login_attempts" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" "Jaki rodzaj komunikatów wyświetlać użytkownikowi podczas uwierzytelniania" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" "Ile sekund zatrzymać informacje o tożsamości w pamięci podręcznej dla żądań " "PAM" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "Ile dni przed wygaśnięciem hasła wyświetlić ostrzeżenie" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "Lista zaufanych UID lub nazw użytkowników" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "Lista domen dostępnych także dla niezaufanych użytkowników." -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "Komunikat wyświetlany po wygaśnięciu konta użytkownika." -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 #, fuzzy msgid "Message printed when user account is locked." msgstr "Komunikat wyświetlany po wygaśnięciu konta użytkownika." -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "Określa, czy szacować atrybuty oparte na czasie w regułach sudo" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "Określa, czy mieszać nazwy komputerów i adresy w pliku known_hosts" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" "Ile sekund przechowywać komputer w pliku known_hosts po zażądaniu jego kluczy" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Plik zawierający certyfikaty CA" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" "Lista UID lub nazw użytkowników mających dostęp do programu odpowiadającego " "PAC" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" "Lista UID lub nazw użytkowników mających dostęp do programu odpowiadającego " "InfoPipe" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "Lista atrybutów użytkownika, które InfoPipe może publikować" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Dostawca tożsamości" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Dostawca uwierzytelniania" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Dostawca kontroli dostępu" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Dostawca zmiany hasła" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "Dostawca SUDO" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "Dostawca Autofs" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "Dostawca tożsamości komputera" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Dostawca SUDO" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Minimalny identyfikator użytkownika" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Maksymalny identyfikator użytkownika" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Włącza wyliczanie wszystkich użytkowników/grup" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Dane uwierzytelniające pamięci podręcznej dla logowań w trybie offline" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Przechowuje mieszanie haseł" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Wyświetla użytkowników/grupy w pełni kwalifikowanej formie" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "Bez dołączania członków grup w wyszukiwaniach grup" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Czas oczekiwania pamięci podręcznej wpisów (sekundy)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" "Ogranicza lub preferuje podaną rodzinę adresów podczas wykonywania " "wyszukiwań DNS" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Jak długo utrzymywać wpisy logowania w pamięci podręcznej po ostatnim udanym " "zalogowaniu (dni)" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" "Jak długo czekać na odpowiedzi od serwera DNS podczas rozwiązywania serwerów " "(sekundy)" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "Część domeny zapytania DNS wykrywania usługi" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "Zastępuje wartość GID z dostawcy tożsamości tą wartością" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "Rozróżnianie wielkości liter w nazwach użytkowników" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "Jak często odświeżać w tle wygasłe wpisy" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "Czy automatycznie aktualizować wpis DNS klienta" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "TTL do zastosowania do wpisu DNS klienta po jego zaktualizowaniu" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" "Interfejs, którego adres IP powinien być używany do dynamicznych " "aktualizacji DNS" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "Jak często okresowo aktualizować wpis DNS klienta" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "Określa, czy dostawca powinien aktualizować także wpis PTR" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "Określa, czy narzędzie nsupdate powinno domyślnie używać portu TCP" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" "Jakiego rodzaju uwierzytelnianie powinno być używane do wykonywania " "aktualizacji DNS" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 #, fuzzy msgid "Override the DNS server used to perform the DNS update" msgstr "" "Jakiego rodzaju uwierzytelnianie powinno być używane do wykonywania " "aktualizacji DNS" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "Kontrola wyliczania zaufanych domen" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "Jak często odświeżać listę poddomen" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "Lista opcji dziedziczonych przez poddomenę" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "Domena IPA" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "Adres serwera IPA" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "Adres zapasowego serwera IPA" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "Nazwa komputera klienta IPA" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" "Czy automatycznie aktualizować wpis DNS klienta w oprogramowaniu FreeIPA" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "Podstawa wyszukiwania pod kątem obiektów związanych z HBAC" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "Czas między wyszukiwaniami reguł HBAC w serwerze IPA" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "Czas w sekundach między wyszukiwaniami map SELinuksa w serwerze IPA" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" "Jeśli ustawiono na fałsz, to parametr komputera podany przez PAM zostanie " "zignorowany" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "Położenie automountera, którego używa ten klient IPA" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" "Podstawa wyszukiwania dla obiektów zawierających informacje o domenie IPA" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" "Podstawa wyszukiwania dla obiektów zawierających informacje o zakresach " "identyfikatorów" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "Włącza witryny DNS — wykrywanie usług na podstawie położenia" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "Podstawa wyszukiwania dla widoku kontenerów" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "Klasa obiektu dla widoku kontenerów" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "Atrybut z nazwą widoku" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "Klasa obiektu dla obiektów zastępowania" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "Atrybut z odniesieniem do pierwotnego obiektu" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "Klasa obiektu dla obiektów zastępowania użytkownika" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "Klasa obiektów dla obiektów zastępowania grup" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "Domena Active Directory" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 #, fuzzy msgid "Enabled Active Directory domains" msgstr "Domena Active Directory" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "Adres serwera Active Directory" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "Adres zapasowego serwera Active Directory" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "Nazwa komputera klienta Active Directory" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "Filtr LDAP do określenia uprawnień dostępu" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "Czy używać Global Catalog do wyszukiwań" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "Tryb działania dla kontroli dostępu opartej na GPO" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "Czas między wyszukiwaniami plików polityki GPO w serwerze AD" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" @@ -660,7 +668,7 @@ "Nazwy usług PAM mapujących do ustawień polityki GPO " "(Deny)InteractiveLogonRight" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" @@ -668,258 +676,258 @@ "Nazwy usług PAM mapujących do ustawień polityki GPO " "(Deny)RemoteInteractiveLogonRight" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" "Nazwy usług PAM mapujących do ustawień polityki GPO (Deny)NetworkLogonRight" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" "Nazwy usług PAM mapujących do ustawień polityki GPO (Deny)BatchLogonRight" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" "Nazwy usług PAM mapujących do ustawień polityki GPO (Deny)ServiceLogonRight" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" "Nazwy usług PAM, dla których zawsze udzielany jest dostęp oparty na GPO" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" "Nazwy usług PAM, dla których zawsze odmawiany jest dostęp oparty na GPO" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" "Domyślne uprawnienie logowania (lub zezwolenie/odmowa) do użycia dla " "niemapowanych nazw usług PAM" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "konkretna strona używana przez klienta" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Adres serwera Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "Adres zapasowego serwera Kerberos" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Obszar Kerberos" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Czas oczekiwania na uwierzytelnienie" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "Określa, czy tworzyć pliki kdcinfo" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "Gdzie umieścić wstawki konfiguracji krb5" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "" "Katalog do przechowywania pamięci podręcznych danych uwierzytelniających" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Położenie pamięci podręcznej danych uwierzytelniających użytkownika" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Położenie tablicy kluczy do sprawdzania danych uwierzytelniających" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Włącza sprawdzanie danych uwierzytelniających" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" "Przechowuje hasło, jeśli w trybie offline do późniejszego uwierzytelnienia " "w trybie online" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "Odnawialny czas trwania TGT" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "Czas trwania TGT" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "Czas między dwoma sprawdzaniami odnowy" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "Włącza FAST" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "Wybiera naczelnika do użycia dla FAST" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "Włącza ujednolicanie naczelnika" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "Włącza naczelników enterprise" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "Mapa nazw użytkowników do nazw naczelników Kerberos" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" "Serwer, w którym jest uruchomiona usługa zmiany haseł, jeśli nie znajduje " "się w KDC" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, adres URI serwera LDAP" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "ldap_backup_uri, adres URI serwera LDAP" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "Domyślna podstawowa DN" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Typ Schema do użycia na serwerze LDAP, RFC2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "Domyślne DN dowiązania" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "Typ tokenu uwierzytelniania domyślnego DN dowiązania" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "Token uwierzytelniania domyślnego DN dowiązania" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Czas do próby połączenia" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Czas do próby synchronicznych działań LDAP" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "Czas między próbami ponownego połączenia w trybie offline" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "Użycie tylko wielkich znaków w nazwach obszarów" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Plik zawierający certyfikaty CA" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Ścieżka do katalogu certyfikatów CA" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "Plik zawierający certyfikat klienta" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "Plik zawierający klucz klienta" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "Lista możliwych zestawów szyfrów" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Wymaga sprawdzenia certyfikatu TLS" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Podaje używany mechanizm SASL" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Podaje używany identyfikator upoważnienia SASL" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "Podaje obszar upoważnienia SASL do użycia" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "Podaje minimalne SSF dla upoważnienia sasl LDAP" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Tablica kluczy usługi Kerberos" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Używa uwierzytelniania Kerberos dla połączenia LDAP" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Podąża za odsyłaniami LDAP" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "Czas trwania TGT dla połączenia LDAP" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "Jak wskazywać aliasy" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "Nazwa usługi do wyszukiwań usługi DNS" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "Liczba wpisów do pobrania w jednym zapytaniu LDAP" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "Suma liczb, których musi brakować, aby wywołać pełne „deref”" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" @@ -927,386 +935,386 @@ "Określa, czy biblioteka LDAP powinna wykonywać odwrotne wyszukanie, aby " "ujednolicić nazwę komputera podczas dowiązania SASL" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "Atrybut entryUSN" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "Atrybut lastUSN" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "Jak długo utrzymywać połączenie z serwerem LDAP przed rozłączeniem" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "Wyłącza kontrolę stronicowania LDAP" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "Wyłącza pobieranie zakresu Active Directory" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Czas oczekiwania na żądanie wyszukiwania" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "Czas oczekiwania na żądanie wyliczenia" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Czas między aktualizacjami wyliczania" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "Czas między czyszczeniem pamięci podręcznej" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "Wymaga TLS dla wyszukiwania identyfikatorów" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" "Używa mapowania identyfikatorów objectSID zamiast uprzednio ustawionych " "identyfikatorów" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "Podstawowe DN dla wyszukiwania użytkowników" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Zakres wyszukiwania użytkowników" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Filtruje wyszukiwania użytkowników" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Klasa obiektów dla użytkowników" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Atrybut nazwy użytkownika" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "Atrybut UID" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Pierwszy atrybut GID" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "Atrybut GECOS" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Atrybut katalogu domowego" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Atrybut powłoki" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "Atrybut UUID" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "Atrybut objectSID" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "Atrybut głównej grupy Active Directory dla mapowania identyfikatorów" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Atrybut głównego użytkownika (dla Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Imię i nazwisko" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "Atrybut memberOf" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Atrybut czasu modyfikacji" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "Atrybut shadowLastChange" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "Atrybut shadowMin" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "Atrybut shadowMax" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "Atrybut shadowWarning" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "Atrybut shadowInactive" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "Atrybut shadowExpire" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "Atrybut shadowFlag" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "Atrybut zawierający listę upoważnionych usług PAM" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "Atrybut zawierający listę upoważnionych komputerów serwerowych" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "Atrybut krbLastPwdChange" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "Atrybut krbPasswordExpiration" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "Atrybut wskazujący, czy polityki haseł po stronie serwera są aktywne" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "Atrybut accountExpires AD" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "Atrybut userAccountControl AD" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "Atrybut nsAccountLock" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "Atrybut loginDisabled NDS" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "Atrybut loginExpirationTime NDS" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "Atrybut loginAllowedTimeMap NDS" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "Atrybut klucza publicznego SSH" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" "atrybut zawierający listę dozwolonych typów uwierzytelniania dla użytkownika" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "atrybut zawierający certyfikat X509 użytkownika" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 #, fuzzy msgid "attribute containing the email address of the user" msgstr "atrybut zawierający certyfikat X509 użytkownika" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "Lista dodatkowych atrybutów do pobrania razem z wpisem użytkownika" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "Podstawowe DN dla wyszukiwania grup" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "Klasa obiektów dla grup" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Nazwa grupy" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Hasło grupy" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "Atrybut GID" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "Atrybut elementu grupy" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "Atrybut UUID grupy" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "Atrybut czasu modyfikacji grup" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "Typ grupy i inne flagi" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 #, fuzzy msgid "The LDAP group external member attribute" msgstr "Atrybut elementów grupy sieciowej" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "Maksymalny poziom zagnieżdżenia, jaki usługa SSSD będzie używała" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "Podstawowe DN dla wyszukiwania grupy sieciowej" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "Klasa obiektów dla grup sieciowych" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "Nazwa grupy sieciowej" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "Atrybut elementów grupy sieciowej" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "Potrójny atrybut grupy sieciowej" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "Atrybut czasu modyfikacji grup sieciowych" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "Podstawowe DN do wyszukiwania usług" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "Klasa obiektów dla usług" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "Atrybut nazwy usługi" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "Atrybut portu usługi" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "Atrybut protokołu usługi" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "Niższa granica dla mapowania identyfikatorów" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "Wyższa granica dla mapowania identyfikatorów" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" "Liczba identyfikatorów dla każdego kawałka podczas mapowania identyfikatorów" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "Używa algorytmu zgodnego z autorid do mapowania identyfikatorów" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "Nazwa domyślnej domeny dla mapowania identyfikatorów" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "SID domyślnej domeny dla mapowania identyfikatorów" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "Użycie LDAP_MATCHING_RULE_IN_CHAIN do wyszukiwania grup" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "Użycie LDAP_MATCHING_RULE_IN_CHAIN do wyszukiwania grup inicjacyjnych" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "Czy używać Token-Groups" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "Ustawia dolną granicę dla dozwolonych identyfikatorów z serwera LDAP" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "Ustawia górną granicę dla dozwolonych identyfikatorów z serwera LDAP" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "DN dla zapytań polityki" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Polityka do oszacowania wygaszenia hasła" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "Które atrybuty powinny być używane do sprawdzenia, czy konto wygasło" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "Które reguły powinny być używane do sprawdzania kontroli dostępu" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "Adres URI serwera LDAP, gdzie zmiany hasła są dozwolone" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "Adres URI zapasowego serwera LDAP, gdzie zmiany hasła są dozwolone" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "Nazwa usługi DNS serwera zmiany hasła LDAP" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" @@ -1314,24 +1322,24 @@ "Określa, czy zaktualizować atrybut ldap_user_shadow_last_change po zmianie " "hasła" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "Podstawowe DN dla wyszukiwań reguł sudo" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "Okres między automatycznymi pełnymi odświeżeniami" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "Okres między automatycznymi inteligentnymi odświeżeniami" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" "Określa, czy filtrować reguły według nazwy komputera, adresów IP i sieci" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" @@ -1339,215 +1347,215 @@ "Nazwy komputerów lub w pełni kwalifikowane nazwy domen tego komputera do " "filtrowania reguł sudo" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" "Adresy lub sieci IPv4 lub IPv6 tego komputera do filtrowania reguł sudo" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" "Określa, czy zawierać reguły zawierające grupy sieciowe w atrybucie komputera" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" "Określa, czy zawierać reguły zawierające wyrażenia regularne w atrybucie " "komputera" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "Klasa obiektów dla reguł sudo" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "Nazwa reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "Atrybut polecenia reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "Atrybut komputera reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "Atrybut użytkownika reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "Atrybut opcji reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "Atrybut runas reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "Atrybut runasuser reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "Atrybut runasgroup reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "Atrybut notbefore reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "Atrybut notafter reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "Atrybut kolejności reguły sudo" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "Klasa obiektów dla map automountera" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "Atrybut nazwy mapy automountera" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "Klasa obiektów dla wpisów map automountera" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "Atrybut klucza wpisu mapy automountera" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "Atrybut wartości wpisu mapy automountera" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "Podstawowe DN dla wyszukiwań map automountera" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Lista dozwolonych użytkowników oddzielonych przecinkami" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Lista zabronionych użytkowników oddzielonych przecinkami" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Domyślna powłoka, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Podstawa katalogów domowych" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "Nazwa używanej biblioteki NSS" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" "Określa, czy wyszukiwać kanoniczną nazwę grupy w pamięci podręcznej, jeśli " "to możliwe" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "Używany stos PAM" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Uruchamia jako usługa (domyślnie)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Uruchamia interaktywnie (nie jako usługa)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Podaje niedomyślny plik konfiguracji" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "Wyświetla numer wersji i kończy działanie" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Poziom debugowania" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Dodaje czasy debugowania" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "Wyświetlanie dat z mikrosekundami" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Otwiera deskryptor pliku dla dzienników debugowania" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" "Wysyła wyjście debugowania bezpośrednio do standardowego wyjścia błędów." -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "Użytkownik, jako który utworzyć ccache FAST" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "Grupa, jako którą utworzyć ccache FAST" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Obszar Kerberos" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 #, fuzzy msgid "Requested lifetime of the ticket" msgstr "Odnawialny czas trwania TGT" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 #, fuzzy msgid "Requested renewable lifetime of the ticket" msgstr "Odnawialny czas trwania TGT" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 #, fuzzy msgid "Specifies the server principal to use for FAST" msgstr "Wybiera naczelnika do użycia dla FAST" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Domena dostawcy informacji (wymagane)" @@ -1575,50 +1583,50 @@ msgid "Unexpected error while looking for an error description" msgstr "Nieoczekiwany błąd podczas wyszukiwania opisu błędu" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "Odmowa uprawnienia." -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Komunikat serwera: " -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Hasła się nie zgadzają" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "Przywrócenie hasła przez użytkownika root nie jest obsługiwane." -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "Uwierzytelniono za pomocą danych z pamięci podręcznej" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", hasło w pamięci podręcznej wygaśnie za: " -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "Hasło wygasło. Pozostało %1$d możliwych logowań." -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "Hasło wygaśnie za %1$d %2$s." -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "Uwierzytelnianie jest zabronione do: " -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "System jest w trybie offline, zmiana hasła nie jest możliwa" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" @@ -1626,40 +1634,40 @@ "Po zmianie hasła OTP należy się wylogować i zalogować ponownie, aby uzyskać " "zgłoszenie" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Zmiana hasła się nie powiodła. " -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Nowe hasło: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Proszę ponownie podać nowe hasło: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "Pierwszy czynnik: " -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 #, fuzzy msgid "Second Factor (optional): " msgstr "Drugi czynnik: " -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "Drugi czynnik: " -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Hasło: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Bieżące hasło: " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "Hasło wygasło. Proszę je zmienić teraz." @@ -1668,7 +1676,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "Poziom debugowania, z jakim uruchomić" @@ -1681,7 +1689,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "Błąd podczas ustawiania lokalizacji\n" @@ -2146,98 +2154,98 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Błąd transakcji. Nie można zmodyfikować użytkownika.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "Żaden obiekt pamięci podręcznej nie pasuje do podanego wyszukiwania\n" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "Nie można unieważnić %1$s\n" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "Nie można unieważnić %1$s %2$s\n" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 #, fuzzy msgid "Invalidate all cached entries" msgstr "Unieważnia wszystkie usługi" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "Unieważnia podanego użytkownika" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "Unieważnia wszystkich użytkowników" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "Unieważnia podaną grupę" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "Unieważnia wszystkie grupy" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "Unieważnia podaną grupę sieciową" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "Unieważnia wszystkie grupy sieciowe" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "Unieważnia podaną usługę" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "Unieważnia wszystkie usługi" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "Unieważnia podaną mapę autofs" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "Unieważnia wszystkie mapy autofs" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "Unieważnia konkretny komputer SSH" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "Unieważnia wszystkie komputery SSH" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 #, fuzzy msgid "Invalidate particular sudo rule" msgstr "Unieważnia podanego użytkownika" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 #, fuzzy msgid "Invalidate all cached sudo rules" msgstr "Unieważnia wszystkie wpisy w pamięci podręcznej oprócz reguł sudo" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "Unieważnia wpisy tylko z podanej domeny" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "Proszę wybrać co najmniej jeden obiekt do unieważnienia\n" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " @@ -2247,7 +2255,7 @@ "domeną), należy użyć w pełni kwalifikowanej nazwy zamiast parametru --" "domain/-d.\n" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "Nie można otworzyć dostępnych domen\n" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/pt_BR.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/pt_BR.gmo differ diff -Nru sssd-1.15.0/po/pt_BR.po sssd-1.15.2/po/pt_BR.po --- sssd-1.15.0/po/pt_BR.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/pt_BR.po 2017-03-15 16:53:24.000000000 +0000 @@ -3,7 +3,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2015-10-27 08:15-0400\n" "Last-Translator: Marco Aurélio Krause \n" "Language-Team: Portuguese (Brazil)\n" @@ -55,1401 +55,1409 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Serviços SSSD para iniciar" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 msgid "Tune certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 msgid "Files negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 msgid "Path to storage of trusted CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 msgid "SELinux provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 msgid "Kerberos realm to use" msgstr "" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1477,88 +1485,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr "" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "" -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "" -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "" -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "" @@ -1567,7 +1575,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "" @@ -1580,7 +1588,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "" @@ -2010,102 +2018,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/pt.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/pt.gmo differ diff -Nru sssd-1.15.0/po/pt.po sssd-1.15.2/po/pt.po --- sssd-1.15.0/po/pt.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/pt.po 2017-03-15 16:53:24.000000000 +0000 @@ -7,7 +7,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:47-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Portuguese (http://www.transifex.com/projects/p/sssd/language/" @@ -61,141 +61,149 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Serviços SSSD a iniciar" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "Domínios SSSD a iniciar" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Limite de tempo para mensagens enviadas sobre SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "Expressão regular para obter nome do utilizar e domínio" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "Formato compatível com o printf para apresentar nomes completos" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Obriga a verificação de certificados TLS" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "Validade da cache de enumeração (segundos)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "Validade da actualização da cache em segundo plano (segundos)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "Validade da cache negativa (segundos)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Validade da cache negativa (segundos)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Utilizadores que o SSSD devem explicitamente ignorar" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Grupos que o SSSD devem explicitamente ignorar" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Devem os utilizadores filtrados aparecer em grupos" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "O valor do campo da senha que o fornecedor NSS deve retornar" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" "Durante quanto tempo devem ser permitidas as caches de sessões entre sessões " "online (dias)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" "Quantas tentativas falhadas de inicio de sessão são permitidas quando offline" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -203,1275 +211,1275 @@ "Quanto tempo (minutos) para negar a sessão após " "offline_failed_login_attempts ter sido atingido" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Ficheiro que contêm os certificados CA" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Fornecedor de identidade" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Fornecedor de autenticação" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Fornecedor de controle de acesso" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Fornecedor de Alteração de Senha" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Fornecedor de identidade" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "ID de utilizador mínimo" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "ID de utilizador máximo" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Permitir enumeração de todos os utilizadores/grupos" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Efectuar cache de credenciais para sessões em modo desligado" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Guardar hashes da senha" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Apresentar utilizadores/grupos na forma completa" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Validade da cache (segundos)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" "Restringir ou preferir famílias de endereços especificas quando efectua " "consultas DNS" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Durante quanto tempo devem ser permitidas as caches de sessões entre sessões " "bem sucedidas (dias)" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "Domínio IPA" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "Endereço do servidor IPA" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "Nome da máquina do cliente IPA" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Endereço do servidor Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Reino Kerberos" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Tempo de expiração da autenticação" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Directório para armazenar as caches de credenciais" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Localização da cache de credenciais dos utilizadores" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Localização da tabela de chaves (keytab) para validar credenciais" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Activar validação de credenciais" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" "Servidor onde está em execução o serviço de alteração de senha, se não " "coincide com o KDC" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, O URI do servidor LDAP" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "A base DN por omissão" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "O tipo de Schema em utilização no servidor LDAP, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "O DN por omissão para a ligação" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "O tipo de token de autenticação do bind DN por omissão" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "O token de autenticação do bind DN por omissão" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Período de tempo para tentar ligação" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Tempo de espera para tentar operações LDAP síncronas" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "Tempo de espera entre tentativas para re-conectar quando desligado" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Ficheiro que contêm os certificados CA" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Caminho para o directório do certificado CA" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Obriga a verificação de certificados TLS" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Especificar mecanismo sasl a utilizar" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Especifique o id sasl para utilizar na autorização" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Separador chave do serviço Kerberos" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Utilizar autenticação Kerberos para ligações LDAP" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Seguir os referrals LDAP" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Tempo de espera por um pedido de pesquisa" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Período de tempo entre enumeração de actualizações" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "Requer TLS para consultas de ID" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "DN base para pesquisa de utilizadores" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Âmbito das pesquisas do utilizador" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Filtro para as pesquisas do utilizador" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Objectclass para utilizadores" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Atributo do nome do utilizador" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "Atributo UID" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Atributo GID primário" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "Atributo GECOS" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Atributo da pasta pessoal" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Atributo da Shell" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Atributo principal do utilizador (para Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Nome Completo" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "Atributo memberOf" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Atributo da alteração da data" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Politica para avaliar a expiração da senha" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Lista de utilizadores autorizados separados por vírgulas" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Lista de utilizadores não autorizados separados por vírgulas" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Shell pré-definida, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Directório base para as pastas pessoais" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "O nome da biblioteca NSS a utilizar" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "Stack PAM a utilizar" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Tornar-se num serviço (omissão)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Executar interactivamente (não como serviço)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Especificar um ficheiro de configuração não standard" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Nível de depuração" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Adicionar tempos na depuração" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Um descritor de ficheiro aberto para os registos de depuração" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Reino Kerberos" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Domínio do fornecedor de informação (obrigatório)" @@ -1499,88 +1507,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Mensagem do Servidor: " -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Senhas não coincidem" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", a sua senha guardada em cache irá expirar em: " -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "O sistema está offline, a mudança de senha não é possível" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Alteração da senha falhou." -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Nova Senha: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Digite a senha novamente: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Senha: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Senha actual: " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "A senha expirou. Altere a sua senha agora." @@ -1589,7 +1597,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "O nível de depuração a utilizar durante a execução" @@ -1602,7 +1610,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "Erro ao definir a configuração regional\n" @@ -2050,102 +2058,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Erro na transacção. Não foi possível modificar o utilizador.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/ru.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/ru.gmo differ diff -Nru sssd-1.15.0/po/ru.po sssd-1.15.2/po/ru.po --- sssd-1.15.0/po/ru.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/ru.po 2017-03-15 16:53:24.000000000 +0000 @@ -9,7 +9,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2016-02-23 10:04-0500\n" "Last-Translator: Oleksii Levan \n" "Language-Team: Russian (http://www.transifex.com/projects/p/sssd/language/" @@ -65,29 +65,33 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "Время простоя до автоматического отсоединения клиента" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Запускаемые службы SSSD" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "Запускаемые домены SSSD" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Тайм-аут для сообщений, отправленных через SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "Регулярное выражение для разбора имени пользователя и домена" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "Printf-совместимый формат для отображения полностью определённых имён" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." @@ -95,94 +99,98 @@ "Каталог файловой системы, в котором SSSD должен сохранять файлы кеша повтора " "Kerberos" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "Домен для имён без указанного компонента домена" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "Пользователь, чьи привилегии будут использоваться" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Требуется проверка сертификата TLS" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" "Все пробелы в именах пользователей и групп будут заменены этим символом" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "Длина тайм-аута кэша перечисления (в секундах)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "Тайм-аут фонового обновления элемента списка кэша (в секундах)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "Отрицательная длина тайм-аута кэша (в секундах)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Отрицательная длина тайм-аута кэша (в секундах)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Пользователи, которых SSSD должен явно игнорировать " -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Группы, которые SSSD должен явно игнорировать " -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Должны ли отфильтрованные пользователи появляться в группах" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "Значение поля пароля, которое должен вернуть поставщик NSS" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" "Переопределять значение домашнего каталога от поставщика учётных данных этим " "значением" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" "Заменять пустое значение домашнего каталога от поставщика учётных данных " "этим значением" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" "Переопределять значение командной оболочки от поставщика учётных данных этим " "значением" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" "Список командных оболочек, с которыми пользователям разрешён вход в систему" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" "Список командных оболочек, которые будут ветированы и заменены запасной " "оболочкой" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" @@ -190,30 +198,30 @@ "Если командная оболочка из центрального каталога разрешена, но не доступна, " "использовать эту как запасную" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" "Оболочка, которая будет использоваться, если поставщиком оболочка не указана" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "Насколько долго записи кеша в памяти будут оставаться действительными" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" "Разрешённый интервал кэшированных входов между интерактивными входами (в " "днях)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "Разрешённое количество неудачных попыток неинтерактивного входа" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -221,1276 +229,1276 @@ "Временной интервал (в минутах), в течение которого будет запрещён вход после " "достижения offline_failed_login_attempts" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Файл содержащий сертификаты CA" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Поставщик данных для идентификации" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Поставщик данных для проверки подлинности" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Поставщик данных для контроля доступа" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Поставщик операции смены пароля" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Поставщик данных для идентификации" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Минимальный ID пользователя" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Максимальный ID пользователя" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Включить перечисление всех пользователей/групп" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Кэшировать учётные данные для неинтерактивного входа" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Хранить хеши паролей" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Отображать пользователей/группы в полной форме" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Тайм-аут элемента списка кэша (в секундах)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" "Ограничивать или предпочитать определённое семейство адресов при выполнении " "запросов DNS" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Как долго хранить кэшированные элементы списка после последнего успешного " "входа (в днях)" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "Время ожидания ответа DNS при преобразовании имён серверов (секунд)" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "Доменная часть DNS-запроса поиска служб" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "Интерфейс, адрес которого будет использован для обновления DNS" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA-домен" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "адрес сервера IPA" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "имя узла клиента IPA" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "Если требуется автоматическое обновление записи в" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "Фильтр LDAP для определения прав доступа" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Имя сервера Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Область действия Kerberos" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Тайм-аут проверки подлинности" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Каталог для хранения кэшей учётных данных" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Расположения кэша учётных данных пользователей" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Расположение keytab-файла для проверки учётных данных" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Включить проверку учётных данных" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" "При отсутствии соединения сохранить пароль и пройти аутентификацию позже" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "Сервер, на котором запущена служба смены пароля (если не на KDC)" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, URI сервера LDAP " -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "Base DN по умолчанию" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Тип схемы, используемой на LDAP-сервере, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "Bind DN по умолчанию" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "Тип маркера проверки подлинности для bind DN по умолчанию" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "Маркер проверки подлинности для bind DN по умолчанию" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Временной интервал для попытки соединения" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Временной интервал для попытки синхронизации операций LDAP" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" "Временной интервал между попытками возобновления соединения в автономного " "режиме" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Файл содержащий сертификаты CA" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Путь к каталогу с сертификатами CA" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Требуется проверка сертификата TLS" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Укажите механизм sasl" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Укажите идентификатор авторизации sasl" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Keytab-файл службы Kerberos" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Использовать проверку подлинности Kerberos для LDAP-соединения" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Следовать ссылкам LDAP" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "Время жизни TGT для LDAP-соединений" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Временной интервал, в течение которого ожидать поискового запроса" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Временной интервал между обновлениями перечисления" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "Требовать TLS для запросов ID" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "Base DN для поиска" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Глубина поиска" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Фильтр поиска" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Objectclass для пользователей" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Атрибут «username»" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "Атрибут «UID»" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Атрибут «primary GID»" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "Атрибут «GECOS»" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Атрибут домашнего каталога" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Атрибут оболочки" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Атрибут участника-пользователя (для Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Полное имя" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "Атрибут memberOf" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Атрибут времени изменения" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Политика вычисления окончания срока действия пароля" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Разделённый запятыми список разрешённых пользователей" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Разделённый запятыми список запрещённых пользователей" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Оболочка по умолчанию, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Место для домашних каталогов" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "Имя используемой библиотеки NSS" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "Используемый стек PAM" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Запускаться в качестве службы (по умолчанию)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Запускаться интерактивно (не службой)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Указать файл конфигурации" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Уровень отладки" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Добавить отладочные отметки времени" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Открытый дескриптор файла для журналов отладки" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Область действия Kerberos" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Домен поставщика информации (обязательный)" @@ -1520,88 +1528,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Сообщение сервера:" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Пароли не совпадают" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", срок действия вашего кэшированного пароль истечёт:" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "Система находится в автономном режиме, невозможно сменить пароль" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Не удалось сменить пароль." -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Новый пароль:" -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Введите новый пароль ещё раз:" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Пароль:" -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Текущий пароль:" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "Срок действия пароля истёк. Необходимо сейчас изменить ваш пароль." @@ -1610,7 +1618,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "Уровень отладки для запуска" @@ -1623,7 +1631,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "" @@ -2068,102 +2076,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Ошибка в транзакции. Не удалось изменить пользователя.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" diff -Nru sssd-1.15.0/po/sssd.pot sssd-1.15.2/po/sssd.pot --- sssd-1.15.0/po/sssd.pot 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/sssd.pot 2017-03-15 16:53:24.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME \n" "Language-Team: LANGUAGE \n" @@ -58,1401 +58,1409 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 -msgid "SSSD Services to start" +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" msgstr "" #: src/config/SSSDConfig/__init__.py.in:57 -msgid "SSSD Domains to start" +msgid "SSSD Services to start" msgstr "" #: src/config/SSSDConfig/__init__.py.in:58 -msgid "Timeout for messages sent over the SBUS" +msgid "SSSD Domains to start" msgstr "" #: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 -msgid "Regex to parse username and domain" +msgid "Timeout for messages sent over the SBUS" msgstr "" #: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 -msgid "Printf-compatible format for displaying fully-qualified names" +#: src/config/SSSDConfig/__init__.py.in:184 +msgid "Regex to parse username and domain" msgstr "" #: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 +msgid "Printf-compatible format for displaying fully-qualified names" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 msgid "Tune certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 msgid "Files negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 msgid "Path to storage of trusted CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 msgid "SELinux provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 msgid "Kerberos realm to use" msgstr "" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1480,88 +1488,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr "" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "" -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "" -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "" -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "" @@ -1570,7 +1578,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "" @@ -1583,7 +1591,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "" @@ -2013,102 +2021,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/sv.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/sv.gmo differ diff -Nru sssd-1.15.0/po/sv.po sssd-1.15.2/po/sv.po --- sssd-1.15.0/po/sv.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/sv.po 2017-03-15 16:53:24.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:48-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Swedish (http://www.transifex.com/projects/p/sssd/language/" @@ -63,29 +63,33 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "Inaktiv tid före en klient automatiskt kopplas ifrån" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "SSSD-tjänster att starta" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "SSSD-domäner att starta" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Tidsgräns för meddelanden skickade via SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "Reguljäruttryck för att tolka användarnamn och domän" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "Printf-kompatibla format för att visa fullständigt kvalificerade namn" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." @@ -93,85 +97,89 @@ "Katalog på filsystemet där SSSD skall lagra sparade återspolningsfiler från " "Kerberos." -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "Domän att lägga till till namn utan en domändel." -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Kräv TLS-certifikatverifiering" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "Tidsgränslängd för uppräkningscache (sekunder)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "Tidsgränslängd för bakgrundsuppdateringar av postcache (sekunder)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "Tidsgränslängd för negativ cache (sekunder)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Tidsgränslängd för negativ cache (sekunder)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Användare som SSSD uttryckligen skall bortse ifrån" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Grupper som SSSD uttryckligen skall bortse ifrån" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Skall filtrerade användare förekomma i grupper" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "Värdet på lösenordfältet som NSS-leverantörer skall returnera" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "Åsidosätt hemkatalogvärdet från identitetsleverantören med detta värde" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" "Ersätt ett tomt hemkatalogvärde från identitetsleverantören med detta värde" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "Åsidosätt skalvärdet från identitetsleverantören med detta värde" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "Listan på skal användare får lova att logga in med" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "Listan på skal som kommer förbjudas, och ersättas med standardskalet" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" @@ -179,29 +187,29 @@ "Om ett skal lagrat i en central katalog är tillåtet men inte tillgängligt, " "använd detta alternativ" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "Skal att använda om leverantören inte listar något" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "Hur länge sparade poster i minnet är giltiga" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 #, fuzzy msgid "List of user attributes the NSS responder is allowed to publish" msgstr "Lista över aänvändarattribut InfoPipe får publicera" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" "Hur länge sparade inloggningar tillåts mellan online-inloggningar (dagar)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "Hur många misslyckade inloggningsförsök som tillåts i frånkopplat läge" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -209,64 +217,64 @@ "Hur länge (minuter) som inloggning nekas efter att " "frånkopplade_inloggningsförsök har nåtts" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "Vilka slags meddelanden som visas för användaren under autenticering" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "Hur många sekunder identitetsinformationen hålls sparad för PAM-frågor" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "Hur många dagar före ett lösenord går ut en varning skall visas" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "Om tidsbaserade attribut i sudo-regler skall beräknas" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" "Om värdnamn och adresser i known_hosts-filen skall göras till kontrollsummor" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" @@ -274,613 +282,613 @@ "Hur många sekunder att behålla en värd i filen known_hosts efter att dess " "värdnycklar begärdes" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Fil som innehåller CA-certifikat" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "Lista över UID:er eller användarnamn som tillåts komma åt PAC-svararen" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" "Lista över UID:er eller användarnamn som tillåts komma åt InfoPipe-svararen" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "Lista över aänvändarattribut InfoPipe får publicera" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Identifiera leverantör" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Autentiseringsleverantör" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Leverantör av åtkomstkontroll" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Leverantör av lösenordsändringar" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "SUDO-leverantör" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "Autofs-leverantör" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "Värdidentiftetsleverantör" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "SUDO-leverantör" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Minsta användar-ID" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Största användar-ID" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Aktivera uppräkning av alla användare/grupper" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Cache-kreditiv för frånkopplad inloggning" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Lagra lösenords-kontrollsummor" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Visa användare/grupper i fullständigt kvalificerat format" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "Inkludera inte gruppmedlemmar i gruppuppslagningar" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Tidsgränslängd för postcache (sekunder)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "Begränsa eller föredra en specifik adressfamilj vid DNS-uppslagningar" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Hur länge cachade poster skall behållas efter senaste lyckade inloggning " "(dagar)" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "Hur länge man väntar på svar från DNS när servrar slås upp (sekunder)" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "Domändelen av DNS-frågan för tjänstedetektering" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "Åsidosätt GID-värdet från identitetsleverantören med detta värde" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "Behandla användarnamn som skiftlägeskänsliga" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "Hur ofta utgångna poster skall förnyas i bakgrunden" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "Huruvida klienternas DNS-poster uppdateras automatiskt" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "TTL:en att använda för klientens DNS-post efter att ha uppdaterat den" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "Gränssnittet var IP skall användas för dynamiska DNS-uppdateringar" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "Hur ofta klienternas DNS-poster periodiskt skall uppdateras" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "Huruvida leverantören explicit skall uppdatera PTR-posten också" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "Huruvida verktyget nsupdate skall använda TCP som standard" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" "Vilken sorts autenticering som skall användas för att utföra DNS-" "uppdateringen" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 #, fuzzy msgid "Override the DNS server used to perform the DNS update" msgstr "" "Vilken sorts autenticering som skall användas för att utföra DNS-" "uppdateringen" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "Styr uppräkning av betrodda domäner" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "Hur ofta skall listan över underdomäner uppdateras" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA-domän" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "IPA-serveradress" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "Adress till reserv-IPA-server" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "IPA-klienvärdnamn" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "Om klientens DNS-post i FreeIPA automatiskt skall uppdateras" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "Sökbas för HBAC-relaterade objekt" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "Tidsåtgången mellan uppslagningar av HBAC-reglerna mot IPA-servern" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" "Tiden i sekunder mellan uppslagningar av SELinux-mappningar mot IPA-servern" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "Om satt till falskt kommer värdargument givna av PAM ignoreras" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "Platsen för automatmonteraren denna IPA-klient använder" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "Sökbas för objekt som innehåller information om IPA-domänen" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "Sökbas för objekt som innehåller information om ID-intervall" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "Aktivera DNS-sajter - platsbaserad detektering av tjänster" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "Active Directory-domän" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 #, fuzzy msgid "Enabled Active Directory domains" msgstr "Active Directory-domän" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "Adress till Active Directory-server" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "Adress till Active Directory-reservserver" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "Active Directory-klienvärdnamn" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "LDAP-filter för att bestämma åtkomstprivilegier" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "Huruvida den globala katalogen skall användas för uppslagningar" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "Arbetsläge för GPO-baserad åtkomstkontrol" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Adress till server för Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "Adress till reservserver för Kerberos" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Kerberosrike" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Autentiseringstidsgräns" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "Huruvida kdcinfo-filer skall skapas" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Katalog att lagra kreditiv-cachar i" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Plats för användarens kreditiv-cache" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Plats för nyckeltabellen för att validera kreditiv" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Aktivera validering av kreditiv" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "Lagra lösenord när ej ansluten för ansluten autentisering senare" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "Förnybar livstid för TGT:n" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "Livstid för TGT:n" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "Tid mellan två kontroller av förnyelse" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "Aktiverar FAST" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "Väljer huvudman att använda för FAST" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "Aktivera kanonsisk form av huvudman" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "Aktiverar företagshuvudmän" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "Server där ändringstjänsten för lösenord kör om inte på KDC:n" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, URI:n för LDAP-servern" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "ldap_backup_uri, URI:n för LDAP-servern" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "Standard bas-DN" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Schematypen som används i LDAP-servern, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "Standard bindnings-DN" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "Typen på autenticerings-token för standard bindnings-DN" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "Autenticerings-token för standard bindnings-DN" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Tidslängd att försöka ansluta" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Tidslängd att försök synkrona LDAP-operationer" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "Tidslängd mellan försök att återansluta vid frånkoppling" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "Använd endast versaler för namn på riken" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Fil som innehåller CA-certifikat" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Sökväg till katalogen med CA-certifikat" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "Fil som innehåller klientcertifikatet" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "Fil som innehåller klientnyckeln" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "Lista över möjliga chiffersviter" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Kräv TLS-certifikatverifiering" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Ange sasl-mekanismen att använda" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Ange sasl-auktorisering-id att använda" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "Ange sasl-auktoriseringsrike att använda" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "Ange minsta SSF för LDAP-sasl-auktorisering" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Kerberostjänstens nyckeltabell" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Avnänd Kerberosautenticering för LDAP-anslutning" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Följer LDAP-hänvisningar" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "Livslängd på TGT för LDAP-anslutning" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "Hur alias skall derefereras" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "Tjänstenamn för uppslagning av DNS-tjänster" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "Antalet poster som skall hämtas i en enda LDAP-fråga" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" "Antalet medlemmar som måste saknas för att orsaka en fullständig dereferering" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" @@ -888,382 +896,382 @@ "Huruvida LDAP-biblioteket skall utföra en omvänd uppslagning för att ta fram " "värdnamnets kanoniska form under en SASL-bindning" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "entryUSN-attribut" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "lastUSN-attribut" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" "Hur länge en anslutning till LDAP-servern skall behållas före den kopplas ner" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "Avaktivera flödesstyrningen (paging) av LDAP" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "Avaktivera Active Directorys intervallhämtande" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Tidslängd att vänta på en sökbegäran" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "Tidslängd att vänta på en uppräkningsbegäran" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Tidslängd mellan uppräkningsuppdateringar" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "Tidslängd mellan cache-tömningar" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "Kräv TLS för ID-uppslagningar" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "Använd ID-översättning av objectSID istället för pre-set ID:n" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "Bas-DN för användaruppslagningar" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Omfång av användaruppslagningar" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Filter för användaruppslagningar" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Objektklass för användare" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Användarnamnsattribut" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "UID-attribut" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Primärt GID-attribut" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "GECOS-attribut" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Hemkatalogattribut" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Skalattribut" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "objectSID-attribut" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "Primärt gruppattribut i Active Directory för ID-mappning" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Användarens huvudmansattribut (för Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Fullständigt namn" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "medlemAv-attribut" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Modifieringstidsattribut" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "attributet shadowLastChange" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "shadowMin-attribut" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "shadowMax-attribut" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "shadowWarning-attribut" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "shadowInactive-attribut" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "shadowExpire-attribut" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "shadowFlag-attribut" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "Attribut för listning av auktoriserade PAM-tjänster" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "Attribut för listning av auktoriserade servervärdar" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "attributet krbLastPwdChange" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "krbPasswordExpiration-attribut" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "Attribut som indikerar att serversidans lösenordspolicyer är aktiva" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "AD:s attribut accountExpires" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "AD:s attribut userAccountControl" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "attributet nsAccountLock" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "NDS attribut loginDisabled" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "NDS attribut loginExpirationTime" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "NDS attribut loginAllowedTimeMap" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "Attribut för publik SSH-nyckel" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "En lista över extra attribut att hämta tillsammans med användarposten" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "Bas-DN för gruppuppslagningar" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "Objektklass för grupper" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Gruppnamn" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Grupplösenord" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "GID-attribut" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "Gruppmedlemsattribut" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "Modifieringstidsattribut för grupper" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "Typen av grupp och andra flaggor" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 #, fuzzy msgid "The LDAP group external member attribute" msgstr "Attribut på nätgruppmedlemmar" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "Maximal nästningsnivå SSSd kommer följa" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "Bas-DN för nätgruppuppslagningar" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "Objektklass för nätgrupper" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "Nätgruppnamn" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "Attribut på nätgruppmedlemmar" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "Attribut på nätgruppstripplar" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "Modifieringstidsattribut för nätgrupper" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "Bas-DN för tjänsteuppslagningar" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "Objektklass för tjänster" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "Tjänstenamnsattribut" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "Tjänsteportsattribut" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "Tjänsteprotokollsattribut" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "Undre gräns för ID-mappning" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "Övre gräns för ID-mappning" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "Antal ID:n till varje skiva vid ID-mappning" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "Använd en autorid-kompatibel algoritm för ID-mappning" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "Standarddomänens namn för ID-mappning" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "Standarddomänens SID för ID-mappning" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "Använd LDAP_MATCHING_RULE_IN_CHAIN för gruppuppslagningar" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "Använd LDAP_MATCHING_RULE_IN_CHAIN för init-gruppuppslagningar" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "Huruvida Token-Groups skall användas" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "Sätt undre gräns för tillåtna ID:n från LDAP-servern" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "Sätt övre gräns för tillåtna ID:n från LDAP-servern" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Policy för att utvärdera utgång av lösenord" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "Vilka attribut skall användas för att avgöra om ett konto gått ut" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "Vilka regler skall användas för att avgöra åtkomstkontroll" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "URI till en LDAP-server där lösenordsändringar är tillåtna" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "URI till en reserv-LDAP-server där lösenordsändringar är tillåtna" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "DNS-tjänstenamn för LDAP-lösenordsändringsservern" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" @@ -1271,24 +1279,24 @@ "Huruvida attributet ldap_user_shadow_last_change skall uppdateras efter en " "ändring av lösenord" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "Bas-DN för regeluppslagningar" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "Intervall mellan automatisk fullständig omläsning" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "Intervall mellan automatisk smart omläsning" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" "Huruvida regler skall filtreras efter värdnamn, IP-adresser och nätverk" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" @@ -1296,213 +1304,213 @@ "Värdnamn och/eller fullständigt kvalificerade domännamn på denna maskin för " "att filtrera sudo-regler" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" "IPv4- eller IPv6-adresser eller -nätverk för denna maskin för att filtrera " "sudo-regler" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" "Huruvida regler som innehåller nätgrupper i värdattribut skall inkluderas" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" "Huruvida regler som innehåller reguljära uttryck i värdattribut skall " "inkluderas" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "Objektklass för sudo-regler" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "Sudo-regelnamn" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "Attribut för sudo-regelkommandon" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "Attribut för sudo-regelvärd" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "Attribut för sudo-regelanvändare" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "Attribut för sudo-regelflaggor" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "Attribut för sudo-runasuser" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "Attribut på runasgroup i sudo-regel" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "Attribut för sudo-notbefore-regler" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "Attribut för sudo-notafter-regler" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "Attribut för sudo-order-regler" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "Objektklass för automatmonteraravbildningar" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "Attribut för automatmonteraravbildningsnamn" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "Objektklass för poster i automatmonteraravbildningar" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "Attribut för postnycklar i automatmonteraravbildningar" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "Attribut på postvärde i avbildning för automatmonteraren" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "Bas-DN för uppslagningar i automatmonteraravbildningar" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Kommaseparerad lista över tillåtna användare" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Kommaseparerad lista över förbjudna användare" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Standardskal, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Bas för hemkataloger" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "Namnet på NSS-biblioteket att använda" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "Huruvida kanoniska gruppnamn skall slås upp från cachen om möjligt" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "PAM-stack att använda" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Bli en demon (standard)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Kör interaktivt (inte en demon)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Ange en konfigurationsfil annan än standard" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "Skriv ut versionsnumret och avsluta" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Felsökningsnivå" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Lägg till felsökningstidstämplar" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "Visa tidsstämplar med mikrosekunder" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Ett öppet filhandtag för felsökningsloggarna" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Kerberosrike" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 #, fuzzy msgid "Requested lifetime of the ticket" msgstr "Förnybar livstid för TGT:n" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 #, fuzzy msgid "Requested renewable lifetime of the ticket" msgstr "Förnybar livstid för TGT:n" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 #, fuzzy msgid "Specifies the server principal to use for FAST" msgstr "Väljer huvudman att använda för FAST" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Domän för informationsleverantören (obligatoriskt)" @@ -1530,50 +1538,50 @@ msgid "Unexpected error while looking for an error description" msgstr "Oväntat fel vid sökning efter ett felmeddelande" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Servermeddelande: " -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Lösenorden stämmer inte överens" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "Återställning av lösenord av root stöds inte." -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "Autentiserad med cachade kreditiv" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", ditt cache-lösenord kommer gå ut: " -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "Ditt lösenord har gått ut. Du har en frist på %1$d inloggningar kvar." -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "Ditt lösenordet kommer gå ut om %1$d %2$s." -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "Autentisering nekas till: " -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "Systemet är frånkopplat, ändring av lösenord är inte möjligt" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" @@ -1581,39 +1589,39 @@ "Efter att ha ändrat OTP-lösenordet behöver du logga ut och tillbaka in för " "att få en biljett" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Lösenordsändringen misslyckades. " -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Nytt lösenord: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Skriv det nya lösenordet igen: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Lösenord: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Nuvarande lösenord: " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "Lösenordet har gått ut. Ändra ditt lösenord nu." @@ -1622,7 +1630,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "Felsökningsnivån att köra med" @@ -1635,7 +1643,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "Fel när lokalen sattes\n" @@ -2093,98 +2101,98 @@ msgid "Transaction error. Could not modify user.\n" msgstr "Transaktionsfel. Det gick inte att ändra användaren.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "Inga cache-objekt matchade den angivna sökningen\n" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 #, fuzzy msgid "Invalidate all cached entries" msgstr "Invalidera alla tjänster" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "Invalidera en viss användare" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "Invalidera alla användare" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "Invalidera en viss grupp" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "Invalidera alla grupper" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "Invalidera en viss nätgrupp" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "Invalidera alla nätgrupper" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "Invalidera en viss tjänst" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "Invalidera alla tjänster" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "Invalidera en viss autofs-mapp" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "Invalidera alla autofs-mappar" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 #, fuzzy msgid "Invalidate particular sudo rule" msgstr "Invalidera en viss användare" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 #, fuzzy msgid "Invalidate all cached sudo rules" msgstr "Invalidera alla cachade poster utom sudo-regler" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "Invalidera endast poster från en viss domän" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "Välj åtminstone ett objekt att invalidera\n" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " @@ -2193,7 +2201,7 @@ "Kunde inte öppna domänen %1$s. Om domänen är en underdomän (betrodd domän), " "använd fullt kvalificerat namn istället för parametrarna --domain/-d.\n" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "Kunde inte öppna tillgängliga domäner\n" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/tg.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/tg.gmo differ diff -Nru sssd-1.15.0/po/tg.po sssd-1.15.2/po/tg.po --- sssd-1.15.0/po/tg.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/tg.po 2017-03-15 16:53:24.000000000 +0000 @@ -7,7 +7,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:48-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Tajik (http://www.transifex.com/projects/p/sssd/language/" @@ -60,1401 +60,1409 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 -msgid "SSSD Services to start" +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" msgstr "" #: src/config/SSSDConfig/__init__.py.in:57 -msgid "SSSD Domains to start" +msgid "SSSD Services to start" msgstr "" #: src/config/SSSDConfig/__init__.py.in:58 -msgid "Timeout for messages sent over the SBUS" +msgid "SSSD Domains to start" msgstr "" #: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 -msgid "Regex to parse username and domain" +msgid "Timeout for messages sent over the SBUS" msgstr "" #: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 -msgid "Printf-compatible format for displaying fully-qualified names" +#: src/config/SSSDConfig/__init__.py.in:184 +msgid "Regex to parse username and domain" msgstr "" #: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 +msgid "Printf-compatible format for displaying fully-qualified names" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 msgid "Tune certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 msgid "Files negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 msgid "Path to storage of trusted CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 msgid "SELinux provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Номи гурӯҳ" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Пароли гурӯҳ" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "Аттрибути GID" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 msgid "Kerberos realm to use" msgstr "" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1482,88 +1490,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Паролҳо номувофиқанд" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr "" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "" -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Пароли нав:" -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Парол:" -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "" @@ -1572,7 +1580,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "" @@ -1585,7 +1593,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "" @@ -2015,102 +2023,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/tr.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/tr.gmo differ diff -Nru sssd-1.15.0/po/tr.po sssd-1.15.2/po/tr.po --- sssd-1.15.0/po/tr.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/tr.po 2017-03-15 16:53:24.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:49-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Turkish (http://www.transifex.com/projects/p/sssd/language/" @@ -61,1401 +61,1409 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 -msgid "SSSD Services to start" +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" msgstr "" #: src/config/SSSDConfig/__init__.py.in:57 -msgid "SSSD Domains to start" +msgid "SSSD Services to start" msgstr "" #: src/config/SSSDConfig/__init__.py.in:58 -msgid "Timeout for messages sent over the SBUS" +msgid "SSSD Domains to start" msgstr "" #: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 -msgid "Regex to parse username and domain" +msgid "Timeout for messages sent over the SBUS" msgstr "" #: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 -msgid "Printf-compatible format for displaying fully-qualified names" +#: src/config/SSSDConfig/__init__.py.in:184 +msgid "Regex to parse username and domain" msgstr "" #: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 +msgid "Printf-compatible format for displaying fully-qualified names" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 msgid "Tune certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 msgid "Files negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 msgid "Path to storage of trusted CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 msgid "SELinux provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "En az kullanıcı ID'si" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "En fazla kullanıcı ID'si" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA alanı" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Kerberos sunucu adresi" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 msgid "Kerberos realm to use" msgstr "" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1483,88 +1491,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr "" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "" -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "" -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "" -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "" @@ -1573,7 +1581,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "" @@ -1586,7 +1594,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "" @@ -2016,102 +2024,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/uk.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/uk.gmo differ diff -Nru sssd-1.15.0/po/uk.po sssd-1.15.2/po/uk.po --- sssd-1.15.0/po/uk.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/uk.po 2017-03-15 16:53:24.000000000 +0000 @@ -11,7 +11,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2015-06-24 09:50-0400\n" "Last-Translator: Yuri Chornoivan \n" "Language-Team: Ukrainian (http://www.transifex.com/projects/p/sssd/language/" @@ -69,29 +69,33 @@ msgstr "" "Проміжок бездіяльності до автоматичного від’єднання клієнтської частини" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "Служби SSSD, які слід запустити" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "Домени SSSD, які слід запустити" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "Час очікування для повідомлень, надісланих за допомогою SBUS" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "Формальний вираз для обробки імені користувача і домену" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "Сумісний з printf формат показу повних назв" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." @@ -99,89 +103,93 @@ "Каталог у файловій системі, де SSSD має зберігати файли кешу відтворення " "Kerberos." -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "Домен, який слід додати до назв без компонента домену." -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "Користувач, привілеї якого слід скинути" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "Потрібна перевірка сертифіката TLS" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" "Усі пробіли у назвах груп і іменах користувачів буде замінено на цей символ" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "Тривалість часу очікування на дані кешу нумерування (у секундах)" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "Час очікування на фонове оновлення кешу записів (у секундах)" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "Від’ємний час очікування на дані з кешу (у секундах)" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 #, fuzzy msgid "Files negative cache timeout length (seconds)" msgstr "Від’ємний час очікування на дані з кешу (у секундах)" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "Користувачі, яких SSSD має явно ігнорувати" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "Групи користувачів, які SSSD має явно ігнорувати" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "Чи слід показувати відфільтрованих користувачів у групах" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "Значення поля пароля, яке має повертати постачальник даних NSS" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" "Замінити значення назви домашнього каталогу від надавача профілю цим " "значенням" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" "Замінювати порожні значення домашніх каталогів у засобі надання даних " "профілів цим значенням" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "Замінити значення оболонки від надавача профілю цим значенням" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "Список оболонок, за допомогою яких можуть входити користувачі" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "Список оболонок, які буде заборонено і замінено резервною оболонкою" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" @@ -189,30 +197,30 @@ "Якщо оболонка, що зберігається у центральному каталозі дозволена, але " "недоступна, використовувати цю резервну" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "Оболонка, яку слід використовувати, якщо засіб не надає жодної" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "Строк дії записів кешу у пам’яті" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 #, fuzzy msgid "List of user attributes the NSS responder is allowed to publish" msgstr "Список атрибутів запису користувача, які може оприлюднювати InfoPipe" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" "Тривалість зберігання кешованих реєстраційних даних між входами до системи " "(у днях)" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "Макс. дозволена кількість помилкових спроб входу у автономному режимі" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" @@ -220,75 +228,75 @@ "Тривалість (у хвилинах) заборони входу після досягнення значення " "offline_failed_login_attempts" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "Тип повідомлень, які буде показано користувачеві під час розпізнавання" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" "Тривалість (у секундах) зберігання даних щодо розпізнавання у кеші для " "запитів PAM" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" "Визначає кількість днів між днем, коли має бути показано попередження, і " "днем, коли завершиться строк дії пароля" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "Список надійних UUID або імен користувачів" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" "Список доменів, доступ до яких відкрито навіть для ненадійних користувачів." -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" "Повідомлення, яке буде виведено, коли строк дії облікового запису " "користувача буде завершено." -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 #, fuzzy msgid "Message printed when user account is locked." msgstr "" "Повідомлення, яке буде виведено, коли строк дії облікового запису " "користувача буде завершено." -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" "Визначає, чи слід обробляти атрибути правил sudo, пов’язані з часовими " "обмеженнями" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "Чи слід хешувати назви та адреси вузлів у файлі known_hosts" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" @@ -296,377 +304,377 @@ "Кількість секунд, протягом яких запису вузла зберігатиметься у файлі " "known_hosts після надсилання запиту щодо ключів вузла" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 #, fuzzy msgid "Path to storage of trusted CA certificates" msgstr "Файл, що містить сертифікати CA" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" "Список унікальних ідентифікаторів (UID) або імен користувачів, яким надано " "доступ до відповідача PAC" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" "Список унікальних ідентифікаторів (UID) або імен користувачів, яким надано " "доступ до відповідача InfoPipe" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "Список атрибутів запису користувача, які може оприлюднювати InfoPipe" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "Служба профілів" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "Служба розпізнавання" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "Служба керування доступом" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "Служба зміни паролів" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "Служба SUDO" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "Служба автоматизації файлових систем" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "Служба профілів вузлів" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "Служба SUDO" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "Мін. ідентифікатор користувача" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "Макс. ідентифікатор користувача" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "Увімкнути нумерацію всіх користувачів/груп" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "Кешувати реєстраційні дані для автономного входу" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "Зберігати хеші паролів" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "Показувати записи користувачів/груп повністю" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "Не включати учасників групи у пошуки групи" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "Тривалість кешування записів (у секундах)" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" "Обмежити або надавати перевагу певному сімейству адрес під час виконання " "пошуків DNS" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" "Тривалість зберігання кешованих записів після останнього успішного входу (у " "днях)" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" "Тривалість очікування на відповідь від DNS під час визначення адрес серверів " "(у секундах)" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "Частина запиту щодо виявлення служби DNS, пов’язана з доменом" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" "Замінити значення ідентифікатора групи від надавача профілю цим значенням" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "Враховувати регістр у іменах користувачів" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "Наскільки часто має виконувати оновлення у тлі застарілих записів" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "Визначає, чи слід автоматично оновлювати запис DNS клієнта" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" "TTL, який слід застосовувати до запису DNS клієнта після його оновлення" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" "Інтерфейс, чию адресу IP має бути використано для динамічних оновлень DNS" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "Визначає, наскільки часто слід періодично оновлювати запис DNS клієнта" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" "Визначає, чи слід надавачу даних також явним чином оновлювати запис PTR" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "Визначає, чи слід програмі nsupdate типово використовувати TCP" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" "Визначає тип розпізнавання, який слід використовувати для виконання " "оновлення DNS" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 #, fuzzy msgid "Override the DNS server used to perform the DNS update" msgstr "" "Визначає тип розпізнавання, який слід використовувати для виконання " "оновлення DNS" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "Керувати нумерацією надійних доменів" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "Частота оновлення списку піддоменів" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "Список параметрів, які має бути успадковано у піддомені" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "Домен IPA" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "Адреса сервера IPA" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "Адреса резервного сервера IPA" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "Назва вузла клієнта IPA" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" "Визначає, чи слід автоматично оновлювати запис DNS клієнтського вузла у " "FreeIPA" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "Шукати у базі об’єкти, пов’язані з HBAC" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" "Інтервал часу між послідовними сеансами пошуку правил HBAC на сервері IPA" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "Час, у секундах, між пошуками у картах SELinux на сервері IPA" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" "Якщо встановлено значення «false», аргумент вузла, наданий PAM, буде " "проігноровано" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "Адреса автоматичного монтування, яку використовує цей клієнт IPA" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "Шукати у базі об’єкт, що містить дані щодо домену IPA" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "Шукати у базі об’єкти, що містять дані щодо діапазонів ідентифікаторів" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "Увімкнути сайти DNS — визначення служб на основі адрес" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "Шукати у базі контейнери перегляду" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "Клас об’єктів для контейнерів перегляду" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "Атрибут із назвою перегляду" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "Клас об’єктів для об’єктів перевизначення" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "Атрибут із посиланням на початковий об’єкт" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "Клас об’єктів для об’єктів перевизначення користувачів" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "Клас об’єктів для об’єктів перевизначення груп" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "Домен Active Directory" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 #, fuzzy msgid "Enabled Active Directory domains" msgstr "Домен Active Directory" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "Адреса сервера Active Directory" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "Адреса резервного сервера Active Directory" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "Назва клієнтського вузла Active Directory" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "Фільтр LDAP для визначення прав доступу" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "Чи слід використовувати загальний каталог для пошуку" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "Режим роботи для керування доступом на основі GPO" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" "Інтервал часу між послідовними сеансами пошуку правил GPO на сервері AD" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" @@ -674,7 +682,7 @@ "Назви служб PAM, які виконують прив’язування до параметрів правил GPO " "(Deny)InteractiveLogonRight" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" @@ -682,261 +690,261 @@ "Назви служб PAM, які виконують прив’язування до параметрів правил GPO " "(Deny)RemoteInteractiveLogonRight" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" "Назви служб PAM, які виконують прив’язування до параметрів правил GPO " "(Deny)NetworkLogonRight" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" "Назви служб PAM, які виконують прив’язування до параметрів правил GPO " "(Deny)BatchLogonRight" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" "Назви служб PAM, які виконують прив’язування до параметрів правил GPO " "(Deny)ServiceLogonRight" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "Назви служб PAM, яким завжди надається доступ на основі GPO" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "Назви служб PAM, яким ніколи не надається доступ на основі GPO" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" "Типове правило входу (або допуск/заборона), яким слід користуватися для " "неприв’язаних назв служб PAM" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "певний сайт, який слід використовувати клієнту" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Адреса сервера Kerberos" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "Адреса резервного сервера Kerberos" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "Область Kerberos" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "Час очікування на розпізнавання" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "Визначає, чи слід створювати файли kdcinfo" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "Місце, куди слід скидати фрагменти налаштувань krb5" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "Каталог, де зберігатиметься кеш реєстраційних даних" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "Адреса кешу реєстраційних даних користувача" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "Адреса таблиці ключів для перевірки реєстраційних даних" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "Увімкнути перевірку реєстраційних даних" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "Зберігати пароль у автономному режимі для розпізнавання у мережі" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "Поновлюваний строк дії TGT" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "Строк дії TGT" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "Граничний час між двома перевірками для поновлення" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "Вмикає FAST" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "Визначає реєстраційний запис, який слід використовувати для FAST" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "Вмикає перетворення реєстраційних записів у канонічну форму" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "Увімкнути промислові реєстраційні дані" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "Прив’язка імен користувачів до основних імен kerberos" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" "Сервер, на якому запущено службу зміни паролів, якщо такий не вдасться " "виявити у KDC" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "ldap_uri, адреса URI сервера LDAP" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "ldap_backup_uri, адреса сервера LDAP" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "Типова базова назва домену" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "Тип схеми, використаний на сервері LDAP, rfc2307" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "Типова назва домену прив’язки" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "Тип розпізнавання для типової назви сервера прив’язки" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "Лексема розпізнавання типової назви сервера прив’язки" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "Проміжок часу між спробами встановлення з’єднання" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "Проміжок часу між спробами виконання синхронних операцій LDAP" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" "Проміжок часу між повторними спробами встановлення з’єднання у автономному " "режимі" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "Використовувати для назв областей лише великі літери" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "Файл, що містить сертифікати CA" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "Шлях до каталогу сертифікатів CA" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "Файл, що містить клієнтський сертифікат" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "Файл, що містить клієнтський ключ" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "Показати список можливих інструментів шифрування" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "Потрібна перевірка сертифіката TLS" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "Вкажіть механізм SASL, який слід використовувати" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "Вкажіть ідентифікатор уповноваження SASL, який слід використовувати" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "Вкажіть область уповноваження SASL, яку слід використовувати" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" "Вказати мінімальне значення SSF для розпізнавання на LDAP за допомогою sasl" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "Таблиця ключів служби Kerberos" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "Розпізнавання Kerberos для з’єднання LDAP" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "Переходити за посиланнями LDAP" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "Строк дії TGT для з’єднання LDAP" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "Спосіб розіменування псевдонімів" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "Назва служби для пошуків за допомогою служби DNS" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "Кількість записів, які слід отримувати у відповідь на один запит LDAP" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" "Кількість учасників, яких має не вистачати для вмикання повного скасування " "посилань" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" @@ -944,396 +952,396 @@ "Визначає, чи має бібліотека LDAP виконувати зворотній пошук з метою " "переведення назв вузлів у канонічну форму під час прив’язки до SASL" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "Атрибут entryUSN" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "Атрибут lastUSN" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "Тривалість підтримування з’єднання з сервером LDAP перед роз’єднанням" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "Вимкнути контроль сторінок у LDAP" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "Вимкнути отримання діапазонів Active Directory" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "Тривалість очікування на дані запиту пошуку" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "Тривалість очікування на дані запиту щодо переліку" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "Проміжок часу між оновленнями нумерації" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "Проміжок часу між спорожненнями кешу" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "Вимагати TLS для пошуків ідентифікаторів" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" "Використовувати відповідності ідентифікаторів objectSID замість попередньо " "встановлених ідентифікаторів" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "Базова назва домену для пошуків користувачів" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "Діапазон пошуків користувачів" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "Фільтр пошуку користувачів" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "Клас об’єктів для користувачів" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "Атрибут імені користувача" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "Атрибут UID" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "Головний атрибут GID" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "Атрибут GECOS" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "Атрибут домашнього каталогу" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "Атрибут оболонки" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "Атрибут UUID" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "Атрибут objectSID" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" "Атрибут основної групи Active Directory для встановлення відповідності " "ідентифікатора" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "Атрибут реєстраційного запису користувача (для Kerberos)" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "Повне ім'я" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "Атрибут memberOf" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "Атрибут часу зміни" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "Атрибут shadowLastChange" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "Атрибут shadowMin" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "Атрибут shadowMax" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "Атрибут shadowWarning" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "Атрибут shadowInactive" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "Атрибут shadowExpire" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "Атрибут shadowFlag" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "Атрибути зі списком уповноважених служб PAM" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "Атрибути зі списком уповноважених серверних вузлів" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "Атрибут krbLastPwdChange" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "Атрибут krbPasswordExpiration" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" "Атрибут, що відповідає за активізацію правил обробки паролів на боці сервера" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "Атрибут accountExpires AD" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "Атрибут userAccountControl AD" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "Атрибут nsAccountLock" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "Атрибут loginDisabled NDS" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "Атрибут loginExpirationTime NDS" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "Атрибут loginAllowedTimeMap NDS" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "Атрибут відкритого ключа SSH" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "атрибут зі списком дозволених типів розпізнавання для користувача" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "атрибут, що містить сертифікат X509 користувача" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 #, fuzzy msgid "attribute containing the email address of the user" msgstr "атрибут, що містить сертифікат X509 користувача" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" "Список додаткових атрибутів, які слід отримувати разом із записом користувача" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "Базова назва домену для пошуків груп" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "Клас об’єктів для груп" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "Назва групи" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "Пароль групи" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "Атрибут GID" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "Атрибут членства у групі" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "Атрибут UUID групи" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "Атрибут часу зміни для груп" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "Тип групи та інші прапорці" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 #, fuzzy msgid "The LDAP group external member attribute" msgstr "Атрибут членства у групах у мережі" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "Максимальний рівень вкладеності, який використовуватиме SSSD" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "Базова назва домену для пошуків груп у мережі" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "Клас об’єктів для груп у мережі" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "Назва мережевої групи" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "Атрибут членства у групах у мережі" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "Атрибут трійки груп у мережі" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "Атрибут часу зміни для мережевих груп" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "Базова сервер назв домену для пошуку служб" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "Клас об’єктів для служб" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "Атрибут назви служби" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "Атрибут порту служби" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "Атрибут протоколу служби" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "Нижня межа встановлення відповідності ідентифікатора" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "Верхня межа встановлення відповідності ідентифікатора" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" "Кількість ідентифікаторів для кожного зрізу під час встановлення " "відповідності ідентифікаторів" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" "Використовувати для встановлення відповідності ідентифікаторів алгоритм, " "сумісний з autorid" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "Назва типового домену для встановлення відповідності ідентифікаторів" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "SID типового домену для встановлення відповідності ідентифікаторів" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "Використовувати LDAP_MATCHING_RULE_IN_CHAIN щодо пошуків груп (group)" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" "Використовувати LDAP_MATCHING_RULE_IN_CHAIN щодо пошуків початкових груп " "(initgroup)" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "Визначає, чи слід використовувати крупи реєстраційних записів" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "Встановити нижню межу для дозволених ідентифікаторів із сервера LDAP" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "Встановити верхню межу для дозволених ідентифікаторів із сервера LDAP" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "DN для запитів щодо ppolicy" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "Правила оцінки завершення строку дії пароля" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" "Атрибути які слід використовувати для визначення чинності облікового запису" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" "Правила, які має бути використано для визначення достатності прав доступу" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "Адреса на сервері LDAP, для якої можливі зміни паролів" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "Адреса резервного сервера LDAP, для якої можливі зміни паролів" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "Назва у службі DNS сервера зміни паролів LDAP" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" @@ -1341,25 +1349,25 @@ "Визначає, чи слід оновлювати атрибут ldap_user_shadow_last_change після " "зміни пароля" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "Базова назва домену для пошуків правил sudo" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "Період автоматичного повного оновлення даних" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "Період автоматичного кмітливого оновлення даних" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" "Визначає, чи слід фільтрувати правила за назвами вузлів, IP-адресами та " "мережами" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" @@ -1367,217 +1375,217 @@ "Назви вузлів і/або повні назви у домені для цього комп’ютера для " "фільтрування списку правил sudo" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" "Адреси IPv4 або IPv6 чи мережа цього комп’ютера для фільтрування списку " "правил sudo" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" "Визначає, чи слід включати правила, що містять мережеву групу у атрибуті " "вузла" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" "Визначає, чи слід включати правила, що містять формальний вираз у атрибуті " "вузла" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "Клас об’єктів для правил sudo" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "Назва правила sudo" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "Атрибут команди правила sudo" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "Атрибут вузла правила sudo" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "Атрибут користувача правила sudo" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "Атрибут параметрів правила sudo" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "Атрибут runas правила sudo" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" "Атрибут користувача, від імені якого виконуватиметься запуск, правила sudo" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "Атрибут групи, від імені якої виконуватиметься запуск, правила sudo" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "Атрибут граничного часу початку дії правила sudo" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "Атрибут граничного часу завершення дії правила sudo" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "Атрибут порядку правила sudo" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "Клас об’єктів для карт автоматичного монтування" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "Атрибут назви карти автоматичного монтування" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "Клас об’єктів для записів карт автоматичного монтування" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "Атрибут ключа запису карти автоматичного монтування" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "Атрибут значення запису карти автоматичного монтування" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "Базовий сервер назв домену для пошуків карти автоматичного монтування" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "Відокремлений комами список дозволених користувачів" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "Відокремлений комами список заборонених користувачів" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "Типова оболонка, /bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "Базова адреса домашніх каталогів" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "Назва бібліотеки NSS, яку слід використовувати" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" "Визначає, чи слід виконувати пошук канонічної назви групи у кеші, якщо це " "можливо" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "Стек PAM, який слід використовувати" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "Запуститися фонову службу (типова поведінка)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "Запустити у інтерактивному режимі (без фонової служби)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "Вказати нетиповий файл налаштувань" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "Вивести номер версії і завершити роботу" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "Рівень зневаджування" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "Додавати діагностичні часові позначки" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "Показувати мікросекунди у часових позначках" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "Дескриптор відкритого файла для запису журналів діагностики" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "Надіслати діагностичну інформацію безпосередньо до stderr." -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "Користувач, від імені якого слід створити ccache FAST" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "Група, від імені якої слід створити ccache FAST" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 #, fuzzy msgid "Kerberos realm to use" msgstr "Область Kerberos" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 #, fuzzy msgid "Requested lifetime of the ticket" msgstr "Поновлюваний строк дії TGT" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 #, fuzzy msgid "Requested renewable lifetime of the ticket" msgstr "Поновлюваний строк дії TGT" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 #, fuzzy msgid "Specifies the server principal to use for FAST" msgstr "Визначає реєстраційний запис, який слід використовувати для FAST" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "Домен надання відомостей (обов’язковий)" @@ -1605,50 +1613,50 @@ msgid "Unexpected error while looking for an error description" msgstr "Неочікувана помилка під час пошуку опису помилки" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "Відмовлено у доступі. " -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "Повідомлення сервера: " -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "Паролі не збігаються" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "Підтримки скидання пароля користувачем root не передбачено." -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "Розпізнано за реєстраційними даними з кешу" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ", строк дії вашого кешованого пароля завершиться: " -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "Строк дії вашого пароля вичерпано. Залишилося %1$d резервних входи." -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "Строк дії вашого пароля завершиться за %1$d %2$s." -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "Розпізнавання заборонено до: " -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "Система працює у автономному режимі, зміна пароля неможлива" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" @@ -1656,40 +1664,40 @@ "Після зміни пароля OTP вам слід вийти із системи і увійти до неї знову, щоб " "отримати про квиток" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "Спроба зміни пароля зазнала невдачі. " -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "Новий пароль: " -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "Ще раз введіть новий пароль: " -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "Перший фактор:" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 #, fuzzy msgid "Second Factor (optional): " msgstr "Другий фактор:" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "Другий фактор:" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "Пароль: " -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "Поточний пароль: " -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "Строк дії пароля вичерпано. Змініть ваш пароль." @@ -1698,7 +1706,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "Рівень діагностики під час запуску" @@ -1711,7 +1719,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "Помилка під час спроби встановити локаль\n" @@ -2180,99 +2188,99 @@ msgstr "" "Помилка під час виконання операції. Не вдалося змінити запис користувача.\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "Вказаному критерію пошуку не відповідає жоден об’єкт у кеші\n" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "Не вдалося скасувати чинність %1$s\n" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "Не вдалося скасувати чинність %1$s %2$s\n" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 #, fuzzy msgid "Invalidate all cached entries" msgstr "Скасувати визначення всіх служб" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "Скасувати визначення певного користувача" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "Скасувати визначення всіх користувачів" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "Скасувати визначення певної групи" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "Скасувати визначення всіх груп" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "Скасувати визначення певної мережевої групи" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "Скасувати визначення всіх мережевих груп" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "Скасувати визначення певної служби" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "Скасувати визначення всіх служб" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "Скасувати визначення певну карту autofs" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "Скасувати визначення всіх карт autofs" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "Скасувати чинність певного вузла SSH" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "Скасувати чинність усіх вузлів SSH" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 #, fuzzy msgid "Invalidate particular sudo rule" msgstr "Скасувати визначення певного користувача" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 #, fuzzy msgid "Invalidate all cached sudo rules" msgstr "Скасувати чинність усіх кешованих записів, окрім правил sudo" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "Скасувати визначення лише записів з певного домену" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" "Будь ласка, виберіть принаймні один об’єкт для скасовування відповідності\n" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " @@ -2281,7 +2289,7 @@ "Не вдалося відкрити домен %1$s. Якщо цей домен є піддоменом (довіреним " "доменом), скористайтеся повною назвою замість параметра --domain/-d.\n" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "Не вдалося відкрити доступні домени\n" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/zh_CN.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/zh_CN.gmo differ diff -Nru sssd-1.15.0/po/zh_CN.po sssd-1.15.2/po/zh_CN.po --- sssd-1.15.0/po/zh_CN.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/zh_CN.po 2017-03-15 16:53:24.000000000 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:50-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Chinese (China) (http://www.transifex.com/projects/p/sssd/" @@ -61,1401 +61,1409 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 -msgid "SSSD Services to start" +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" msgstr "" #: src/config/SSSDConfig/__init__.py.in:57 -msgid "SSSD Domains to start" +msgid "SSSD Services to start" msgstr "" #: src/config/SSSDConfig/__init__.py.in:58 -msgid "Timeout for messages sent over the SBUS" +msgid "SSSD Domains to start" msgstr "" #: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 -msgid "Regex to parse username and domain" +msgid "Timeout for messages sent over the SBUS" msgstr "" #: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 -msgid "Printf-compatible format for displaying fully-qualified names" +#: src/config/SSSDConfig/__init__.py.in:184 +msgid "Regex to parse username and domain" msgstr "" #: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 +msgid "Printf-compatible format for displaying fully-qualified names" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 msgid "Tune certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 msgid "Files negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 msgid "Path to storage of trusted CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 msgid "SELinux provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "保存密码哈希值" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "IPA 服务器地址" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "IPA 备份服务器地址" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Kerberos 服务器地址" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "验证超时" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 msgid "Kerberos realm to use" msgstr "" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1483,88 +1491,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr "" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "" -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "" -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "" -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "" @@ -1573,7 +1581,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "" @@ -1586,7 +1594,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "" @@ -2016,102 +2024,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" Binary files /tmp/tmpro8u8T/96DA2yf4SI/sssd-1.15.0/po/zh_TW.gmo and /tmp/tmpro8u8T/F9LLGLnIPO/sssd-1.15.2/po/zh_TW.gmo differ diff -Nru sssd-1.15.0/po/zh_TW.po sssd-1.15.2/po/zh_TW.po --- sssd-1.15.0/po/zh_TW.po 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/po/zh_TW.po 2017-03-15 16:53:24.000000000 +0000 @@ -7,7 +7,7 @@ msgstr "" "Project-Id-Version: PACKAGE VERSION\n" "Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org\n" -"POT-Creation-Date: 2017-01-25 16:28+0100\n" +"POT-Creation-Date: 2017-03-15 17:15+0100\n" "PO-Revision-Date: 2014-12-14 11:50-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Chinese (Taiwan) (http://www.transifex.com/projects/p/sssd/" @@ -60,1403 +60,1411 @@ msgid "Idle time before automatic shutdown of the responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:56 +#: src/config/SSSDConfig/__init__.py.in:54 +msgid "Always query all the caches before querying the Data Providers" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:57 msgid "SSSD Services to start" msgstr "要啟動的 SSSD 服務" -#: src/config/SSSDConfig/__init__.py.in:57 +#: src/config/SSSDConfig/__init__.py.in:58 msgid "SSSD Domains to start" msgstr "要啟動的 SSSD 網域" -#: src/config/SSSDConfig/__init__.py.in:58 +#: src/config/SSSDConfig/__init__.py.in:59 msgid "Timeout for messages sent over the SBUS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:59 -#: src/config/SSSDConfig/__init__.py.in:182 +#: src/config/SSSDConfig/__init__.py.in:60 +#: src/config/SSSDConfig/__init__.py.in:184 msgid "Regex to parse username and domain" msgstr "用來解析使用者名稱與網域的正規表示式" -#: src/config/SSSDConfig/__init__.py.in:60 -#: src/config/SSSDConfig/__init__.py.in:181 +#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:183 msgid "Printf-compatible format for displaying fully-qualified names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:61 +#: src/config/SSSDConfig/__init__.py.in:62 msgid "" "Directory on the filesystem where SSSD should store Kerberos replay cache " "files." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:62 +#: src/config/SSSDConfig/__init__.py.in:63 msgid "Domain to add to names without a domain component." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:63 +#: src/config/SSSDConfig/__init__.py.in:64 msgid "The user to drop privileges to" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:64 +#: src/config/SSSDConfig/__init__.py.in:65 #, fuzzy msgid "Tune certificate verification" msgstr "需要 TLS 憑證驗證" -#: src/config/SSSDConfig/__init__.py.in:65 +#: src/config/SSSDConfig/__init__.py.in:66 msgid "All spaces in group or user names will be replaced with this character" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:66 +#: src/config/SSSDConfig/__init__.py.in:67 msgid "Tune sssd to honor or ignore netlink state changes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:69 +#: src/config/SSSDConfig/__init__.py.in:68 +msgid "Enable or disable the implicit files domain" +msgstr "" + +#: src/config/SSSDConfig/__init__.py.in:71 msgid "Enumeration cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:70 +#: src/config/SSSDConfig/__init__.py.in:72 msgid "Entry cache background update timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:71 -#: src/config/SSSDConfig/__init__.py.in:108 +#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:110 msgid "Negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:72 +#: src/config/SSSDConfig/__init__.py.in:74 msgid "Files negative cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:73 +#: src/config/SSSDConfig/__init__.py.in:75 msgid "Users that SSSD should explicitly ignore" msgstr "SSSD 應該明確忽略的使用者" -#: src/config/SSSDConfig/__init__.py.in:74 +#: src/config/SSSDConfig/__init__.py.in:76 msgid "Groups that SSSD should explicitly ignore" msgstr "SSSD 應該明確忽略的群組" -#: src/config/SSSDConfig/__init__.py.in:75 +#: src/config/SSSDConfig/__init__.py.in:77 msgid "Should filtered users appear in groups" msgstr "過濾的使用者是否應該顯現在群組內" -#: src/config/SSSDConfig/__init__.py.in:76 +#: src/config/SSSDConfig/__init__.py.in:78 msgid "The value of the password field the NSS provider should return" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:77 +#: src/config/SSSDConfig/__init__.py.in:79 msgid "Override homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:78 +#: src/config/SSSDConfig/__init__.py.in:80 msgid "" "Substitute empty homedir value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:79 +#: src/config/SSSDConfig/__init__.py.in:81 msgid "Override shell value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:80 +#: src/config/SSSDConfig/__init__.py.in:82 msgid "The list of shells users are allowed to log in with" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:81 +#: src/config/SSSDConfig/__init__.py.in:83 msgid "" "The list of shells that will be vetoed, and replaced with the fallback shell" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:82 +#: src/config/SSSDConfig/__init__.py.in:84 msgid "" "If a shell stored in central directory is allowed but not available, use " "this fallback" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:83 +#: src/config/SSSDConfig/__init__.py.in:85 msgid "Shell to use if the provider does not list one" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:84 +#: src/config/SSSDConfig/__init__.py.in:86 msgid "How long will be in-memory cache records valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:85 +#: src/config/SSSDConfig/__init__.py.in:87 msgid "List of user attributes the NSS responder is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:88 +#: src/config/SSSDConfig/__init__.py.in:90 msgid "How long to allow cached logins between online logins (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:89 +#: src/config/SSSDConfig/__init__.py.in:91 msgid "How many failed logins attempts are allowed when offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:90 +#: src/config/SSSDConfig/__init__.py.in:92 msgid "" "How long (minutes) to deny login after offline_failed_login_attempts has " "been reached" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:91 +#: src/config/SSSDConfig/__init__.py.in:93 msgid "What kind of messages are displayed to the user during authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:92 +#: src/config/SSSDConfig/__init__.py.in:94 msgid "Filter PAM responses send the pam_sss" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:93 +#: src/config/SSSDConfig/__init__.py.in:95 msgid "How many seconds to keep identity information cached for PAM requests" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:94 +#: src/config/SSSDConfig/__init__.py.in:96 msgid "How many days before password expiration a warning should be displayed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:95 +#: src/config/SSSDConfig/__init__.py.in:97 msgid "List of trusted uids or user's name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:96 +#: src/config/SSSDConfig/__init__.py.in:98 msgid "List of domains accessible even for untrusted users." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:97 +#: src/config/SSSDConfig/__init__.py.in:99 msgid "Message printed when user account is expired." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:98 +#: src/config/SSSDConfig/__init__.py.in:100 msgid "Message printed when user account is locked." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:99 +#: src/config/SSSDConfig/__init__.py.in:101 msgid "Allow certificate based/Smartcard authentication." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:100 +#: src/config/SSSDConfig/__init__.py.in:102 msgid "Path to certificate databse with PKCS#11 modules." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:101 +#: src/config/SSSDConfig/__init__.py.in:103 msgid "How many seconds will pam_sss wait for p11_child to finish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:104 +#: src/config/SSSDConfig/__init__.py.in:106 msgid "Whether to evaluate the time-based attributes in sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:105 +#: src/config/SSSDConfig/__init__.py.in:107 msgid "If true, SSSD will switch back to lower-wins ordering logic" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:111 +#: src/config/SSSDConfig/__init__.py.in:113 msgid "Whether to hash host names and addresses in the known_hosts file" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:112 +#: src/config/SSSDConfig/__init__.py.in:114 msgid "" "How many seconds to keep a host in the known_hosts file after its host keys " "were requested" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:113 +#: src/config/SSSDConfig/__init__.py.in:115 msgid "Path to storage of trusted CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:116 +#: src/config/SSSDConfig/__init__.py.in:118 msgid "List of UIDs or user names allowed to access the PAC responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:117 +#: src/config/SSSDConfig/__init__.py.in:119 msgid "How long the PAC data is considered valid" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:120 +#: src/config/SSSDConfig/__init__.py.in:122 msgid "List of UIDs or user names allowed to access the InfoPipe responder" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:121 +#: src/config/SSSDConfig/__init__.py.in:123 msgid "List of user attributes the InfoPipe is allowed to publish" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:124 +#: src/config/SSSDConfig/__init__.py.in:126 msgid "The provider where the secrets will be stored in" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:125 +#: src/config/SSSDConfig/__init__.py.in:127 msgid "The maximum allowed number of nested containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:126 +#: src/config/SSSDConfig/__init__.py.in:128 msgid "The maximum number of secrets that can be stored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:127 +#: src/config/SSSDConfig/__init__.py.in:129 msgid "The maximum payload size of a secret in kilobytes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:129 +#: src/config/SSSDConfig/__init__.py.in:131 msgid "The URL Custodia server is listening on" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:130 +#: src/config/SSSDConfig/__init__.py.in:132 msgid "The method to use when authenticating to a Custodia server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:131 +#: src/config/SSSDConfig/__init__.py.in:133 msgid "" "The name of the headers that will be added into a HTTP request with the " "value defined in auth_header_value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:132 +#: src/config/SSSDConfig/__init__.py.in:134 msgid "The value sssd-secrets would use for auth_header_name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:133 +#: src/config/SSSDConfig/__init__.py.in:135 msgid "" "The list of the headers to forward to the Custodia server together with the " "request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:134 +#: src/config/SSSDConfig/__init__.py.in:136 msgid "" "The username to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:135 +#: src/config/SSSDConfig/__init__.py.in:137 msgid "" "The password to use when authenticating to a Custodia server using basic_auth" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:138 +#: src/config/SSSDConfig/__init__.py.in:140 msgid "Identity provider" msgstr "身分提供者" -#: src/config/SSSDConfig/__init__.py.in:139 +#: src/config/SSSDConfig/__init__.py.in:141 msgid "Authentication provider" msgstr "認證提供者" -#: src/config/SSSDConfig/__init__.py.in:140 +#: src/config/SSSDConfig/__init__.py.in:142 msgid "Access control provider" msgstr "存取控制提供者" -#: src/config/SSSDConfig/__init__.py.in:141 +#: src/config/SSSDConfig/__init__.py.in:143 msgid "Password change provider" msgstr "密碼變更提供者" -#: src/config/SSSDConfig/__init__.py.in:142 +#: src/config/SSSDConfig/__init__.py.in:144 msgid "SUDO provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:143 +#: src/config/SSSDConfig/__init__.py.in:145 msgid "Autofs provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:144 +#: src/config/SSSDConfig/__init__.py.in:146 msgid "Host identity provider" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:145 +#: src/config/SSSDConfig/__init__.py.in:147 #, fuzzy msgid "SELinux provider" msgstr "身分提供者" -#: src/config/SSSDConfig/__init__.py.in:148 +#: src/config/SSSDConfig/__init__.py.in:150 msgid "Minimum user ID" msgstr "最小的使用者 ID" -#: src/config/SSSDConfig/__init__.py.in:149 +#: src/config/SSSDConfig/__init__.py.in:151 msgid "Maximum user ID" msgstr "最大的使用者 ID" -#: src/config/SSSDConfig/__init__.py.in:150 +#: src/config/SSSDConfig/__init__.py.in:152 msgid "Enable enumerating all users/groups" msgstr "啟用所有使用者或群組的列舉" -#: src/config/SSSDConfig/__init__.py.in:151 +#: src/config/SSSDConfig/__init__.py.in:153 msgid "Cache credentials for offline login" msgstr "供離線登入使用的快取憑證" -#: src/config/SSSDConfig/__init__.py.in:152 +#: src/config/SSSDConfig/__init__.py.in:154 msgid "Store password hashes" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:153 +#: src/config/SSSDConfig/__init__.py.in:155 msgid "Display users/groups in fully-qualified form" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:154 +#: src/config/SSSDConfig/__init__.py.in:156 msgid "Don't include group members in group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:155 -#: src/config/SSSDConfig/__init__.py.in:162 -#: src/config/SSSDConfig/__init__.py.in:163 +#: src/config/SSSDConfig/__init__.py.in:157 #: src/config/SSSDConfig/__init__.py.in:164 #: src/config/SSSDConfig/__init__.py.in:165 #: src/config/SSSDConfig/__init__.py.in:166 #: src/config/SSSDConfig/__init__.py.in:167 +#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:169 msgid "Entry cache timeout length (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:156 +#: src/config/SSSDConfig/__init__.py.in:158 msgid "" "Restrict or prefer a specific address family when performing DNS lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:157 +#: src/config/SSSDConfig/__init__.py.in:159 msgid "How long to keep cached entries after last successful login (days)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:158 +#: src/config/SSSDConfig/__init__.py.in:160 msgid "How long to wait for replies from DNS when resolving servers (seconds)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:159 +#: src/config/SSSDConfig/__init__.py.in:161 msgid "The domain part of service discovery DNS query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:160 +#: src/config/SSSDConfig/__init__.py.in:162 msgid "Override GID value from the identity provider with this value" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:161 +#: src/config/SSSDConfig/__init__.py.in:163 msgid "Treat usernames as case sensitive" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:168 +#: src/config/SSSDConfig/__init__.py.in:170 msgid "How often should expired entries be refreshed in background" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:169 +#: src/config/SSSDConfig/__init__.py.in:171 msgid "Whether to automatically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:170 -#: src/config/SSSDConfig/__init__.py.in:190 +#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:192 msgid "The TTL to apply to the client's DNS entry after updating it" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:171 -#: src/config/SSSDConfig/__init__.py.in:191 +#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:193 msgid "The interface whose IP should be used for dynamic DNS updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:172 +#: src/config/SSSDConfig/__init__.py.in:174 msgid "How often to periodically update the client's DNS entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:173 +#: src/config/SSSDConfig/__init__.py.in:175 msgid "Whether the provider should explicitly update the PTR record as well" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:174 +#: src/config/SSSDConfig/__init__.py.in:176 msgid "Whether the nsupdate utility should default to using TCP" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:175 +#: src/config/SSSDConfig/__init__.py.in:177 msgid "What kind of authentication should be used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:176 +#: src/config/SSSDConfig/__init__.py.in:178 msgid "Override the DNS server used to perform the DNS update" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:177 +#: src/config/SSSDConfig/__init__.py.in:179 msgid "Control enumeration of trusted domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:178 +#: src/config/SSSDConfig/__init__.py.in:180 msgid "How often should subdomains list be refreshed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:179 +#: src/config/SSSDConfig/__init__.py.in:181 msgid "List of options that should be inherited into a subdomain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:180 +#: src/config/SSSDConfig/__init__.py.in:182 msgid "How long can cached credentials be used for cached authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:185 +#: src/config/SSSDConfig/__init__.py.in:187 msgid "IPA domain" msgstr "IPA 網域" -#: src/config/SSSDConfig/__init__.py.in:186 +#: src/config/SSSDConfig/__init__.py.in:188 msgid "IPA server address" msgstr "IPA 伺服器位址" -#: src/config/SSSDConfig/__init__.py.in:187 +#: src/config/SSSDConfig/__init__.py.in:189 msgid "Address of backup IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:188 +#: src/config/SSSDConfig/__init__.py.in:190 msgid "IPA client hostname" msgstr "IPA 客戶端主機名稱" -#: src/config/SSSDConfig/__init__.py.in:189 +#: src/config/SSSDConfig/__init__.py.in:191 msgid "Whether to automatically update the client's DNS entry in FreeIPA" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:192 +#: src/config/SSSDConfig/__init__.py.in:194 msgid "Search base for HBAC related objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:193 +#: src/config/SSSDConfig/__init__.py.in:195 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:194 +#: src/config/SSSDConfig/__init__.py.in:196 msgid "" "The amount of time in seconds between lookups of the SELinux maps against " "the IPA server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:195 +#: src/config/SSSDConfig/__init__.py.in:197 msgid "If set to false, host argument given by PAM will be ignored" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:196 +#: src/config/SSSDConfig/__init__.py.in:198 msgid "The automounter location this IPA client is using" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:197 +#: src/config/SSSDConfig/__init__.py.in:199 msgid "Search base for object containing info about IPA domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:198 +#: src/config/SSSDConfig/__init__.py.in:200 msgid "Search base for objects containing info about ID ranges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:199 -#: src/config/SSSDConfig/__init__.py.in:214 +#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:216 msgid "Enable DNS sites - location based service discovery" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:200 +#: src/config/SSSDConfig/__init__.py.in:202 msgid "Search base for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:201 +#: src/config/SSSDConfig/__init__.py.in:203 msgid "Objectclass for view containers" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:202 +#: src/config/SSSDConfig/__init__.py.in:204 msgid "Attribute with the name of the view" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:203 +#: src/config/SSSDConfig/__init__.py.in:205 msgid "Objectclass for override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:204 +#: src/config/SSSDConfig/__init__.py.in:206 msgid "Attribute with the reference to the original object" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:205 +#: src/config/SSSDConfig/__init__.py.in:207 msgid "Objectclass for user override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:206 +#: src/config/SSSDConfig/__init__.py.in:208 msgid "Objectclass for group override objects" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:209 +#: src/config/SSSDConfig/__init__.py.in:211 msgid "Active Directory domain" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:210 +#: src/config/SSSDConfig/__init__.py.in:212 msgid "Enabled Active Directory domains" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:211 +#: src/config/SSSDConfig/__init__.py.in:213 msgid "Active Directory server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:212 +#: src/config/SSSDConfig/__init__.py.in:214 msgid "Active Directory backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:213 +#: src/config/SSSDConfig/__init__.py.in:215 msgid "Active Directory client hostname" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:215 -#: src/config/SSSDConfig/__init__.py.in:400 +#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:402 msgid "LDAP filter to determine access privileges" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:216 +#: src/config/SSSDConfig/__init__.py.in:218 msgid "Whether to use the Global Catalog for lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:217 +#: src/config/SSSDConfig/__init__.py.in:219 msgid "Operation mode for GPO-based access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:218 +#: src/config/SSSDConfig/__init__.py.in:220 msgid "" "The amount of time between lookups of the GPO policy files against the AD " "server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:219 +#: src/config/SSSDConfig/__init__.py.in:221 msgid "" "PAM service names that map to the GPO (Deny)InteractiveLogonRight policy " "settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:220 +#: src/config/SSSDConfig/__init__.py.in:222 msgid "" "PAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight " "policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:221 +#: src/config/SSSDConfig/__init__.py.in:223 msgid "" "PAM service names that map to the GPO (Deny)NetworkLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:222 +#: src/config/SSSDConfig/__init__.py.in:224 msgid "" "PAM service names that map to the GPO (Deny)BatchLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:223 +#: src/config/SSSDConfig/__init__.py.in:225 msgid "" "PAM service names that map to the GPO (Deny)ServiceLogonRight policy settings" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:224 +#: src/config/SSSDConfig/__init__.py.in:226 msgid "PAM service names for which GPO-based access is always granted" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:225 +#: src/config/SSSDConfig/__init__.py.in:227 msgid "PAM service names for which GPO-based access is always denied" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:226 +#: src/config/SSSDConfig/__init__.py.in:228 msgid "" "Default logon right (or permit/deny) to use for unmapped PAM service names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:227 +#: src/config/SSSDConfig/__init__.py.in:229 msgid "a particular site to be used by the client" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:228 +#: src/config/SSSDConfig/__init__.py.in:230 msgid "" "Maximum age in days before the machine account password should be renewed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:229 +#: src/config/SSSDConfig/__init__.py.in:231 msgid "Option for tuing the machine account renewal task" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:232 -#: src/config/SSSDConfig/__init__.py.in:233 +#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:235 msgid "Kerberos server address" msgstr "Kerberos 伺服器位址" -#: src/config/SSSDConfig/__init__.py.in:234 +#: src/config/SSSDConfig/__init__.py.in:236 msgid "Kerberos backup server address" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:235 +#: src/config/SSSDConfig/__init__.py.in:237 msgid "Kerberos realm" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:236 +#: src/config/SSSDConfig/__init__.py.in:238 msgid "Authentication timeout" msgstr "認證逾時" -#: src/config/SSSDConfig/__init__.py.in:237 +#: src/config/SSSDConfig/__init__.py.in:239 msgid "Whether to create kdcinfo files" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:238 +#: src/config/SSSDConfig/__init__.py.in:240 msgid "Where to drop krb5 config snippets" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:241 +#: src/config/SSSDConfig/__init__.py.in:243 msgid "Directory to store credential caches" msgstr "儲存憑證快取的目錄" -#: src/config/SSSDConfig/__init__.py.in:242 +#: src/config/SSSDConfig/__init__.py.in:244 msgid "Location of the user's credential cache" msgstr "使用者憑證快取的位置" -#: src/config/SSSDConfig/__init__.py.in:243 +#: src/config/SSSDConfig/__init__.py.in:245 msgid "Location of the keytab to validate credentials" msgstr "驗證憑證用的金鑰表格位置" -#: src/config/SSSDConfig/__init__.py.in:244 +#: src/config/SSSDConfig/__init__.py.in:246 msgid "Enable credential validation" msgstr "啟用憑證驗證" -#: src/config/SSSDConfig/__init__.py.in:245 +#: src/config/SSSDConfig/__init__.py.in:247 msgid "Store password if offline for later online authentication" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:246 +#: src/config/SSSDConfig/__init__.py.in:248 msgid "Renewable lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:247 +#: src/config/SSSDConfig/__init__.py.in:249 msgid "Lifetime of the TGT" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:248 +#: src/config/SSSDConfig/__init__.py.in:250 msgid "Time between two checks for renewal" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:249 +#: src/config/SSSDConfig/__init__.py.in:251 msgid "Enables FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:250 +#: src/config/SSSDConfig/__init__.py.in:252 msgid "Selects the principal to use for FAST" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:251 +#: src/config/SSSDConfig/__init__.py.in:253 msgid "Enables principal canonicalization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:252 +#: src/config/SSSDConfig/__init__.py.in:254 msgid "Enables enterprise principals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:253 +#: src/config/SSSDConfig/__init__.py.in:255 msgid "A mapping from user names to kerberos principal names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:256 -#: src/config/SSSDConfig/__init__.py.in:257 +#: src/config/SSSDConfig/__init__.py.in:258 +#: src/config/SSSDConfig/__init__.py.in:259 msgid "Server where the change password service is running if not on the KDC" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:260 +#: src/config/SSSDConfig/__init__.py.in:262 msgid "ldap_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:261 +#: src/config/SSSDConfig/__init__.py.in:263 msgid "ldap_backup_uri, The URI of the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:262 +#: src/config/SSSDConfig/__init__.py.in:264 msgid "The default base DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:263 +#: src/config/SSSDConfig/__init__.py.in:265 msgid "The Schema Type in use on the LDAP server, rfc2307" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:264 +#: src/config/SSSDConfig/__init__.py.in:266 msgid "The default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:265 +#: src/config/SSSDConfig/__init__.py.in:267 msgid "The type of the authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:266 +#: src/config/SSSDConfig/__init__.py.in:268 msgid "The authentication token of the default bind DN" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:267 +#: src/config/SSSDConfig/__init__.py.in:269 msgid "Length of time to attempt connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:268 +#: src/config/SSSDConfig/__init__.py.in:270 msgid "Length of time to attempt synchronous LDAP operations" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:269 +#: src/config/SSSDConfig/__init__.py.in:271 msgid "Length of time between attempts to reconnect while offline" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:270 +#: src/config/SSSDConfig/__init__.py.in:272 msgid "Use only the upper case for realm names" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:271 +#: src/config/SSSDConfig/__init__.py.in:273 msgid "File that contains CA certificates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:272 +#: src/config/SSSDConfig/__init__.py.in:274 msgid "Path to CA certificate directory" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:273 +#: src/config/SSSDConfig/__init__.py.in:275 msgid "File that contains the client certificate" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:274 +#: src/config/SSSDConfig/__init__.py.in:276 msgid "File that contains the client key" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:275 +#: src/config/SSSDConfig/__init__.py.in:277 msgid "List of possible ciphers suites" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:276 +#: src/config/SSSDConfig/__init__.py.in:278 msgid "Require TLS certificate verification" msgstr "需要 TLS 憑證驗證" -#: src/config/SSSDConfig/__init__.py.in:277 +#: src/config/SSSDConfig/__init__.py.in:279 msgid "Specify the sasl mechanism to use" msgstr "指定要使用的 sasl 機制" -#: src/config/SSSDConfig/__init__.py.in:278 +#: src/config/SSSDConfig/__init__.py.in:280 msgid "Specify the sasl authorization id to use" msgstr "指定要使用的 sasl 認證 id" -#: src/config/SSSDConfig/__init__.py.in:279 +#: src/config/SSSDConfig/__init__.py.in:281 msgid "Specify the sasl authorization realm to use" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:280 +#: src/config/SSSDConfig/__init__.py.in:282 msgid "Specify the minimal SSF for LDAP sasl authorization" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:281 +#: src/config/SSSDConfig/__init__.py.in:283 msgid "Kerberos service keytab" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:282 +#: src/config/SSSDConfig/__init__.py.in:284 msgid "Use Kerberos auth for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:283 +#: src/config/SSSDConfig/__init__.py.in:285 msgid "Follow LDAP referrals" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:284 +#: src/config/SSSDConfig/__init__.py.in:286 msgid "Lifetime of TGT for LDAP connection" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:285 +#: src/config/SSSDConfig/__init__.py.in:287 msgid "How to dereference aliases" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:286 +#: src/config/SSSDConfig/__init__.py.in:288 msgid "Service name for DNS service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:287 +#: src/config/SSSDConfig/__init__.py.in:289 msgid "The number of records to retrieve in a single LDAP query" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:288 +#: src/config/SSSDConfig/__init__.py.in:290 msgid "The number of members that must be missing to trigger a full deref" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:289 +#: src/config/SSSDConfig/__init__.py.in:291 msgid "" "Whether the LDAP library should perform a reverse lookup to canonicalize the " "host name during a SASL bind" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:291 +#: src/config/SSSDConfig/__init__.py.in:293 msgid "entryUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:292 +#: src/config/SSSDConfig/__init__.py.in:294 msgid "lastUSN attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:294 +#: src/config/SSSDConfig/__init__.py.in:296 msgid "How long to retain a connection to the LDAP server before disconnecting" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:296 +#: src/config/SSSDConfig/__init__.py.in:298 msgid "Disable the LDAP paging control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:297 +#: src/config/SSSDConfig/__init__.py.in:299 msgid "Disable Active Directory range retrieval" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:300 +#: src/config/SSSDConfig/__init__.py.in:302 msgid "Length of time to wait for a search request" msgstr "搜尋請求的等候時間長度" -#: src/config/SSSDConfig/__init__.py.in:301 +#: src/config/SSSDConfig/__init__.py.in:303 msgid "Length of time to wait for a enumeration request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:302 +#: src/config/SSSDConfig/__init__.py.in:304 msgid "Length of time between enumeration updates" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:303 +#: src/config/SSSDConfig/__init__.py.in:305 msgid "Length of time between cache cleanups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:304 +#: src/config/SSSDConfig/__init__.py.in:306 msgid "Require TLS for ID lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:305 +#: src/config/SSSDConfig/__init__.py.in:307 msgid "Use ID-mapping of objectSID instead of pre-set IDs" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:306 +#: src/config/SSSDConfig/__init__.py.in:308 msgid "Base DN for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:307 +#: src/config/SSSDConfig/__init__.py.in:309 msgid "Scope of user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:308 +#: src/config/SSSDConfig/__init__.py.in:310 msgid "Filter for user lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:309 +#: src/config/SSSDConfig/__init__.py.in:311 msgid "Objectclass for users" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:310 +#: src/config/SSSDConfig/__init__.py.in:312 msgid "Username attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:312 +#: src/config/SSSDConfig/__init__.py.in:314 msgid "UID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:313 +#: src/config/SSSDConfig/__init__.py.in:315 msgid "Primary GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:314 +#: src/config/SSSDConfig/__init__.py.in:316 msgid "GECOS attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:315 +#: src/config/SSSDConfig/__init__.py.in:317 msgid "Home directory attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:316 +#: src/config/SSSDConfig/__init__.py.in:318 msgid "Shell attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:317 +#: src/config/SSSDConfig/__init__.py.in:319 msgid "UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:318 -#: src/config/SSSDConfig/__init__.py.in:359 +#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:361 msgid "objectSID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:319 +#: src/config/SSSDConfig/__init__.py.in:321 msgid "Active Directory primary group attribute for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:320 +#: src/config/SSSDConfig/__init__.py.in:322 msgid "User principal attribute (for Kerberos)" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:321 +#: src/config/SSSDConfig/__init__.py.in:323 msgid "Full Name" msgstr "全名" -#: src/config/SSSDConfig/__init__.py.in:322 +#: src/config/SSSDConfig/__init__.py.in:324 msgid "memberOf attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:323 +#: src/config/SSSDConfig/__init__.py.in:325 msgid "Modification time attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:325 +#: src/config/SSSDConfig/__init__.py.in:327 msgid "shadowLastChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:326 +#: src/config/SSSDConfig/__init__.py.in:328 msgid "shadowMin attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:327 +#: src/config/SSSDConfig/__init__.py.in:329 msgid "shadowMax attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:328 +#: src/config/SSSDConfig/__init__.py.in:330 msgid "shadowWarning attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:329 +#: src/config/SSSDConfig/__init__.py.in:331 msgid "shadowInactive attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:330 +#: src/config/SSSDConfig/__init__.py.in:332 msgid "shadowExpire attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:331 +#: src/config/SSSDConfig/__init__.py.in:333 msgid "shadowFlag attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:332 +#: src/config/SSSDConfig/__init__.py.in:334 msgid "Attribute listing authorized PAM services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:333 +#: src/config/SSSDConfig/__init__.py.in:335 msgid "Attribute listing authorized server hosts" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:334 +#: src/config/SSSDConfig/__init__.py.in:336 msgid "krbLastPwdChange attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:335 +#: src/config/SSSDConfig/__init__.py.in:337 msgid "krbPasswordExpiration attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:336 +#: src/config/SSSDConfig/__init__.py.in:338 msgid "Attribute indicating that server side password policies are active" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:337 +#: src/config/SSSDConfig/__init__.py.in:339 msgid "accountExpires attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:338 +#: src/config/SSSDConfig/__init__.py.in:340 msgid "userAccountControl attribute of AD" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:339 +#: src/config/SSSDConfig/__init__.py.in:341 msgid "nsAccountLock attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:340 +#: src/config/SSSDConfig/__init__.py.in:342 msgid "loginDisabled attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:341 +#: src/config/SSSDConfig/__init__.py.in:343 msgid "loginExpirationTime attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:342 +#: src/config/SSSDConfig/__init__.py.in:344 msgid "loginAllowedTimeMap attribute of NDS" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:343 +#: src/config/SSSDConfig/__init__.py.in:345 msgid "SSH public key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:344 +#: src/config/SSSDConfig/__init__.py.in:346 msgid "attribute listing allowed authentication types for a user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:345 +#: src/config/SSSDConfig/__init__.py.in:347 msgid "attribute containing the X509 certificate of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:346 +#: src/config/SSSDConfig/__init__.py.in:348 msgid "attribute containing the email address of the user" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:348 +#: src/config/SSSDConfig/__init__.py.in:350 msgid "A list of extra attributes to download along with the user entry" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:350 +#: src/config/SSSDConfig/__init__.py.in:352 msgid "Base DN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:353 +#: src/config/SSSDConfig/__init__.py.in:355 msgid "Objectclass for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:354 +#: src/config/SSSDConfig/__init__.py.in:356 msgid "Group name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:355 +#: src/config/SSSDConfig/__init__.py.in:357 msgid "Group password" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:356 +#: src/config/SSSDConfig/__init__.py.in:358 msgid "GID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:357 +#: src/config/SSSDConfig/__init__.py.in:359 msgid "Group member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:358 +#: src/config/SSSDConfig/__init__.py.in:360 msgid "Group UUID attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:360 +#: src/config/SSSDConfig/__init__.py.in:362 msgid "Modification time attribute for groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:361 +#: src/config/SSSDConfig/__init__.py.in:363 msgid "Type of the group and other flags" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:362 +#: src/config/SSSDConfig/__init__.py.in:364 msgid "The LDAP group external member attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:364 +#: src/config/SSSDConfig/__init__.py.in:366 msgid "Maximum nesting level SSSd will follow" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:366 +#: src/config/SSSDConfig/__init__.py.in:368 msgid "Base DN for netgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:367 +#: src/config/SSSDConfig/__init__.py.in:369 msgid "Objectclass for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:368 +#: src/config/SSSDConfig/__init__.py.in:370 msgid "Netgroup name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:369 +#: src/config/SSSDConfig/__init__.py.in:371 msgid "Netgroups members attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:370 +#: src/config/SSSDConfig/__init__.py.in:372 msgid "Netgroup triple attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:371 +#: src/config/SSSDConfig/__init__.py.in:373 msgid "Modification time attribute for netgroups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:373 +#: src/config/SSSDConfig/__init__.py.in:375 msgid "Base DN for service lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:374 +#: src/config/SSSDConfig/__init__.py.in:376 msgid "Objectclass for services" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:375 +#: src/config/SSSDConfig/__init__.py.in:377 msgid "Service name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:376 +#: src/config/SSSDConfig/__init__.py.in:378 msgid "Service port attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:377 +#: src/config/SSSDConfig/__init__.py.in:379 msgid "Service protocol attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:380 +#: src/config/SSSDConfig/__init__.py.in:382 msgid "Lower bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:381 +#: src/config/SSSDConfig/__init__.py.in:383 msgid "Upper bound for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:382 +#: src/config/SSSDConfig/__init__.py.in:384 msgid "Number of IDs for each slice when ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:383 +#: src/config/SSSDConfig/__init__.py.in:385 msgid "Use autorid-compatible algorithm for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:384 +#: src/config/SSSDConfig/__init__.py.in:386 msgid "Name of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:385 +#: src/config/SSSDConfig/__init__.py.in:387 msgid "SID of the default domain for ID-mapping" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:386 +#: src/config/SSSDConfig/__init__.py.in:388 msgid "Number of secondary slices" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:388 +#: src/config/SSSDConfig/__init__.py.in:390 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for group lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:389 +#: src/config/SSSDConfig/__init__.py.in:391 msgid "Use LDAP_MATCHING_RULE_IN_CHAIN for initgroup lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:390 +#: src/config/SSSDConfig/__init__.py.in:392 msgid "Whether to use Token-Groups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:391 +#: src/config/SSSDConfig/__init__.py.in:393 msgid "Set lower boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:392 +#: src/config/SSSDConfig/__init__.py.in:394 msgid "Set upper boundary for allowed IDs from the LDAP server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:393 +#: src/config/SSSDConfig/__init__.py.in:395 msgid "DN for ppolicy queries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:394 +#: src/config/SSSDConfig/__init__.py.in:396 msgid "How many maximum entries to fetch during a wildcard request" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:397 +#: src/config/SSSDConfig/__init__.py.in:399 msgid "Policy to evaluate the password expiration" msgstr "評估密碼過期時效的策略" -#: src/config/SSSDConfig/__init__.py.in:401 +#: src/config/SSSDConfig/__init__.py.in:403 msgid "Which attributes shall be used to evaluate if an account is expired" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:402 +#: src/config/SSSDConfig/__init__.py.in:404 msgid "Which rules should be used to evaluate access control" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:405 +#: src/config/SSSDConfig/__init__.py.in:407 msgid "URI of an LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:406 +#: src/config/SSSDConfig/__init__.py.in:408 msgid "URI of a backup LDAP server where password changes are allowed" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:407 +#: src/config/SSSDConfig/__init__.py.in:409 msgid "DNS service name for LDAP password change server" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:408 +#: src/config/SSSDConfig/__init__.py.in:410 msgid "" "Whether to update the ldap_user_shadow_last_change attribute after a " "password change" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:411 +#: src/config/SSSDConfig/__init__.py.in:413 msgid "Base DN for sudo rules lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:412 +#: src/config/SSSDConfig/__init__.py.in:414 msgid "Automatic full refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:413 +#: src/config/SSSDConfig/__init__.py.in:415 msgid "Automatic smart refresh period" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:414 +#: src/config/SSSDConfig/__init__.py.in:416 msgid "Whether to filter rules by hostname, IP addresses and network" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:415 +#: src/config/SSSDConfig/__init__.py.in:417 msgid "" "Hostnames and/or fully qualified domain names of this machine to filter sudo " "rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:416 +#: src/config/SSSDConfig/__init__.py.in:418 msgid "IPv4 or IPv6 addresses or network of this machine to filter sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:417 +#: src/config/SSSDConfig/__init__.py.in:419 msgid "Whether to include rules that contains netgroup in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:418 +#: src/config/SSSDConfig/__init__.py.in:420 msgid "" "Whether to include rules that contains regular expression in host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:419 +#: src/config/SSSDConfig/__init__.py.in:421 msgid "Object class for sudo rules" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:420 +#: src/config/SSSDConfig/__init__.py.in:422 msgid "Sudo rule name" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:421 +#: src/config/SSSDConfig/__init__.py.in:423 msgid "Sudo rule command attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:422 +#: src/config/SSSDConfig/__init__.py.in:424 msgid "Sudo rule host attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:423 +#: src/config/SSSDConfig/__init__.py.in:425 msgid "Sudo rule user attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:424 +#: src/config/SSSDConfig/__init__.py.in:426 msgid "Sudo rule option attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:425 +#: src/config/SSSDConfig/__init__.py.in:427 msgid "Sudo rule runas attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:426 +#: src/config/SSSDConfig/__init__.py.in:428 msgid "Sudo rule runasuser attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:427 +#: src/config/SSSDConfig/__init__.py.in:429 msgid "Sudo rule runasgroup attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:428 +#: src/config/SSSDConfig/__init__.py.in:430 msgid "Sudo rule notbefore attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:429 +#: src/config/SSSDConfig/__init__.py.in:431 msgid "Sudo rule notafter attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:430 +#: src/config/SSSDConfig/__init__.py.in:432 msgid "Sudo rule order attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:433 +#: src/config/SSSDConfig/__init__.py.in:435 msgid "Object class for automounter maps" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:434 +#: src/config/SSSDConfig/__init__.py.in:436 msgid "Automounter map name attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:435 +#: src/config/SSSDConfig/__init__.py.in:437 msgid "Object class for automounter map entries" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:436 +#: src/config/SSSDConfig/__init__.py.in:438 msgid "Automounter map entry key attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:437 +#: src/config/SSSDConfig/__init__.py.in:439 msgid "Automounter map entry value attribute" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:438 +#: src/config/SSSDConfig/__init__.py.in:440 msgid "Base DN for automounter map lookups" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:441 +#: src/config/SSSDConfig/__init__.py.in:443 msgid "Comma separated list of allowed users" msgstr "許可的使用者清單,請使用半形逗號作為分隔" -#: src/config/SSSDConfig/__init__.py.in:442 +#: src/config/SSSDConfig/__init__.py.in:444 msgid "Comma separated list of prohibited users" msgstr "被禁止的使用者清單,請使用半形逗號作為分隔" -#: src/config/SSSDConfig/__init__.py.in:445 +#: src/config/SSSDConfig/__init__.py.in:447 msgid "Default shell, /bin/bash" msgstr "預設 shell,/bin/bash" -#: src/config/SSSDConfig/__init__.py.in:446 +#: src/config/SSSDConfig/__init__.py.in:448 msgid "Base for home directories" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:449 +#: src/config/SSSDConfig/__init__.py.in:451 msgid "The number of preforked proxy children." msgstr "" -#: src/config/SSSDConfig/__init__.py.in:452 +#: src/config/SSSDConfig/__init__.py.in:454 msgid "The name of the NSS library to use" msgstr "要使用的 NSS 函式庫名稱" -#: src/config/SSSDConfig/__init__.py.in:453 +#: src/config/SSSDConfig/__init__.py.in:455 msgid "Whether to look up canonical group name from cache if possible" msgstr "" -#: src/config/SSSDConfig/__init__.py.in:456 +#: src/config/SSSDConfig/__init__.py.in:458 msgid "PAM stack to use" msgstr "要使用的 PAM 堆疊" -#: src/monitor/monitor.c:2700 +#: src/monitor/monitor.c:2460 msgid "Become a daemon (default)" msgstr "作為幕後程式 (預設)" -#: src/monitor/monitor.c:2702 +#: src/monitor/monitor.c:2462 msgid "Run interactive (not a daemon)" msgstr "以互動方式執行 (非幕後程式)" -#: src/monitor/monitor.c:2705 +#: src/monitor/monitor.c:2465 msgid "Disable netlink interface" msgstr "" -#: src/monitor/monitor.c:2707 src/tools/sss_debuglevel.c:72 +#: src/monitor/monitor.c:2467 src/tools/sss_debuglevel.c:72 msgid "Specify a non-default config file" msgstr "指定非預設的配置檔" -#: src/monitor/monitor.c:2709 +#: src/monitor/monitor.c:2469 msgid "Refresh the configuration database, then exit" msgstr "" -#: src/monitor/monitor.c:2712 +#: src/monitor/monitor.c:2472 msgid "Print version number and exit" msgstr "" -#: src/monitor/monitor.c:2876 +#: src/monitor/monitor.c:2636 msgid "SSSD is already running\n" msgstr "" -#: src/providers/krb5/krb5_child.c:2706 src/providers/ldap/ldap_child.c:616 +#: src/providers/krb5/krb5_child.c:2969 src/providers/ldap/ldap_child.c:623 msgid "Debug level" msgstr "除錯層級" -#: src/providers/krb5/krb5_child.c:2708 src/providers/ldap/ldap_child.c:618 +#: src/providers/krb5/krb5_child.c:2971 src/providers/ldap/ldap_child.c:625 msgid "Add debug timestamps" msgstr "加入除錯時間戳記" -#: src/providers/krb5/krb5_child.c:2710 src/providers/ldap/ldap_child.c:620 +#: src/providers/krb5/krb5_child.c:2973 src/providers/ldap/ldap_child.c:627 msgid "Show timestamps with microseconds" msgstr "" -#: src/providers/krb5/krb5_child.c:2712 src/providers/ldap/ldap_child.c:622 +#: src/providers/krb5/krb5_child.c:2975 src/providers/ldap/ldap_child.c:629 msgid "An open file descriptor for the debug logs" msgstr "" -#: src/providers/krb5/krb5_child.c:2715 src/providers/ldap/ldap_child.c:624 +#: src/providers/krb5/krb5_child.c:2978 src/providers/ldap/ldap_child.c:631 msgid "Send the debug output to stderr directly." msgstr "" -#: src/providers/krb5/krb5_child.c:2717 +#: src/providers/krb5/krb5_child.c:2980 msgid "The user to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2719 +#: src/providers/krb5/krb5_child.c:2982 msgid "The group to create FAST ccache as" msgstr "" -#: src/providers/krb5/krb5_child.c:2721 +#: src/providers/krb5/krb5_child.c:2984 msgid "Kerberos realm to use" msgstr "" -#: src/providers/krb5/krb5_child.c:2723 +#: src/providers/krb5/krb5_child.c:2986 msgid "Requested lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2725 +#: src/providers/krb5/krb5_child.c:2988 msgid "Requested renewable lifetime of the ticket" msgstr "" -#: src/providers/krb5/krb5_child.c:2727 +#: src/providers/krb5/krb5_child.c:2990 msgid "FAST options ('never', 'try', 'demand')" msgstr "" -#: src/providers/krb5/krb5_child.c:2730 +#: src/providers/krb5/krb5_child.c:2993 msgid "Specifies the server principal to use for FAST" msgstr "" -#: src/providers/krb5/krb5_child.c:2732 +#: src/providers/krb5/krb5_child.c:2995 msgid "Requests canonicalization of the principal name" msgstr "" -#: src/providers/data_provider_be.c:504 +#: src/providers/data_provider_be.c:506 msgid "Domain of the information provider (mandatory)" msgstr "" @@ -1484,88 +1492,88 @@ msgid "Unexpected error while looking for an error description" msgstr "" -#: src/sss_client/pam_sss.c:67 +#: src/sss_client/pam_sss.c:68 msgid "Permission denied. " msgstr "" -#: src/sss_client/pam_sss.c:68 src/sss_client/pam_sss.c:735 -#: src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:69 src/sss_client/pam_sss.c:746 +#: src/sss_client/pam_sss.c:757 msgid "Server message: " msgstr "伺服器訊息:" -#: src/sss_client/pam_sss.c:253 +#: src/sss_client/pam_sss.c:264 msgid "Passwords do not match" msgstr "密碼不相符" -#: src/sss_client/pam_sss.c:441 +#: src/sss_client/pam_sss.c:452 msgid "Password reset by root is not supported." msgstr "" -#: src/sss_client/pam_sss.c:482 +#: src/sss_client/pam_sss.c:493 msgid "Authenticated with cached credentials" msgstr "" -#: src/sss_client/pam_sss.c:483 +#: src/sss_client/pam_sss.c:494 msgid ", your cached password will expire at: " msgstr ",您快取的密碼將在此刻過期:" -#: src/sss_client/pam_sss.c:513 +#: src/sss_client/pam_sss.c:524 #, c-format msgid "Your password has expired. You have %1$d grace login(s) remaining." msgstr "" -#: src/sss_client/pam_sss.c:559 +#: src/sss_client/pam_sss.c:570 #, c-format msgid "Your password will expire in %1$d %2$s." msgstr "" -#: src/sss_client/pam_sss.c:608 +#: src/sss_client/pam_sss.c:619 msgid "Authentication is denied until: " msgstr "" -#: src/sss_client/pam_sss.c:629 +#: src/sss_client/pam_sss.c:640 msgid "System is offline, password change not possible" msgstr "系統已離線,不可能作密碼變更" -#: src/sss_client/pam_sss.c:644 +#: src/sss_client/pam_sss.c:655 msgid "" "After changing the OTP password, you need to log out and back in order to " "acquire a ticket" msgstr "" -#: src/sss_client/pam_sss.c:732 src/sss_client/pam_sss.c:745 +#: src/sss_client/pam_sss.c:743 src/sss_client/pam_sss.c:756 msgid "Password change failed. " msgstr "密碼變更失敗。" -#: src/sss_client/pam_sss.c:1473 +#: src/sss_client/pam_sss.c:1564 msgid "New Password: " msgstr "新密碼:" -#: src/sss_client/pam_sss.c:1474 +#: src/sss_client/pam_sss.c:1565 msgid "Reenter new Password: " msgstr "再次輸入新密碼:" -#: src/sss_client/pam_sss.c:1581 src/sss_client/pam_sss.c:1584 +#: src/sss_client/pam_sss.c:1677 src/sss_client/pam_sss.c:1680 msgid "First Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1582 +#: src/sss_client/pam_sss.c:1678 msgid "Second Factor (optional): " msgstr "" -#: src/sss_client/pam_sss.c:1585 +#: src/sss_client/pam_sss.c:1681 msgid "Second Factor: " msgstr "" -#: src/sss_client/pam_sss.c:1590 +#: src/sss_client/pam_sss.c:1686 msgid "Password: " msgstr "密碼:" -#: src/sss_client/pam_sss.c:1630 +#: src/sss_client/pam_sss.c:1726 msgid "Current Password: " msgstr "目前的密碼:" -#: src/sss_client/pam_sss.c:1894 +#: src/sss_client/pam_sss.c:1992 msgid "Password expired. Change your password now." msgstr "密碼已過期。請立刻變更您的密碼。" @@ -1574,7 +1582,7 @@ #: src/tools/sss_groupadd.c:41 src/tools/sss_groupdel.c:44 #: src/tools/sss_groupmod.c:42 src/tools/sss_groupshow.c:668 #: src/tools/sss_userdel.c:134 src/tools/sss_usermod.c:47 -#: src/tools/sss_cache.c:658 src/tools/sss_debuglevel.c:70 +#: src/tools/sss_cache.c:670 src/tools/sss_debuglevel.c:70 msgid "The debug level to run with" msgstr "" @@ -1587,7 +1595,7 @@ #: src/tools/sss_groupadd.c:59 src/tools/sss_groupdel.c:54 #: src/tools/sss_groupmod.c:66 src/tools/sss_groupshow.c:680 #: src/tools/sss_userdel.c:152 src/tools/sss_usermod.c:79 -#: src/tools/sss_cache.c:704 +#: src/tools/sss_cache.c:716 msgid "Error setting the locale\n" msgstr "設定區域設置時發生錯誤\n" @@ -2017,102 +2025,102 @@ msgid "Transaction error. Could not modify user.\n" msgstr "處理事項發生錯誤。無法修改使用者。\n" -#: src/tools/sss_cache.c:214 +#: src/tools/sss_cache.c:218 msgid "No cache object matched the specified search\n" msgstr "" -#: src/tools/sss_cache.c:498 +#: src/tools/sss_cache.c:502 #, c-format msgid "Couldn't invalidate %1$s\n" msgstr "" -#: src/tools/sss_cache.c:505 +#: src/tools/sss_cache.c:509 #, c-format msgid "Couldn't invalidate %1$s %2$s\n" msgstr "" -#: src/tools/sss_cache.c:660 +#: src/tools/sss_cache.c:672 msgid "Invalidate all cached entries" msgstr "" -#: src/tools/sss_cache.c:662 +#: src/tools/sss_cache.c:674 msgid "Invalidate particular user" msgstr "" -#: src/tools/sss_cache.c:664 +#: src/tools/sss_cache.c:676 msgid "Invalidate all users" msgstr "" -#: src/tools/sss_cache.c:666 +#: src/tools/sss_cache.c:678 msgid "Invalidate particular group" msgstr "" -#: src/tools/sss_cache.c:668 +#: src/tools/sss_cache.c:680 msgid "Invalidate all groups" msgstr "" -#: src/tools/sss_cache.c:670 +#: src/tools/sss_cache.c:682 msgid "Invalidate particular netgroup" msgstr "" -#: src/tools/sss_cache.c:672 +#: src/tools/sss_cache.c:684 msgid "Invalidate all netgroups" msgstr "" -#: src/tools/sss_cache.c:674 +#: src/tools/sss_cache.c:686 msgid "Invalidate particular service" msgstr "" -#: src/tools/sss_cache.c:676 +#: src/tools/sss_cache.c:688 msgid "Invalidate all services" msgstr "" -#: src/tools/sss_cache.c:679 +#: src/tools/sss_cache.c:691 msgid "Invalidate particular autofs map" msgstr "" -#: src/tools/sss_cache.c:681 +#: src/tools/sss_cache.c:693 msgid "Invalidate all autofs maps" msgstr "" -#: src/tools/sss_cache.c:685 +#: src/tools/sss_cache.c:697 msgid "Invalidate particular SSH host" msgstr "" -#: src/tools/sss_cache.c:687 +#: src/tools/sss_cache.c:699 msgid "Invalidate all SSH hosts" msgstr "" -#: src/tools/sss_cache.c:691 +#: src/tools/sss_cache.c:703 msgid "Invalidate particular sudo rule" msgstr "" -#: src/tools/sss_cache.c:693 +#: src/tools/sss_cache.c:705 msgid "Invalidate all cached sudo rules" msgstr "" -#: src/tools/sss_cache.c:696 +#: src/tools/sss_cache.c:708 msgid "Only invalidate entries from a particular domain" msgstr "" -#: src/tools/sss_cache.c:750 +#: src/tools/sss_cache.c:762 msgid "" "Unexpected argument(s) provided, options that invalidate a single object " "only accept a single provided argument.\n" msgstr "" -#: src/tools/sss_cache.c:760 +#: src/tools/sss_cache.c:772 msgid "Please select at least one object to invalidate\n" msgstr "" -#: src/tools/sss_cache.c:840 +#: src/tools/sss_cache.c:852 #, c-format msgid "" "Could not open domain %1$s. If the domain is a subdomain (trusted domain), " "use fully qualified name instead of --domain/-d parameter.\n" msgstr "" -#: src/tools/sss_cache.c:844 +#: src/tools/sss_cache.c:856 msgid "Could not open available domains\n" msgstr "" diff -Nru sssd-1.15.0/README sssd-1.15.2/README --- sssd-1.15.0/README 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/README 1970-01-01 00:00:00.000000000 +0000 @@ -1,43 +0,0 @@ - - SSSD - System Security Services Daemon - -------------------------------------- - - Introduction - ------------ - SSSD provides a set of daemons to manage access to remote directories and - authentication mechanisms such as LDAP, Kerberos or FreeIPA. It provides - an NSS and PAM interface toward the system and a pluggable backend system - to connect to multiple different account sources. - - More information about SSSD can be found on its project page - - - - Building and installation - ------------------------- - Please see the file BUILD.txt for details - - Documentation - ------------- - The most up-to-date documentation can be found at - - - Licensing - --------- - Please see the file called COPYING. - - Contacts - -------- - There are several ways to contact us: - - * the sssd-devel mailing list: - Development of the System Security Services Daemon - - - * the sssd-users mailing list: - End-user discussions about the System Security Services Daemon - - - * the #sssd and #freeipa IRC channels on freenode: - irc://irc.freenode.net/sssd - irc://irc.freenode.net/freeipa - diff -Nru sssd-1.15.0/README.md sssd-1.15.2/README.md --- sssd-1.15.0/README.md 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/README.md 2017-04-06 10:29:21.000000000 +0000 @@ -0,0 +1,28 @@ +# SSSD - System Security Services Daemon + +## Introduction +SSSD provides a set of daemons to manage access to remote directories and +authentication mechanisms such as LDAP, Kerberos or FreeIPA. It provides +an NSS and PAM interface toward the system and a pluggable backend system +to connect to multiple different account sources. + +More information about SSSD can be found on its project page - +https://pagure.io/SSSD/sssd/ + +## Building and installation +Please see the file BUILD.txt for details + +## Documentation +The most up-to-date documentation can be found at https://fedorahosted.org/sssd/wiki/Documentation + +## Licensing +Please see the file called COPYING. + +## Contacts +There are several ways to contact us: + +* the sssd-devel mailing list: [Development of the System Security Services Daemon](https://fedorahosted.org/mailman/listinfo/sssd-devel) +* the sssd-users mailing list: [End-user discussions about the System Security Services Daemon](https://fedorahosted.org/mailman/listinfo/sssd-users) +* the #sssd and #freeipa IRC channels on freenode: + * irc://irc.freenode.net/sssd + * irc://irc.freenode.net/freeipa diff -Nru sssd-1.15.0/src/confdb/confdb.c sssd-1.15.2/src/confdb/confdb.c --- sssd-1.15.0/src/confdb/confdb.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/confdb/confdb.c 2017-03-15 16:53:24.000000000 +0000 @@ -828,6 +828,7 @@ char *default_domain; bool fqnames_default = false; int memcache_timeout; + bool enum_default; tmp_ctx = talloc_new(mem_ctx); if (!tmp_ctx) return ENOMEM; @@ -900,13 +901,6 @@ goto done; } - if (strcasecmp(domain->provider, "files") == 0) { - /* The files provider is not valid anymore */ - DEBUG(SSSDBG_FATAL_FAILURE, "The \"files\" provider is invalid\n"); - ret = EINVAL; - goto done; - } - if (strcasecmp(domain->provider, "local") == 0) { /* If this is the local provider, we need to ensure that * no other provider was specified for other types, since @@ -961,14 +955,24 @@ "Interpreting as true\n", domain->name); domain->enumerate = true; } else { /* assume the new format */ + enum_default = strcasecmp(domain->provider, "files") == 0 ? true : false; + ret = get_entry_as_bool(res->msgs[0], &domain->enumerate, - CONFDB_DOMAIN_ENUMERATE, 0); + CONFDB_DOMAIN_ENUMERATE, enum_default); if(ret != EOK) { DEBUG(SSSDBG_FATAL_FAILURE, "Invalid value for %s\n", CONFDB_DOMAIN_ENUMERATE); goto done; } } + + if (strcasecmp(domain->provider, "files") == 0) { + /* The password field must be reported as 'x', else pam_unix won't + * authenticate this entry. See man pwconv(8) for more details. + */ + domain->pwfield = "x"; + } + if (!domain->enumerate) { DEBUG(SSSDBG_TRACE_FUNC, "No enumeration for [%s]!\n", domain->name); } @@ -1328,6 +1332,16 @@ } tmp = ldb_msg_find_attr_as_string(res->msgs[0], + CONFDB_NSS_PWFIELD, NULL); + if (tmp != NULL) { + domain->pwfield = talloc_strdup(domain, tmp); + if (!domain->pwfield) { + ret = ENOMEM; + goto done; + } + } + + tmp = ldb_msg_find_attr_as_string(res->msgs[0], CONFDB_SUBDOMAIN_ENUMERATE, CONFDB_DEFAULT_SUBDOMAIN_ENUMERATE); if (tmp != NULL) { @@ -1629,3 +1643,185 @@ talloc_free(tmp_ctx); return ret; } + +#ifdef ADD_FILES_DOMAIN +static int confdb_has_files_domain(struct confdb_ctx *cdb) +{ + TALLOC_CTX *tmp_ctx = NULL; + struct ldb_dn *dn = NULL; + struct ldb_result *res = NULL; + static const char *attrs[] = { CONFDB_DOMAIN_ID_PROVIDER, NULL }; + const char *id_provider = NULL; + int ret; + unsigned int i; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + return ENOMEM; + } + + dn = ldb_dn_new(tmp_ctx, cdb->ldb, CONFDB_DOMAIN_BASEDN); + if (dn == NULL) { + ret = ENOMEM; + goto done; + } + + ret = ldb_search(cdb->ldb, tmp_ctx, &res, dn, LDB_SCOPE_ONELEVEL, + attrs, NULL); + if (ret != LDB_SUCCESS) { + ret = EIO; + goto done; + } + + for (i = 0; i < res->count; i++) { + id_provider = ldb_msg_find_attr_as_string(res->msgs[i], + CONFDB_DOMAIN_ID_PROVIDER, + NULL); + if (id_provider == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, + "The object [%s] doesn't have a id_provider\n", + ldb_dn_get_linearized(res->msgs[i]->dn)); + ret = EINVAL; + goto done; + } + + if (strcasecmp(id_provider, "files") == 0) { + break; + } + } + + ret = i < res->count ? EOK : ENOENT; +done: + talloc_free(tmp_ctx); + return ret; +} + +static int create_files_domain(struct confdb_ctx *cdb, + const char *name) +{ + TALLOC_CTX *tmp_ctx = NULL; + errno_t ret; + char *cdb_path = NULL; + const char *val[2] = { NULL, NULL }; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "talloc_new() failed\n"); + return ENOMEM; + } + + cdb_path = talloc_asprintf(tmp_ctx, CONFDB_DOMAIN_PATH_TMPL, name); + if (cdb_path == NULL) { + ret = ENOMEM; + goto done; + } + + val[0] = "files"; + ret = confdb_add_param(cdb, true, cdb_path, "id_provider", val); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Unable to add id_provider [%d]: %s\n", + ret, sss_strerror(ret)); + goto done; + } + + ret = EOK; +done: + talloc_free(tmp_ctx); + return ret; +} + +static int activate_files_domain(struct confdb_ctx *cdb, + const char *name) +{ + errno_t ret; + TALLOC_CTX *tmp_ctx; + char *monitor_domlist; + const char *domlist[2] = { NULL, NULL }; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + return ENOMEM; + } + + ret = confdb_get_string(cdb, tmp_ctx, + CONFDB_MONITOR_CONF_ENTRY, + CONFDB_MONITOR_ACTIVE_DOMAINS, + NULL, + &monitor_domlist); + if (ret != EOK) { + DEBUG(SSSDBG_FATAL_FAILURE, "Fatal error retrieving domains list!\n"); + goto done; + } + + if (monitor_domlist != NULL) { + domlist[0] = talloc_asprintf(tmp_ctx, "%s,%s", name, monitor_domlist); + if (domlist[0] == NULL) { + ret = ENOMEM; + goto done; + } + } else { + domlist[0] = name; + } + + ret = confdb_add_param(cdb, true, + CONFDB_MONITOR_CONF_ENTRY, + CONFDB_MONITOR_ACTIVE_DOMAINS, + domlist); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot extend the domain list [%d]: %s\n", + ret, sss_strerror(ret)); + return ret; + } + + ret = EOK; +done: + talloc_free(tmp_ctx); + return ret; +} +#endif /* ADD_FILES_DOMAIN */ + +int confdb_ensure_files_domain(struct confdb_ctx *cdb, + const char *implicit_files_dom_name) +{ +#ifndef ADD_FILES_DOMAIN + return EOK; +#else + errno_t ret; + bool enable_files; + + ret = confdb_get_bool(cdb, + CONFDB_MONITOR_CONF_ENTRY, + CONFDB_MONITOR_ENABLE_FILES_DOM, + true, &enable_files); + if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "Cannot get the value of %s assuming true\n", + CONFDB_MONITOR_ENABLE_FILES_DOM); + return ret; + } + + if (enable_files == false) { + DEBUG(SSSDBG_CONF_SETTINGS, "The implicit files domain is disabled\n"); + return EOK; + } + + ret = confdb_has_files_domain(cdb); + if (ret == EOK) { + DEBUG(SSSDBG_CONF_SETTINGS, "The files domain is already enabled\n"); + return EOK; + } else if (ret != ENOENT) { + DEBUG(SSSDBG_CRIT_FAILURE, "Error looking up the files domain\n"); + return ret; + } + + /* ENOENT, so let's add a files domain */ + ret = create_files_domain(cdb, implicit_files_dom_name); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Cannot add an implicit files domain\n"); + return ret; + } + + return activate_files_domain(cdb, implicit_files_dom_name); +#endif /* ADD_FILES_DOMAIN */ +} diff -Nru sssd-1.15.0/src/confdb/confdb.h sssd-1.15.2/src/confdb/confdb.h --- sssd-1.15.0/src/confdb/confdb.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/confdb/confdb.h 2017-03-15 16:53:24.000000000 +0000 @@ -40,7 +40,6 @@ #define CONFDB_DEFAULT_CFG_FILE_VER 2 #define CONFDB_FILE "config.ldb" -#define SSSD_DEFAULT_CONFIG_FILE SSSD_DEFAULT_CONF_DIR"/sssd.conf" #define SSSD_CONFIG_FILE SSSD_CONF_DIR"/sssd.conf" #define CONFDB_DEFAULT_CONFIG_DIR SSSD_CONF_DIR"/conf.d" #define SSSD_MIN_ID 1 @@ -74,6 +73,7 @@ #define CONFDB_MONITOR_USER_RUNAS "user" #define CONFDB_MONITOR_CERT_VERIFICATION "certificate_verification" #define CONFDB_MONITOR_DISABLE_NETLINK "disable_netlink" +#define CONFDB_MONITOR_ENABLE_FILES_DOM "enable_files_domain" /* Both monitor and domains */ #define CONFDB_NAME_REGEX "re_expression" @@ -88,6 +88,7 @@ #define CONFDB_RESPONDER_LOCAL_NEG_TIMEOUT "local_negative_timeout" #define CONFDB_RESPONDER_IDLE_TIMEOUT "responder_idle_timeout" #define CONFDB_RESPONDER_IDLE_DEFAULT_TIMEOUT 300 +#define CONFDB_RESPONDER_CACHE_FIRST "cache_first" /* NSS */ #define CONFDB_NSS_CONF_ENTRY "config/nss" @@ -249,6 +250,10 @@ * return cached data */ DOM_INACTIVE, + /** Domain is being updated. Responders should ignore cached data and + * always contact the DP + */ + DOM_INCONSISTENT, }; /** @@ -267,6 +272,7 @@ bool ignore_group_members; uint32_t id_min; uint32_t id_max; + const char *pwfield; bool cache_credentials; uint32_t cache_credentials_min_ff_length; @@ -369,6 +375,9 @@ int confdb_get_domains(struct confdb_ctx *cdb, struct sss_domain_info **domains); +int confdb_ensure_files_domain(struct confdb_ctx *cdb, + const char *implicit_files_dom_name); + /** * Get a null-terminated linked-list of all domain names * @param[in] mem_ctx The parent memory context for the value list diff -Nru sssd-1.15.0/src/confdb/confdb_setup.c sssd-1.15.2/src/confdb/confdb_setup.c --- sssd-1.15.0/src/confdb/confdb_setup.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/confdb/confdb_setup.c 2017-03-15 16:53:24.000000000 +0000 @@ -21,15 +21,21 @@ #include "config.h" #include -#include #include "util/util.h" #include "db/sysdb.h" #include "confdb.h" #include "confdb_private.h" #include "confdb_setup.h" #include "util/sss_ini.h" -#include "tools/tools_util.h" +#ifndef SSSD_FALLBACK_CONFIG_LDIF +#define SSSD_FALLBACK_CONFIG_LDIF \ +"dn: cn=config\n" \ +"version: 2\n\n" \ +"dn: cn=sssd,cn=config\n" \ +"cn: sssd\n" \ +"services: nss\n\n" +#endif /* SSSD_FALLBACK_CONFIG_LDIF */ static int confdb_test(struct confdb_ctx *cdb) { @@ -128,99 +134,39 @@ return EOK; } -static int confdb_init_db(const char *config_file, const char *config_dir, - struct confdb_ctx *cdb) +static int confdb_ldif_from_ini_file(TALLOC_CTX *mem_ctx, + const char *config_file, + const char *config_dir, + struct sss_ini_initdata *init_data, + const char **_timestr, + const char **_ldif) { - TALLOC_CTX *tmp_ctx; - int ret; - int sret = EOK; - int version; + errno_t ret; char timestr[21]; - bool in_transaction = false; - const char *config_ldif; - const char *vals[2] = { timestr, NULL }; - struct ldb_ldif *ldif; - struct sss_ini_initdata *init_data; - - tmp_ctx = talloc_new(cdb); - if (tmp_ctx == NULL) { - DEBUG(SSSDBG_FATAL_FAILURE, "Out of memory.\n"); - return ENOMEM; - } - - init_data = sss_ini_initdata_init(tmp_ctx); - if (!init_data) { - DEBUG(SSSDBG_FATAL_FAILURE, "Out of memory.\n"); - ret = ENOMEM; - goto done; - } - - /* Open config file */ - ret = sss_ini_config_file_open(init_data, config_file); - if (ret != EOK) { - DEBUG(SSSDBG_TRACE_FUNC, - "sss_ini_config_file_open failed: %s [%d]\n", strerror(ret), - ret); - if (ret != ENOENT) { - /* Anything other than ENOENT is unrecoverable */ - goto done; - } else { - /* Copy the default configuration file to the standard location - * and then retry - */ - ret = copy_file_secure(SSSD_DEFAULT_CONFIG_FILE, - SSSD_CONFIG_FILE, - 0600, - getuid(), - getgid(), - false); - if (ret != EOK) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Could not copy default configuration: %s", - sss_strerror(ret)); - /* sss specific error denoting missing configuration file */ - ret = ERR_MISSING_CONF; - goto done; - } - - /* Try again */ - ret = sss_ini_config_file_open(init_data, config_file); - if (ret != EOK) { - DEBUG(SSSDBG_TRACE_FUNC, - "sss_ini_config_file_open(default) failed: %s [%d]\n", - strerror(ret), ret); - if (ret == ENOENT) { - /* sss specific error denoting missing configuration file */ - ret = ERR_MISSING_CONF; - } - goto done; - } - } - } + int version; ret = sss_ini_config_access_check(init_data); if (ret != EOK) { DEBUG(SSSDBG_CRIT_FAILURE, "Permission check on config file failed.\n"); - ret = EPERM; - goto done; + return EPERM; } ret = sss_ini_get_stat(init_data); if (ret != EOK) { + ret = errno; DEBUG(SSSDBG_FATAL_FAILURE, "Status check on config file failed.\n"); - ret = errno; - goto done; + return ret; } errno = 0; - ret = sss_ini_get_mtime(init_data, sizeof(timestr), timestr); if (ret <= 0 || ret >= (int)sizeof(timestr)) { DEBUG(SSSDBG_FATAL_FAILURE, "Failed to convert time_t to string ??\n"); ret = errno ? errno : EFAULT; + return ret; } /* FIXME: Determine if the conf file or any snippet has changed @@ -231,7 +177,7 @@ ret = sss_ini_get_config(init_data, config_file, config_dir); if (ret != EOK) { DEBUG(SSSDBG_FATAL_FAILURE, "Failed to load configuration\n"); - goto done; + return ret; } ret = sss_ini_call_validators(init_data, @@ -246,7 +192,7 @@ if (ret != EOK) { DEBUG(SSSDBG_FATAL_FAILURE, "Internal error determining config_file_version\n"); - goto done; + return ret; } ret = sss_ini_check_config_obj(init_data); @@ -262,21 +208,108 @@ if (ret != EOK) { DEBUG(SSSDBG_FATAL_FAILURE, "Config file version could not be determined\n"); - goto done; + return ret; } else if (version < CONFDB_VERSION_INT) { DEBUG(SSSDBG_FATAL_FAILURE, "Config file is an old version. " "Please run configuration upgrade script.\n"); - ret = EINVAL; - goto done; + return EINVAL; } else if (version > CONFDB_VERSION_INT) { DEBUG(SSSDBG_FATAL_FAILURE, "Config file version is newer than confdb\n"); - ret = EINVAL; + return EINVAL; + } + } + + ret = sss_confdb_create_ldif(mem_ctx, init_data, _ldif); + if (ret != EOK) { + DEBUG(SSSDBG_FATAL_FAILURE, "Could not create LDIF for confdb\n"); + return ret; + } + + *_timestr = talloc_strdup(mem_ctx, timestr); + if (*_timestr == NULL) { + return ENOMEM; + } + + return EOK; +} + +static int confdb_fallback_ldif(TALLOC_CTX *mem_ctx, + const char **_timestr, + const char **_ldif) +{ +#ifndef ADD_FILES_DOMAIN + return ERR_MISSING_CONF; +#else + *_timestr = talloc_strdup(mem_ctx, "1"); + *_ldif = talloc_strdup(mem_ctx, SSSD_FALLBACK_CONFIG_LDIF); + if (*_timestr == NULL || *_ldif == NULL) { + return ENOMEM; + } + + return EOK; +#endif +} + +static int confdb_init_db(const char *config_file, const char *config_dir, + struct confdb_ctx *cdb) +{ + TALLOC_CTX *tmp_ctx; + int ret; + int sret = EOK; + bool in_transaction = false; + const char *timestr = NULL; + const char *config_ldif; + const char *vals[2] = { NULL, NULL }; + struct ldb_ldif *ldif; + struct sss_ini_initdata *init_data; + + tmp_ctx = talloc_new(cdb); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Out of memory.\n"); + return ENOMEM; + } + + init_data = sss_ini_initdata_init(tmp_ctx); + if (!init_data) { + DEBUG(SSSDBG_FATAL_FAILURE, "Out of memory.\n"); + ret = ENOMEM; + goto done; + } + + /* Open config file */ + ret = sss_ini_config_file_open(init_data, config_file); + if (ret == EOK) { + ret = confdb_ldif_from_ini_file(tmp_ctx, + config_file, + config_dir, + init_data, + ×tr, + &config_ldif); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot convert INI to LDIF [%d]: [%s]\n", + ret, sss_strerror(ret)); + goto done; + } + } else if (ret == ENOENT) { + ret = confdb_fallback_ldif(tmp_ctx, ×tr, &config_ldif); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot create a fallback configuration [%d]: [%s]\n", + ret, sss_strerror(ret)); goto done; } + } else { + DEBUG(SSSDBG_CONF_SETTINGS, + "sss_ini_config_file_open failed: %s [%d]\n", sss_strerror(ret), + ret); + goto done; } + DEBUG(SSSDBG_CONF_SETTINGS, "LDIF file to import: \n%s\n", config_ldif); + /* Set up a transaction to replace the configuration */ ret = ldb_transaction_start(cdb->ldb); if (ret != LDB_SUCCESS) { @@ -296,20 +329,12 @@ goto done; } - ret = sss_confdb_create_ldif(tmp_ctx, init_data, &config_ldif); - if (ret != EOK) { - DEBUG(SSSDBG_FATAL_FAILURE, "Could not create LDIF for confdb\n"); - goto done; - } - - DEBUG(SSSDBG_TRACE_LIBS, "LDIF file to import: \n%s\n", config_ldif); - while ((ldif = ldb_ldif_read_string(cdb->ldb, &config_ldif))) { ret = ldb_add(cdb->ldb, ldif->msg); if (ret != LDB_SUCCESS) { DEBUG(SSSDBG_FATAL_FAILURE, - "Failed to initialize DB (%d,[%s]), aborting!\n", - ret, ldb_errstring(cdb->ldb)); + "Failed to initialize DB (%d,[%s]), aborting!\n", + ret, ldb_errstring(cdb->ldb)); ret = EIO; goto done; } @@ -319,10 +344,11 @@ /* now store the lastUpdate time so that we do not re-init if nothing * changed on restart */ + vals[0] = timestr; ret = confdb_add_param(cdb, true, "config", "lastUpdate", vals); if (ret != EOK) { DEBUG(SSSDBG_FATAL_FAILURE, - "Failed to set last update time on db!\n"); + "Failed to set last update time on db!\n"); goto done; } diff -Nru sssd-1.15.0/src/config/cfg_rules.ini sssd-1.15.2/src/config/cfg_rules.ini --- sssd-1.15.0/src/config/cfg_rules.ini 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/config/cfg_rules.ini 2017-03-15 16:53:24.000000000 +0000 @@ -41,6 +41,7 @@ option = override_space option = config_file_version option = disable_netlink +option = enable_files_domain [rule/allowed_nss_options] validator = ini_allowed_options @@ -58,6 +59,7 @@ option = client_idle_timeout option = description option = responder_idle_timeout +option = cache_first # Name service option = user_attributes @@ -96,6 +98,7 @@ option = client_idle_timeout option = description option = responder_idle_timeout +option = cache_first # Authentication service option = offline_credentials_expiration @@ -130,6 +133,7 @@ option = client_idle_timeout option = description option = responder_idle_timeout +option = cache_first # sudo service option = sudo_timed @@ -151,6 +155,7 @@ option = client_idle_timeout option = description option = responder_idle_timeout +option = cache_first # autofs service option = autofs_negative_timeout @@ -171,6 +176,7 @@ option = client_idle_timeout option = description option = responder_idle_timeout +option = cache_first # ssh service option = ssh_hash_known_hosts @@ -193,6 +199,7 @@ option = client_idle_timeout option = description option = responder_idle_timeout +option = cache_first # PAC responder option = allowed_uids @@ -214,6 +221,7 @@ option = client_idle_timeout option = description option = responder_idle_timeout +option = cache_first # InfoPipe responder option = allowed_uids @@ -238,6 +246,7 @@ option = containers_nest_level option = max_secrets option = max_payload_size +option = responder_idle_timeout [rule/allowed_sec_users_options] validator = ini_allowed_options diff -Nru sssd-1.15.0/src/config/etc/sssd.api.conf sssd-1.15.2/src/config/etc/sssd.api.conf --- sssd-1.15.0/src/config/etc/sssd.api.conf 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/config/etc/sssd.api.conf 2017-03-15 16:53:24.000000000 +0000 @@ -14,6 +14,7 @@ fd_limit = int, None, false client_idle_timeout = int, None, false responder_idle_timeout = int, None, false +cache_first = int, None, false description = str, None, false [sssd] @@ -30,6 +31,7 @@ certificate_verification = str, None, false override_space = str, None, false disable_netlink = bool, None, false +enable_files_domain = str, None, false [nss] # Name service diff -Nru sssd-1.15.0/src/config/setup.py sssd-1.15.2/src/config/setup.py --- sssd-1.15.0/src/config/setup.py 2017-01-25 15:43:05.554193791 +0000 +++ sssd-1.15.2/src/config/setup.py 2017-03-15 16:57:50.873721050 +0000 @@ -25,8 +25,8 @@ setup( name='SSSDConfig', - version='1.15.0', + version='1.15.2', license='GPLv3+', - url='http://fedorahosted.org/sssd', + url='https://pagure.io/SSSD/sssd/', packages=['SSSDConfig'], ) diff -Nru sssd-1.15.0/src/config/setup.py.in sssd-1.15.2/src/config/setup.py.in --- sssd-1.15.0/src/config/setup.py.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/config/setup.py.in 2017-03-15 16:53:24.000000000 +0000 @@ -27,6 +27,6 @@ name='SSSDConfig', version='@VERSION@', license='GPLv3+', - url='http://fedorahosted.org/sssd', + url='https://pagure.io/SSSD/sssd/', packages=['SSSDConfig'], ) diff -Nru sssd-1.15.0/src/config/SSSDConfig/__init__.py sssd-1.15.2/src/config/SSSDConfig/__init__.py --- sssd-1.15.0/src/config/SSSDConfig/__init__.py 2017-01-25 15:43:05.586193922 +0000 +++ sssd-1.15.2/src/config/SSSDConfig/__init__.py 2017-03-15 16:57:50.901721161 +0000 @@ -51,6 +51,7 @@ 'fd_limit' : _('The number of file descriptors that may be opened by this responder'), 'client_idle_timeout' : _('Idle time before automatic disconnection of a client'), 'responder_idle_timeout' : _('Idle time before automatic shutdown of the responder'), + 'cache_first': _('Always query all the caches before querying the Data Providers'), # [sssd] 'services' : _('SSSD Services to start'), @@ -64,6 +65,7 @@ 'certificate_verification' : _('Tune certificate verification'), 'override_space': _('All spaces in group or user names will be replaced with this character'), 'disable_netlink' : _('Tune sssd to honor or ignore netlink state changes'), + 'enable_files_domain' : _('Enable or disable the implicit files domain'), # [nss] 'enum_cache_timeout' : _('Enumeration cache timeout length (seconds)'), diff -Nru sssd-1.15.0/src/config/SSSDConfig/__init__.py.in sssd-1.15.2/src/config/SSSDConfig/__init__.py.in --- sssd-1.15.0/src/config/SSSDConfig/__init__.py.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/config/SSSDConfig/__init__.py.in 2017-03-15 16:53:24.000000000 +0000 @@ -51,6 +51,7 @@ 'fd_limit' : _('The number of file descriptors that may be opened by this responder'), 'client_idle_timeout' : _('Idle time before automatic disconnection of a client'), 'responder_idle_timeout' : _('Idle time before automatic shutdown of the responder'), + 'cache_first': _('Always query all the caches before querying the Data Providers'), # [sssd] 'services' : _('SSSD Services to start'), @@ -64,6 +65,7 @@ 'certificate_verification' : _('Tune certificate verification'), 'override_space': _('All spaces in group or user names will be replaced with this character'), 'disable_netlink' : _('Tune sssd to honor or ignore netlink state changes'), + 'enable_files_domain' : _('Enable or disable the implicit files domain'), # [nss] 'enum_cache_timeout' : _('Enumeration cache timeout length (seconds)'), diff -Nru sssd-1.15.0/src/config/SSSDConfigTest.py sssd-1.15.2/src/config/SSSDConfigTest.py --- sssd-1.15.0/src/config/SSSDConfigTest.py 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/config/SSSDConfigTest.py 2017-03-15 16:53:24.000000000 +0000 @@ -309,10 +309,12 @@ 'fd_limit', 'client_idle_timeout', 'responder_idle_timeout', + 'cache_first', 'description', 'certificate_verification', 'override_space', - 'disable_netlink'] + 'disable_netlink', + 'enable_files_domain'] self.assertTrue(type(options) == dict, "Options should be a dictionary") diff -Nru sssd-1.15.0/src/conf_macros.m4 sssd-1.15.2/src/conf_macros.m4 --- sssd-1.15.0/src/conf_macros.m4 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/conf_macros.m4 2017-03-15 16:53:24.000000000 +0000 @@ -903,3 +903,16 @@ AC_SUBST(secdbpath) AC_DEFINE_UNQUOTED(SECRETS_DB_PATH, "$config_secdbpath", [Path to the SSSD Secrets databases]) ]) + +AC_ARG_ENABLE([files-domain], + [AS_HELP_STRING([--enable-files-domain], + [If this feature is enabled, then SSSD always enables + a domain with id_provider=files even if the domain + is not specified in the config file + [default=no]])], + [enable_files_domain=$enableval], + [enable_files_domain=no]) +AS_IF([test x$enable_files_domain = xyes], + AC_DEFINE_UNQUOTED([ADD_FILES_DOMAIN], [1], + [whether to build unconditionally enable files domain])) +AM_CONDITIONAL([ADD_FILES_DOMAIN], [test x$enable_files_domain = xyes]) diff -Nru sssd-1.15.0/src/db/sysdb.h sssd-1.15.2/src/db/sysdb.h --- sssd-1.15.0/src/db/sysdb.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/db/sysdb.h 2017-03-15 16:53:24.000000000 +0000 @@ -658,6 +658,7 @@ int sysdb_getpwupn(TALLOC_CTX *mem_ctx, struct sss_domain_info *domain, + bool domain_scope, const char *upn, struct ldb_result **res); @@ -832,12 +833,14 @@ int sysdb_search_user_by_upn_res(TALLOC_CTX *mem_ctx, struct sss_domain_info *domain, + bool domain_scope, const char *upn, const char **attrs, struct ldb_result **out_res); int sysdb_search_user_by_upn(TALLOC_CTX *mem_ctx, struct sss_domain_info *domain, + bool domain_scope, const char *sid_str, const char **attrs, struct ldb_message **msg); @@ -874,6 +877,15 @@ struct sysdb_attrs *attrs, int mod_op); +/* User/group invalidation of cache by direct writing to persistent cache + * WARNING: This function can cause performance issue!! + * is_user = true --> user invalidation + * is_user = false --> group invalidation + */ +int sysdb_invalidate_cache_entry(struct sss_domain_info *domain, + const char *name, + bool is_user); + /* Replace user attrs */ int sysdb_set_user_attr(struct sss_domain_info *domain, const char *name, @@ -1309,10 +1321,4 @@ struct sysdb_attrs *dest_attrs, const char *dest_name); -errno_t sysdb_try_to_find_expected_dn(struct sss_domain_info *dom, - const char *domain_component_name, - const char *ldap_search_base, - struct sysdb_attrs **usr_attrs, - size_t count, - struct sysdb_attrs **exp_usr); #endif /* __SYS_DB_H__ */ diff -Nru sssd-1.15.0/src/db/sysdb_ops.c sssd-1.15.2/src/db/sysdb_ops.c --- sssd-1.15.0/src/db/sysdb_ops.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/db/sysdb_ops.c 2017-03-15 16:53:24.000000000 +0000 @@ -116,6 +116,7 @@ return EOK; } /* fall through */ + SSS_ATTRIBUTE_FALLTHROUGH; default: DEBUG(SSSDBG_CRIT_FAILURE, "LDB Error: %s(%d)\nError Message: [%s]\n", ldb_strerror(ret), ret, ldb_errstring(ldb)); @@ -537,6 +538,7 @@ int sysdb_search_user_by_upn_res(TALLOC_CTX *mem_ctx, struct sss_domain_info *domain, + bool domain_scope, const char *upn, const char **attrs, struct ldb_result **out_res) @@ -554,7 +556,11 @@ goto done; } - base_dn = sysdb_base_dn(domain->sysdb, tmp_ctx); + if (domain_scope == true) { + base_dn = sysdb_user_base_dn(tmp_ctx, domain); + } else { + base_dn = sysdb_base_dn(domain->sysdb, tmp_ctx); + } if (base_dn == NULL) { ret = ENOMEM; goto done; @@ -598,6 +604,7 @@ int sysdb_search_user_by_upn(TALLOC_CTX *mem_ctx, struct sss_domain_info *domain, + bool domain_scope, const char *upn, const char **attrs, struct ldb_message **msg) @@ -612,7 +619,7 @@ goto done; } - ret = sysdb_search_user_by_upn_res(tmp_ctx, domain, upn, attrs, &res); + ret = sysdb_search_user_by_upn_res(tmp_ctx, domain, domain_scope, upn, attrs, &res); if (ret == ENOENT) { DEBUG(SSSDBG_TRACE_FUNC, "No entry with upn [%s] found.\n", upn); goto done; @@ -4479,6 +4486,7 @@ struct sss_domain_info *domain, const char *filter, const char **attrs, + bool expect_only_one_result, struct ldb_result **_res) { TALLOC_CTX *tmp_ctx; @@ -4512,7 +4520,7 @@ goto done; } - if (res->count > 1) { + if (res->count > 1 && expect_only_one_result) { DEBUG(SSSDBG_CRIT_FAILURE, "Search with filter [%s] returned more than one object.\n", filter); @@ -4548,6 +4556,7 @@ const char *filter_tmpl, const char *str, const char **attrs, + bool expect_only_one_result, struct ldb_result **_res) { char *filter; @@ -4558,7 +4567,8 @@ return ENOMEM; } - ret = sysdb_search_object_attr(mem_ctx, domain, filter, attrs, _res); + ret = sysdb_search_object_attr(mem_ctx, domain, filter, attrs, + expect_only_one_result, _res); talloc_free(filter); return ret; @@ -4578,7 +4588,7 @@ return ENOMEM; } - ret = sysdb_search_object_attr(mem_ctx, domain, filter, attrs, res); + ret = sysdb_search_object_attr(mem_ctx, domain, filter, attrs, true, res); talloc_free(filter); return ret; @@ -4614,7 +4624,7 @@ goto done; } - ret = sysdb_search_object_attr(mem_ctx, domain, filter, attrs, res); + ret = sysdb_search_object_attr(mem_ctx, domain, filter, attrs, true, res); done: talloc_free(tmp_ctx); @@ -4628,7 +4638,7 @@ struct ldb_result **res) { return sysdb_search_object_by_str_attr(mem_ctx, domain, SYSDB_SID_FILTER, - sid_str, attrs, res); + sid_str, attrs, true, res); } errno_t sysdb_search_object_by_uuid(TALLOC_CTX *mem_ctx, @@ -4638,7 +4648,7 @@ struct ldb_result **res) { return sysdb_search_object_by_str_attr(mem_ctx, domain, SYSDB_UUID_FILTER, - uuid_str, attrs, res); + uuid_str, attrs, true, res); } errno_t sysdb_search_object_by_cert(TALLOC_CTX *mem_ctx, @@ -4659,7 +4669,7 @@ ret = sysdb_search_object_by_str_attr(mem_ctx, domain, SYSDB_USER_CERT_FILTER, - user_filter, attrs, res); + user_filter, attrs, false, res); talloc_free(user_filter); return ret; @@ -5005,3 +5015,68 @@ talloc_free(tmp_ctx); return ret; } + +/* User/group invalidation of cache by direct writing to persistent cache + * WARNING: This function can cause performance issue!! + * is_user = true --> user invalidation + * is_user = false --> group invalidation + */ +int sysdb_invalidate_cache_entry(struct sss_domain_info *domain, + const char *name, + bool is_user) +{ + TALLOC_CTX *tmp_ctx; + struct sysdb_ctx *sysdb = domain->sysdb; + struct ldb_dn *entry_dn = NULL; + struct sysdb_attrs *attrs = NULL; + errno_t ret; + + tmp_ctx = talloc_new(NULL); + if (!tmp_ctx) { + return ENOMEM; + } + + if (is_user == true) { + entry_dn = sysdb_user_dn(tmp_ctx, domain, name); + } else { + entry_dn = sysdb_group_dn(tmp_ctx, domain, name); + } + + if (entry_dn == NULL) { + ret = ENOMEM; + goto done; + } + + attrs = sysdb_new_attrs(tmp_ctx); + if (attrs == NULL) { + DEBUG(SSSDBG_MINOR_FAILURE, "Could not create sysdb attributes\n"); + ret = ENOMEM; + goto done; + } + + ret = sysdb_attrs_add_time_t(attrs, SYSDB_CACHE_EXPIRE, 1); + if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "Could not add expiration time to attributes\n"); + goto done; + } + + ret = sysdb_set_cache_entry_attr(sysdb->ldb, entry_dn, + attrs, SYSDB_MOD_REP); + if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "Cannot set attrs for %s, %d [%s]\n", + ldb_dn_get_linearized(entry_dn), ret, sss_strerror(ret)); + goto done; + } + + DEBUG(SSSDBG_FUNC_DATA, + "Cache entry [%s] has been invalidated.\n", + ldb_dn_get_linearized(entry_dn)); + + ret = EOK; + +done: + talloc_zfree(tmp_ctx); + return ret; +} diff -Nru sssd-1.15.0/src/db/sysdb_private.h sssd-1.15.2/src/db/sysdb_private.h --- sssd-1.15.0/src/db/sysdb_private.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/db/sysdb_private.h 2017-03-15 16:53:24.000000000 +0000 @@ -190,6 +190,7 @@ bool mpg, bool enumerate, const char *forest, + const char **upn_suffixes, uint32_t trust_direction); /* Helper functions to deal with the timestamp cache should not be used diff -Nru sssd-1.15.0/src/db/sysdb_search.c sssd-1.15.2/src/db/sysdb_search.c --- sssd-1.15.0/src/db/sysdb_search.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/db/sysdb_search.c 2017-03-15 16:53:24.000000000 +0000 @@ -454,6 +454,7 @@ int sysdb_getpwupn(TALLOC_CTX *mem_ctx, struct sss_domain_info *domain, + bool domain_scope, const char *upn, struct ldb_result **_res) { @@ -468,7 +469,7 @@ return ENOMEM; } - ret = sysdb_search_user_by_upn_res(tmp_ctx, domain, upn, attrs, &res); + ret = sysdb_search_user_by_upn_res(tmp_ctx, domain, domain_scope, upn, attrs, &res); if (ret != EOK && ret != ENOENT) { DEBUG(SSSDBG_OP_FAILURE, "sysdb_search_user_by_upn_res() failed.\n"); goto done; @@ -1322,7 +1323,7 @@ return ENOMEM; } - ret = sysdb_search_user_by_upn(tmp_ctx, domain, upn, attrs, &msg); + ret = sysdb_search_user_by_upn(tmp_ctx, domain, false, upn, attrs, &msg); if (ret != EOK && ret != ENOENT) { DEBUG(SSSDBG_OP_FAILURE, "sysdb_search_user_by_upn() failed.\n"); goto done; @@ -2113,7 +2114,7 @@ } if (res->count == 0) { - ret = sysdb_search_user_by_upn(tmp_ctx, domain, name_or_upn_or_sid, + ret = sysdb_search_user_by_upn(tmp_ctx, domain, false, name_or_upn_or_sid, NULL, &msg); if (ret == ENOENT) { ret = sysdb_search_user_by_sid_str(tmp_ctx, domain, diff -Nru sssd-1.15.0/src/db/sysdb_subdomains.c sssd-1.15.2/src/db/sysdb_subdomains.c --- sssd-1.15.0/src/db/sysdb_subdomains.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/db/sysdb_subdomains.c 2017-03-15 16:53:24.000000000 +0000 @@ -32,6 +32,7 @@ bool mpg, bool enumerate, const char *forest, + const char **upn_suffixes, uint32_t trust_direction) { struct sss_domain_info *dom; @@ -108,6 +109,14 @@ } } + if (upn_suffixes != NULL) { + dom->upn_suffixes = dup_string_list(dom, upn_suffixes); + if (dom->upn_suffixes == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "Failed to copy UPN upn_suffixes.\n"); + goto fail; + } + } + dom->enumerate = enumerate; dom->fqnames = true; dom->mpg = mpg; @@ -442,7 +451,7 @@ if (dom == NULL) { dom = new_subdomain(domain, domain, name, realm, flat, id, mpg, enumerate, forest, - trust_direction); + upn_suffixes, trust_direction); if (dom == NULL) { ret = ENOMEM; goto done; @@ -1144,335 +1153,3 @@ talloc_free(tmp_ctx); return ret; } - -static errno_t match_cn_users(TALLOC_CTX *tmp_ctx, - struct sysdb_attrs **usr_attrs, - size_t count, - const char *dom_basedn, - struct sysdb_attrs **_result) -{ - errno_t ret; - const char *orig_dn; - size_t dn_len; - struct sysdb_attrs *result = NULL; - const char *result_dn_str = NULL; - char *cn_users_basedn; - size_t cn_users_basedn_len; - - cn_users_basedn = talloc_asprintf(tmp_ctx, "%s%s", "cn=users,", dom_basedn); - if (cn_users_basedn == NULL) { - ret = ENOMEM; - goto done; - } - cn_users_basedn_len = strlen(cn_users_basedn); - DEBUG(SSSDBG_TRACE_ALL, "cn=users baseDN is [%s].\n", cn_users_basedn); - - for (size_t c = 0; c < count; c++) { - ret = sysdb_attrs_get_string(usr_attrs[c], SYSDB_ORIG_DN, &orig_dn); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "sysdb_attrs_get_string failed.\n"); - goto done; - } - dn_len = strlen(orig_dn); - - if (dn_len > cn_users_basedn_len - && strcasecmp(orig_dn + (dn_len - cn_users_basedn_len), - cn_users_basedn) == 0) { - DEBUG(SSSDBG_TRACE_ALL, - "Found matching dn [%s].\n", orig_dn); - if (result != NULL) { - DEBUG(SSSDBG_OP_FAILURE, - "Found 2 matching DN [%s] and [%s], expecting only 1.\n", - result_dn_str, orig_dn); - ret = EINVAL; - goto done; - } - result = usr_attrs[c]; - result_dn_str = orig_dn; - } - } - - ret = EOK; -done: - *_result = result; - return ret; -} - -static errno_t match_non_dc_comp(TALLOC_CTX *tmp_ctx, - struct sss_domain_info *dom, - struct sysdb_attrs **usr_attrs, - size_t count, - struct ldb_dn *ldb_basedn, - const char *basedn, - const char *domain_component_name, - struct sysdb_attrs **_result) -{ - errno_t ret; - const char *orig_dn; - size_t orig_dn_len; - size_t basedn_len; - struct ldb_context *ldb_ctx; - struct ldb_dn *ldb_orig_dn; - int dn_comp_num; - int basedn_comp_num; - const char *component_name; - struct sysdb_attrs *result = NULL; - const char *result_dn_str = NULL; - - ldb_ctx = sysdb_ctx_get_ldb(dom->sysdb); - if (ldb_ctx == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "Missing ldb context.\n"); - ret = EINVAL; - goto done; - } - - basedn_len = strlen(basedn); - - basedn_comp_num = ldb_dn_get_comp_num(ldb_basedn); - basedn_comp_num++; - - for (size_t c = 0; c < count; c++) { - ret = sysdb_attrs_get_string(usr_attrs[c], SYSDB_ORIG_DN, &orig_dn); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "sysdb_attrs_get_string failed.\n"); - goto done; - } - orig_dn_len = strlen(orig_dn); - - if (orig_dn_len > basedn_len - /* Does the user's original DN with the non-domain part - * stripped match the domain base DN? - */ - && strcasecmp(orig_dn + (orig_dn_len - basedn_len), - basedn) == 0) { - ldb_orig_dn = ldb_dn_new(tmp_ctx, ldb_ctx, orig_dn); - if (ldb_orig_dn == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "ldb_dn_new failed"); - ret = ENOMEM; - goto done; - } - - dn_comp_num = ldb_dn_get_comp_num(ldb_orig_dn); - if (dn_comp_num > basedn_comp_num) { - component_name = ldb_dn_get_component_name(ldb_orig_dn, - (dn_comp_num - basedn_comp_num)); - DEBUG(SSSDBG_TRACE_ALL, "Comparing [%s] and [%s].\n", - component_name, - domain_component_name); - /* If the component is NOT a DC component, then the entry - * must come from our domain, perhaps from a child container. - * If it matched the DC component, the entry was from a child - * subdomain different from this one. - */ - if (component_name != NULL - && strcasecmp(component_name, - domain_component_name) != 0) { - DEBUG(SSSDBG_TRACE_ALL, - "Found matching dn [%s].\n", orig_dn); - if (result != NULL) { - DEBUG(SSSDBG_OP_FAILURE, - "Found 2 matching DN [%s] and [%s], " - "expecting only 1.\n", result_dn_str, orig_dn); - ret = EINVAL; - goto done; - } - result = usr_attrs[c]; - result_dn_str = orig_dn; - } - } - } - } - - ret = EOK; - *_result = result; -done: - return ret; -} - -static errno_t match_basedn(TALLOC_CTX *tmp_ctx, - struct sss_domain_info *dom, - struct sysdb_attrs **usr_attrs, - size_t count, - const char *dom_basedn, - const char *domain_component_name, - struct sysdb_attrs **_result) -{ - struct ldb_context *ldb_ctx; - struct ldb_dn *ldb_dom_basedn; - - ldb_ctx = sysdb_ctx_get_ldb(dom->sysdb); - if (ldb_ctx == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "Missing ldb context.\n"); - return EINVAL; - } - - - ldb_dom_basedn = ldb_dn_new(tmp_ctx, ldb_ctx, dom_basedn); - if (ldb_dom_basedn == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "ldb_dn_new failed.\n"); - return ENOMEM; - } - - return match_non_dc_comp(tmp_ctx, dom, - usr_attrs, count, - ldb_dom_basedn, dom_basedn, - domain_component_name, - _result); -} - -static errno_t match_search_base(TALLOC_CTX *tmp_ctx, - struct sss_domain_info *dom, - const char *domain_component_name, - const char *domain_search_base, - struct sysdb_attrs **usr_attrs, - size_t count, - struct sysdb_attrs **_result) -{ - errno_t ret; - bool ok; - const char *search_base; - struct ldb_context *ldb_ctx; - struct sysdb_attrs *result = NULL; - struct ldb_dn *ldb_search_base; - int search_base_comp_num; - int non_dc_comp_num; - const char *component_name; - - ldb_ctx = sysdb_ctx_get_ldb(dom->sysdb); - if (ldb_ctx == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "Missing ldb context.\n"); - ret = EINVAL; - goto done; - } - - ldb_search_base = ldb_dn_new(tmp_ctx, ldb_ctx, domain_search_base); - if (ldb_search_base == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "ldb_dn_new failed.\n"); - ret = ENOMEM; - goto done; - } - - /* strip non-DC components from the search base */ - search_base_comp_num = ldb_dn_get_comp_num(ldb_search_base); - for (non_dc_comp_num = 0; - non_dc_comp_num < search_base_comp_num; - non_dc_comp_num++) { - - component_name = ldb_dn_get_component_name(ldb_search_base, - non_dc_comp_num); - if (strcasecmp(domain_component_name, component_name) == 0) { - break; - } - } - - if (non_dc_comp_num == search_base_comp_num) { - /* The search base does not have any non-DC components, the search wouldn't - * match anyway - */ - ret = EOK; - *_result = NULL; - goto done; - } - - ok = ldb_dn_remove_child_components(ldb_search_base, non_dc_comp_num); - if (!ok) { - ret = EINVAL; - goto done; - } - - search_base = ldb_dn_get_linearized(ldb_search_base); - if (search_base == NULL) { - ret = ENOMEM; - goto done; - } - - ret = match_cn_users(tmp_ctx, usr_attrs, count, search_base, &result); - if (ret != EOK) { - goto done; - } - - if (result == NULL) { - ret = match_non_dc_comp(tmp_ctx, dom, - usr_attrs, count, - ldb_search_base, search_base, - domain_component_name, - &result); - if (ret != EOK) { - goto done; - } - } - - ret = EOK; - *_result = result; -done: - return ret; -} - -errno_t sysdb_try_to_find_expected_dn(struct sss_domain_info *dom, - const char *domain_component_name, - const char *domain_search_base, - struct sysdb_attrs **usr_attrs, - size_t count, - struct sysdb_attrs **exp_usr) -{ - char *dom_basedn; - int ret; - TALLOC_CTX *tmp_ctx; - struct sysdb_attrs *result = NULL; - - if (dom == NULL || domain_component_name == NULL - || domain_search_base == NULL - || usr_attrs == NULL || count == 0) { - return EINVAL; - } - - tmp_ctx = talloc_new(NULL); - if (tmp_ctx == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "talloc_new failed.\n"); - return ENOMEM; - } - - ret = domain_to_basedn(tmp_ctx, dom->name, &dom_basedn); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "domain_to_basedn failed.\n"); - ret = EINVAL; - goto done; - } - - ret = match_cn_users(tmp_ctx, usr_attrs, count, dom_basedn, &result); - if (ret != EOK) { - goto done; - } - - if (result == NULL) { - ret = match_basedn(tmp_ctx, dom, usr_attrs, - count, dom_basedn, domain_component_name, - &result); - if (ret != EOK) { - goto done; - } - } - - if (result == NULL) { - ret = match_search_base(tmp_ctx, dom, domain_component_name, - domain_search_base, usr_attrs, count, - &result); - if (ret != EOK) { - goto done; - } - } - - if (result == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "No matching DN found.\n"); - ret = ENOENT; - goto done; - } - - *exp_usr = result; - - ret = EOK; -done: - talloc_free(tmp_ctx); - - return ret; -} diff -Nru sssd-1.15.0/src/db/sysdb_sudo.c sssd-1.15.2/src/db/sysdb_sudo.c --- sssd-1.15.0/src/db/sysdb_sudo.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/db/sysdb_sudo.c 2017-03-15 16:53:24.000000000 +0000 @@ -857,7 +857,6 @@ { TALLOC_CTX *tmp_ctx; const char **users = NULL; - const char *lowered = NULL; errno_t ret; if (domain->case_sensitive == true || rule == NULL) { @@ -884,19 +883,9 @@ } for (int i = 0; users[i] != NULL; i++) { - lowered = sss_tc_utf8_str_tolower(tmp_ctx, users[i]); - if (lowered == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "Cannot convert name to lowercase.\n"); - ret = ENOMEM; - goto done; - } - - if (strcmp(users[i], lowered) == 0) { - /* It protects us from adding duplicate. */ - continue; - } - - ret = sysdb_attrs_add_string(rule, SYSDB_SUDO_CACHE_AT_USER, lowered); + ret = sysdb_attrs_add_lower_case_string(rule, true, + SYSDB_SUDO_CACHE_AT_USER, + users[i]); if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "Unable to add %s attribute [%d]: %s\n", diff -Nru sssd-1.15.0/src/examples/sssd.conf sssd-1.15.2/src/examples/sssd.conf --- sssd-1.15.0/src/examples/sssd.conf 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/examples/sssd.conf 2017-03-15 16:53:24.000000000 +0000 @@ -1,5 +1,4 @@ [sssd] -config_file_version = 2 services = nss, pam domains = shadowutils @@ -8,8 +7,7 @@ [pam] [domain/shadowutils] -id_provider = proxy -proxy_lib_name = files +id_provider = files auth_provider = proxy proxy_pam_target = sssd-shadowutils diff -Nru sssd-1.15.0/src/external/inotify.m4 sssd-1.15.2/src/external/inotify.m4 --- sssd-1.15.0/src/external/inotify.m4 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/external/inotify.m4 2017-03-15 16:53:24.000000000 +0000 @@ -29,4 +29,6 @@ AS_IF([test x"$inotify_works" = xyes], [AC_DEFINE_UNQUOTED([HAVE_INOTIFY], [1], [Inotify works])]) AC_SUBST(INOTIFY_LIBS) + + AM_CONDITIONAL([HAVE_INOTIFY], [test x"$inotify_works" = xyes]) ]) diff -Nru sssd-1.15.0/src/external/libcurl.m4 sssd-1.15.2/src/external/libcurl.m4 --- sssd-1.15.0/src/external/libcurl.m4 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/external/libcurl.m4 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,38 @@ +AC_ARG_ENABLE([curl], + [AS_HELP_STRING([--disable-curl-support], + [do not build with libcurl support])], + [enable_libcurl=$enableval], + [enable_libcurl=yes]) + +found_libcurl="no" +AS_IF([test x$enable_libcurl = xyes], + [PKG_CHECK_MODULES([CURL], + [libcurl], + [found_libcurl=yes], + [AC_MSG_WARN([ +The libcurl development library was not found. Some features will be disabled.]) + ])]) + +AS_IF([test x"$found_libcurl" = xyes], + CFLAGS="$CFLAGS $CURL_CFLAGS" + + AC_MSG_CHECKING([For CURLOPT_UNIX_SOCKET_PATH support in libcurl]) + AC_COMPILE_IFELSE([AC_LANG_PROGRAM( + [[#include + CURLoption opt = CURLOPT_UNIX_SOCKET_PATH; + ]])], + [have_curlopt_unix_sockpath=yes] + [AC_MSG_RESULT([yes])], + [have_curlopt_unix_sockpath=no] + [AC_MSG_RESULT([no, libcurl support will be disabled])],) + + CFLAGS=$SAVE_CFLAGS +) + +AC_SUBST(CURL_LIBS) +AC_SUBST(CURL_CFLAGS) + +AM_CONDITIONAL([BUILD_WITH_LIBCURL], + [test x"$have_curlopt_unix_sockpath" = xyes]) +AM_COND_IF([BUILD_WITH_LIBCURL], + [AC_DEFINE_UNQUOTED(HAVE_LIBCURL, 1, [Build with libcurl support])]) diff -Nru sssd-1.15.0/src/lib/idmap/sss_idmap.pc.in sssd-1.15.2/src/lib/idmap/sss_idmap.pc.in --- sssd-1.15.0/src/lib/idmap/sss_idmap.pc.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/lib/idmap/sss_idmap.pc.in 2017-03-15 16:53:24.000000000 +0000 @@ -8,4 +8,4 @@ Version: @VERSION@ Libs: -L${libdir} -lsss_idmap Cflags: -URL: http://fedorahosted.org/sssd/ +URL: https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/lib/ipa_hbac/ipa_hbac.pc.in sssd-1.15.2/src/lib/ipa_hbac/ipa_hbac.pc.in --- sssd-1.15.0/src/lib/ipa_hbac/ipa_hbac.pc.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/lib/ipa_hbac/ipa_hbac.pc.in 2017-03-15 16:53:24.000000000 +0000 @@ -8,4 +8,4 @@ Version: @VERSION@ Libs: -L${libdir} -lipa_hbac Cflags: -URL: http://fedorahosted.org/sssd/ +URL: https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/lib/sifp/sss_simpleifp.pc.in sssd-1.15.2/src/lib/sifp/sss_simpleifp.pc.in --- sssd-1.15.0/src/lib/sifp/sss_simpleifp.pc.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/lib/sifp/sss_simpleifp.pc.in 2017-03-15 16:53:24.000000000 +0000 @@ -9,4 +9,4 @@ Requires: dbus-1, dhash Libs: -L@libdir@ -lsss_simpleifp Cflags: -I${includedir} -URL: http://fedorahosted.org/sssd/ +URL: https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/br/include/experimental.xml sssd-1.15.2/src/man/br/include/experimental.xml --- sssd-1.15.0/src/man/br/include/experimental.xml 2017-01-25 15:44:05.893440169 +0000 +++ sssd-1.15.2/src/man/br/include/experimental.xml 2017-03-15 16:58:45.315938018 +0000 @@ -1,2 +1,2 @@ This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/br/include/override_homedir.xml sssd-1.15.2/src/man/br/include/override_homedir.xml --- sssd-1.15.0/src/man/br/include/override_homedir.xml 2017-01-25 15:44:05.894440174 +0000 +++ sssd-1.15.2/src/man/br/include/override_homedir.xml 2017-03-15 16:58:45.316938022 +0000 @@ -22,6 +22,10 @@ fully qualified user name (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/br/include/upstream.xml sssd-1.15.2/src/man/br/include/upstream.xml --- sssd-1.15.0/src/man/br/include/upstream.xml 2017-01-25 15:44:05.893440169 +0000 +++ sssd-1.15.2/src/man/br/include/upstream.xml 2017-03-15 16:58:45.315938018 +0000 @@ -1,3 +1,3 @@ SSSD The SSSD upstream - -http://fedorahosted.org/sssd +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/ca/include/experimental.xml sssd-1.15.2/src/man/ca/include/experimental.xml --- sssd-1.15.0/src/man/ca/include/experimental.xml 2017-01-25 15:44:05.898440190 +0000 +++ sssd-1.15.2/src/man/ca/include/experimental.xml 2017-03-15 16:58:45.320938038 +0000 @@ -1,2 +1,2 @@ This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/ca/include/override_homedir.xml sssd-1.15.2/src/man/ca/include/override_homedir.xml --- sssd-1.15.0/src/man/ca/include/override_homedir.xml 2017-01-25 15:44:05.898440190 +0000 +++ sssd-1.15.2/src/man/ca/include/override_homedir.xml 2017-03-15 16:58:45.320938038 +0000 @@ -22,6 +22,10 @@ fully qualified user name (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/ca/include/upstream.xml sssd-1.15.2/src/man/ca/include/upstream.xml --- sssd-1.15.0/src/man/ca/include/upstream.xml 2017-01-25 15:44:05.898440190 +0000 +++ sssd-1.15.2/src/man/ca/include/upstream.xml 2017-03-15 16:58:45.320938038 +0000 @@ -1,3 +1,3 @@ -SSSD La línia de desenvolupament -principal de l'SSSD - http://fedorahosted.org/sssd +SSSD The SSSD upstream - +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/ca/pam_sss.8.xml sssd-1.15.2/src/man/ca/pam_sss.8.xml --- sssd-1.15.0/src/man/ca/pam_sss.8.xml 2017-01-25 15:44:05.897440186 +0000 +++ sssd-1.15.2/src/man/ca/pam_sss.8.xml 2017-03-15 16:58:45.319938034 +0000 @@ -4,9 +4,8 @@ Pàgines del manual de l'SSSD - -SSSD La línia de desenvolupament -principal de l'SSSD - http://fedorahosted.org/sssd + pam_sss @@ -29,7 +28,8 @@ ignore_unknown_user ignore_authinfo_unavail domains=X -allow_missing_name +allow_missing_name +prompt_always @@ -152,6 +152,20 @@ + + + + + + + Always prompt the user for credentials. With this option credentials +requested by other PAM modules, typically a password, will be ignored and +pam_sss will prompt for credentials again. Based on the pre-auth reply by +SSSD pam_sss might prompt for a password, a Smartcard PIN or other +credentials. + + + diff -Nru sssd-1.15.0/src/man/cs/include/experimental.xml sssd-1.15.2/src/man/cs/include/experimental.xml --- sssd-1.15.0/src/man/cs/include/experimental.xml 2017-01-25 15:44:05.902440206 +0000 +++ sssd-1.15.2/src/man/cs/include/experimental.xml 2017-03-15 16:58:45.324938054 +0000 @@ -1,2 +1,2 @@ This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/cs/include/override_homedir.xml sssd-1.15.2/src/man/cs/include/override_homedir.xml --- sssd-1.15.0/src/man/cs/include/override_homedir.xml 2017-01-25 15:44:05.902440206 +0000 +++ sssd-1.15.2/src/man/cs/include/override_homedir.xml 2017-03-15 16:58:45.325938058 +0000 @@ -22,6 +22,10 @@ fully qualified user name (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/cs/include/upstream.xml sssd-1.15.2/src/man/cs/include/upstream.xml --- sssd-1.15.0/src/man/cs/include/upstream.xml 2017-01-25 15:44:05.901440202 +0000 +++ sssd-1.15.2/src/man/cs/include/upstream.xml 2017-03-15 16:58:45.324938054 +0000 @@ -1,3 +1,3 @@ -SSSD Vývojáři SSSD - -http://fedorahosted.org/sssd +SSSD The SSSD upstream - +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/de/include/experimental.xml sssd-1.15.2/src/man/de/include/experimental.xml --- sssd-1.15.0/src/man/de/include/experimental.xml 2017-01-25 15:44:05.907440227 +0000 +++ sssd-1.15.2/src/man/de/include/experimental.xml 2017-03-15 16:58:45.330938078 +0000 @@ -1,2 +1,2 @@ - Dies ist eine experimentelle Funktionalität. Fehler können Sie -auf http://fedorahosted.org/sssd melden. + This is an experimental feature, please use +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/de/include/override_homedir.xml sssd-1.15.2/src/man/de/include/override_homedir.xml --- sssd-1.15.0/src/man/de/include/override_homedir.xml 2017-01-25 15:44:05.907440227 +0000 +++ sssd-1.15.2/src/man/de/include/override_homedir.xml 2017-03-15 16:58:45.330938078 +0000 @@ -22,6 +22,10 @@ voll qualifizierter Benutzername (Benutzer@Domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/de/include/upstream.xml sssd-1.15.2/src/man/de/include/upstream.xml --- sssd-1.15.0/src/man/de/include/upstream.xml 2017-01-25 15:44:05.906440222 +0000 +++ sssd-1.15.2/src/man/de/include/upstream.xml 2017-03-15 16:58:45.330938078 +0000 @@ -1,3 +1,3 @@ -SSSD Die SSSD-Originalautoren – -http://fedorahosted.org/sssd +SSSD The SSSD upstream - +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/es/include/experimental.xml sssd-1.15.2/src/man/es/include/experimental.xml --- sssd-1.15.0/src/man/es/include/experimental.xml 2017-01-25 15:44:05.915440259 +0000 +++ sssd-1.15.2/src/man/es/include/experimental.xml 2017-03-15 16:58:45.339938114 +0000 @@ -1,2 +1,2 @@ - Este es una función experimental, por favor utilice -http://fedorahosted.org/sssd para reportar cualquier cuestión. + This is an experimental feature, please use +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/es/include/override_homedir.xml sssd-1.15.2/src/man/es/include/override_homedir.xml --- sssd-1.15.0/src/man/es/include/override_homedir.xml 2017-01-25 15:44:05.915440259 +0000 +++ sssd-1.15.2/src/man/es/include/override_homedir.xml 2017-03-15 16:58:45.339938114 +0000 @@ -22,6 +22,10 @@ nombre totalmente cualificado del usuario (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/es/include/upstream.xml sssd-1.15.2/src/man/es/include/upstream.xml --- sssd-1.15.0/src/man/es/include/upstream.xml 2017-01-25 15:44:05.914440255 +0000 +++ sssd-1.15.2/src/man/es/include/upstream.xml 2017-03-15 16:58:45.338938110 +0000 @@ -1,3 +1,3 @@ SSSD The SSSD upstream - -http://fedorahosted.org/sssd +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/eu/include/experimental.xml sssd-1.15.2/src/man/eu/include/experimental.xml --- sssd-1.15.0/src/man/eu/include/experimental.xml 2017-01-25 15:44:05.910440239 +0000 +++ sssd-1.15.2/src/man/eu/include/experimental.xml 2017-03-15 16:58:45.334938094 +0000 @@ -1,2 +1,2 @@ This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/eu/include/override_homedir.xml sssd-1.15.2/src/man/eu/include/override_homedir.xml --- sssd-1.15.0/src/man/eu/include/override_homedir.xml 2017-01-25 15:44:05.911440243 +0000 +++ sssd-1.15.2/src/man/eu/include/override_homedir.xml 2017-03-15 16:58:45.334938094 +0000 @@ -22,6 +22,10 @@ fully qualified user name (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/eu/include/upstream.xml sssd-1.15.2/src/man/eu/include/upstream.xml --- sssd-1.15.0/src/man/eu/include/upstream.xml 2017-01-25 15:44:05.910440239 +0000 +++ sssd-1.15.2/src/man/eu/include/upstream.xml 2017-03-15 16:58:45.334938094 +0000 @@ -1,3 +1,3 @@ SSSD The SSSD upstream - -http://fedorahosted.org/sssd +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/fr/include/experimental.xml sssd-1.15.2/src/man/fr/include/experimental.xml --- sssd-1.15.0/src/man/fr/include/experimental.xml 2017-01-25 15:44:05.920440280 +0000 +++ sssd-1.15.2/src/man/fr/include/experimental.xml 2017-03-15 16:58:45.344938134 +0000 @@ -1,2 +1,2 @@ -Il s'agit d'une fonctionnalité expérimentale, utiliser -http://fedorahosted.org/sssd pour signaler les problèmes. + This is an experimental feature, please use +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/fr/include/override_homedir.xml sssd-1.15.2/src/man/fr/include/override_homedir.xml --- sssd-1.15.0/src/man/fr/include/override_homedir.xml 2017-01-25 15:44:05.920440280 +0000 +++ sssd-1.15.2/src/man/fr/include/override_homedir.xml 2017-03-15 16:58:45.344938134 +0000 @@ -22,6 +22,10 @@ nom d'utilisateur pleinement qualifié (utilisateur@domaine) + %l + The first letter of the login name. + + %P UPN - Nom de principal d'utilisateur (User principal name, nom@ROYAUME) diff -Nru sssd-1.15.0/src/man/fr/include/upstream.xml sssd-1.15.2/src/man/fr/include/upstream.xml --- sssd-1.15.0/src/man/fr/include/upstream.xml 2017-01-25 15:44:05.919440276 +0000 +++ sssd-1.15.2/src/man/fr/include/upstream.xml 2017-03-15 16:58:45.343938130 +0000 @@ -1,3 +1,3 @@ -SSSD Le projet SSSD - -http://fedorahosted.org/sssd +SSSD The SSSD upstream - +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/fr/sssd.conf.5.xml sssd-1.15.2/src/man/fr/sssd.conf.5.xml --- sssd-1.15.0/src/man/fr/sssd.conf.5.xml 2017-01-25 15:44:05.918440271 +0000 +++ sssd-1.15.2/src/man/fr/sssd.conf.5.xml 1970-01-01 00:00:00.000000000 +0000 @@ -1,2496 +0,0 @@ - - - -Pages de manuel de SSSD - - - - - sssd.conf - 5 - Formats de fichier et conventions - - - - sssd.conf - Le fichier de configuration pour SSSD - - - - FORMAT DE FICHIER - - - Ce fichier utilise la syntaxe de style « .ini » et est constituée de -sections et de paramètres. Une section commence par le nom de la section -entre crochets et continue jusqu'à la section suivante. Un exemple de -section avec des paramètres mono et multi-valués : -[section] -key = value -key2 = value2,value3 - - - - - Les types de données utilisées sont des chaînes (pas de guillemets -nécessaires), des entiers et des booléens (ayant pour valeur -TRUE/FALSE). - - - - Un commentaire de ligne commence par un octothorpe (#) ou un -point-virgule (;). Les commentaires au sein d'une ligne ne -sont pas pris en charge. - - - - Toutes les sections peuvent avoir un paramètre facultatif de -description. Sa fonction ne sert qu'à nommer la -section. - - - - sssd.conf doit être un fichier normal, appartenant à -root, et seul root doit pouvoir écrire et lire ce fichier. - - - - - CONFIGURATION SNIPPETS FROM INCLUDE DIRECTORY - - - The configuration file sssd.conf will include -configuration snippets using the include directory -conf.d. This feature is available if SSSD was compiled -with libini version 1.3.0 or later. - - - - Any file placed in conf.d that ends in -.conf and does not begin with a dot -(.) will be used together with sssd.conf -to configure SSSD. - - - - The configuration snippets from conf.d have higher -priority than sssd.conf and will override -sssd.conf when conflicts occur. If several snippets are -present in conf.d, then they are included in -alphabetical order (based on locale). Files included later have higher -priority. Numerical prefixes (01_snippet.conf, -02_snippet.conf etc.) can help visualize the priority -(higher number means higher priority). - - - - The snippet files require the same owner and permissions as -sssd.conf. Which are by default root:root and 0600. - - - - - OPTIONS GÉNÉRALES - - Les options qui suivent peuvent être utilisées dans plus d'une section de -configuration. - - - Options utilisables dans toutes les sections - - - - debug_level (entier) - - - - debug (integer) - - - SSSD 1.14 and later also includes the debug alias -for debug_level as a convenience feature. If both -are specified, the value of debug_level will be -used. - - - - - debug_timestamps (booléen) - - - Ajoute un horodatage aux messages de débogage. Si journald est activé pour -la journalisation de débogage de SSSD, cette option sera ignorée. - - - Par défaut : true - - - - - debug_microseconds (booléen) - - - Ajouter les microsecondes à l'horodatage dans les messages de débogage. Si -journald est activé pour la journalisation de débogage de SSSD, cette option -sera ignorée. - - - Par défaut : false - - - - - - - - - Options utilisables dans les sections SERVICE et DOMAIN - - - - timeout (entier) - - - Délai d'attente entre deux requêtes pour ce domaine. Ceci est utilisé pour -s'assurer que le processus est toujours actif et capable de répondre. - - - Par défaut : 10 - - - - - - - - - - SECTIONS SPÉCIALES - - - La section [sssd] - - Les fonctionnalités propres à SSSD sont fournies par des services -spécifiques SSSD, qui sont démarrés et arrêtés en même temps que SSSD. Les -services sont gérés par un service spécifique souvent appelé le -moniteur. La section [sssd] est utilisée pour -configurer le moniteur ainsi que certaines options importantes comme -l'identité des domaines. - Paramètres de sections - - config_file_version (entier) - - - Indique la syntaxe du fichier de configuration. Pour SSSD 0.6.0 ou -supérieure utiliser la version 2. - - - - - services - - - Comma separated list of services that are started when sssd itself starts. - The services' list is optional on -platforms where systemd is supported, as they will either be socket or dbus -activated when needed. - - - Les services pris en charge : nss, pam , -sudo ,autofs , ssh , -pac , ifp - - - By default, all services are disabled and -the administrator must enable the ones allowed to be used by executing: -"systemctl enable sssd-@service@.socket". - - - - - reconnection_retries (entier) - - - Nombre d'essais de reconnection ou de redémarrage que les services doivent -effectuer dans le cas d'un plantage du fournisseur de données avant -d'abandonner - - - Par défaut : 3 - - - - - domaines - - - Un domaine est une base de données contenant les informations -utilisateurs. SSSD peut utiliser plusieurs domaines en même temps, au moins -un doit être configuré ou SSSD ne démarrera pas. Ce paramètre décrit la -liste des domaines dans l'ordre où ils doivent être requêtés. Un nom de -domaine ne doit comprendre que des caractères ASCII alphanumériques, des -tirets, des points et caractères soulignés. - - - - - re_expression (chaîne) - - - L'expression régulière par défaut qui décrit la manière d'analyser la chaîne -contenant le nom d'utilisateur et de domaine dans ces composants. - - - Chaque domaine peut avoir une expression régulière individuelle -configurée. Pour certains fournisseurs ID, il y a aussi des expressions -régulières par défaut. Voir les SECTIONS DOMAINE pour plus d'informations -sur ces expressions régulières. - - - - - full_name_format (chaîne) - - - Un format compatible avec -printf 3 - décrivant comment composer un domaine pleinement qualifé à -partir des noms d'utilisateur et de domaine. - - - Les expansions suivantes sont prises en charge : - - %1$s - nom d'utilisateur - - - %2$s - - - nom de domaine tel qu'indiqué dans le fichier de configuration de SSSD. - - - - - %3$s - - - nom de domaine à plat. Utilisable principalement pour les domaines Active -Directory, configurés directement ou découverts via les relations -d'approbation IPA. - - - - - - - Chaque domaine peut avoir une chaîne de format individuelle configurée. -Voir les SECTIONS DOMAINE pour plus d'informations sur cette option. - - - - - try_inotify (booléen) - - - SSSD gère l'état de resolv.conf pour identifier les besoins de mise à jour -des résolutions DNS internes. Par défaut, l'utilisation de inotify sera -tentée, et reviendra à une interrogation de resolv.conf toutes les cinq -secondes si inotify échoue. - - - Il existe quelques cas spécifiques où l'utilisation de inotify n'est pas -conseillée. Dans ces rares cas, cette option devrait être définie à « false -» - - - Par défaut : true sur les plates-formes où inotify est pris en charge. False -sur les autres plates-formes. - - - Note : cette option n'aura aucun effet sur les plateformes où inotify n'est -pas disponible. Sur celles-ci, l'interrogation régulière sera toujours -utilisée. - - - - - krb5_rcache_dir (chaîne) - - - Répertoire du système de fichiers où SSSD doit stocker les fichiers de cache -de rejeu Kerberos. - - - Cette option accepte une valeur spéciale __LIBKRB5_DEFAULTS__ qui indiquera -à SSSD de laisser libkrb5 décider l'emplacement approprié pour le cache de -relecture. - - - Par défaut : paramètre spécifique à la distribution et spécifié au moment de -la construction du logiciel. (__LIBKRB5_DEFAULTS__ si non configuré) - - - - - user (chaîne) - - - The user to drop the privileges to where appropriate to avoid running as the -root user. This option does not work when -running socket-activated services, as the user set up to run the processes -is set up during compilation time. The way to override the systemd unit -files is by creating the appropriate files in /etc/systemd/system/. Keep in -mind that any change in the socket user, group or permissions may result in -a non-usable SSSD. The same may occur in case of changes of the user running -the NSS responder. - - - Par défaut : non défini, le processus tourne en tant que root - - - - - default_domain_suffix (string) - - - Cette chaîne servira comme nom de domaine par défaut pour tous les noms sans -composant de nom de domaine. Les principaux cas d'utilisation sont les -environnements où le domaine principal va permettre de gérer les politiques -de systèmes ainsi que tous les utilisateur provenant d'un domaine -approuvé. L'option permet à ces utilisateurs de se connecter sans fournir un -nom de domaine. - - - Noter que, si cette option est définie, tous les utilisateurs du domaine -principal doivent utiliser leur nom pleinement qualifié, par exemple -user@domain.name, pour se connecter. L'utilisation de cette option modifie -la valeur par défaut de use_fully_qualified_names à True. Il n'est pas -possible ni autorisé d'utiliser cette option avec l'option -use_fully_qualified_names à False. - - - Par défaut : non défini - - - - - override_space (chaîne) - - - Ce paramètre remplace les espaces avec le caractère indiqués pour les noms -d'utilisateurs et de groupes, par ex. (_). Ainsi, le nom "john -doe" deviendra "john_doe". Cette fonctionnalité a été ajoutée -pour aider à la compatibilité avec les scripts shells qui ont des -difficultés à gérer les espaces, du fait que l'espace est le séparateur par -défaut de l'interpréteur de commande. - - - Please note it is a configuration error to use a replacement character that -might be used in user or group names. If a name contains the replacement -character SSSD tries to return the unmodified name but in general the result -of a lookup is undefined. - - - Par défaut : non défini (les espaces ne seront pas remplacées) - - - - - certificate_verification (string) - - - With this parameter the certificate verification can be tuned with a comma -separated list of options. Supported options are: - - no_ocsp - - Disables Online Certificate Status Protocol (OCSP) checks. This might be -needed if the OCSP servers defined in the certificate are not reachable from -the client. - - - - no_verification - - Disables verification completely. This option should only be used for -testing. - - - - ocsp_default_responder=URL - - Sets the OCSP default responder which should be used instead of the one -mentioned in the certificate. URL must be replaced with the URL of the OCSP -default responder e.g. http://example.com:80/ocsp. - This option must be used together with ocsp_default_responder_signing_cert. - - - - - - ocsp_default_responder_signing_cert=NAME - - The nickname of the cert to trust (expected) to sign the OCSP responses. -The certificate with the given nickname must be availble in the systems NSS -database. - This option must be used together with ocsp_default_responder. - - - - - - Unknown options are reported but ignored. - - - Default: not set, i.e. do not restrict certificate verification - - - - - disable_netlink (boolean) - - - SSSD hooks into the netlink interface to monitor changes to routes, -addresses, links and trigger certain actions. - - - The SSSD state changes caused by netlink events may be undesirable and can -be disabled by setting this option to 'true' - - - Default: false (netlink changes are detected) - - - - - - - - - - - SECTIONS DE SERVICES - - Les options utilisables pour configurer les différents services sont -décrites dans cette section. Ils doivent être situés dans la section -[$NAME], par exemple pour le service NSS, la -section doit être [nss] - - - - Options générales de configuration de service - - Ces options peuvent être utilisées pour configurer les services. - - - - reconnection_retries (entier) - - - Nombre d'essais de reconnection ou de redémarrage que les services doivent -effectuer dans le cas d'un plantage du fournisseur de données avant -d'abandonner - - - Par défaut : 3 - - - - - fd_limit - - - Cette option spécifie le nombre maximal de descripteurs de fichiers qui -peuvent être ouverts en même temps par ce processus SSSD. Sur les systèmes -où SSSD se voit accorder la capacité CAP_SYS_RESOURCE, ce sera une limite -absolue. Sur les systèmes sans cette capacité, la valeur résultante sera la -valeur inférieure ou la limite « hard » de limits.conf. - - - Par défault : 8192 (ou la limite « hard » de limits.conf) - - - - - client_idle_timeout - - - Cette option spécifie la durée en secondes pendant laquelle un client d'un -processus SSSD peut maintenir un descripteur de fichier ouvert sans -communiquer avec. Cette valeur est limitée afin d'éviter l'épuisement des -ressources sur le système. - - - Par défaut : 60 - - - - - offline_timeout (entier) - - - When SSSD switches to offline mode the amount of time before it tries to go -back online will increase based upon the time spent disconnected. This -value is in seconds and calculated by the following: - - - offline_timeout + random_offset - - - The random offset can increment up to 30 seconds. After each unsuccessful -attempt to go online, the new interval is recalculated by the following: - - - new_interval = old_interval*2 + random_offset - - - Note that the maximum length of each interval is currently limited to one -hour. If the calculated length of new_interval is greater than an hour, it -will be forced to one hour. - - - Par défaut : 60 - - - - - responder_idle_timeout - - - This option specifies the number of seconds that an SSSD responder process -can be up without being used. This value is limited in order to avoid -resource exhaustion on the system. The minimum acceptable value for this -option is 60 seconds. Setting this option to 0 (zero) means that no timeout -will be set up to the responder. This option only has effect when SSSD is -built with systemd support and when services are either socket or dbus -activated. - - - Par défaut : 300 - - - - - - - - Options de configuration NSS - - Ces options peuvent être utilisées pour configurer le service Name Service -Switch (NSS). - - - - enum_cache_timeout (entier) - - - La durée en secondes pendant laquelle nss_sss doit mettre en cache les -énumérations (requêtes sur les informations de tous les utilisateurs) - - - Par défaut : 120 - - - - - entry_cache_nowait_percentage (entier) - - - La valeur du cache peut être définie pour mettre à jour automatiquement les -entrées en arrière plan si la requête ne dépasse pas un pourcentage de la -valeur de entry_cache_timeout pour le domaine. - - - Par exemple, si la valeur entry_cache_timeout du domaine est à 30 secondes -et que entry_cache_nowait_percentage est à 50 (%), les entrées qui veulent -mettre à jour le cache après 15 secondes seront renvoyées immédiatement, -mais SSSD continuera et mettra à jour le cache de lui-même. Ainsi, les -prochaines requêtes ne seront pas bloquées en attendant une mise à jour du -cache. - - - Les valeurs autorisées pour cette option vont de 0 à 99 et représentent un -pourcentage de la valeur entry_cache_timeout pour chaque domaine. Pour des -raisons de performance, ce pourcentage ne réduira jamais le délai d'attente -de non réponse à moins de 10 secondes (0 pour désactiver l'option). - - - Par défaut : 50 - - - - - entry_negative_timeout (entier) - - - Spécifie le temps, en secondes, pendant lequel nss_sss doit mettre en cache -les résultats négatifs du cache (c'est-à-dire les requêtes pour les bases de -données invalides, comme celles qui n'existent pas) avant de faire à nouveau -appel au moteur. - - - Par défaut : 15 - - - - - local_negative_timeout (integer) - - - Specifies for how many seconds nss_sss should keep local users and groups in -negative cache before trying to look it up in the back end again. - - - Par défaut : 0 - - - - - filter_users, filter_groups (chaîne) - - - Exclude certain users or groups from being fetched from the sss NSS -database. This is particularly useful for system accounts. This option can -also be set per-domain or include fully-qualified names to filter only users -from the particular domain. - - - NOTE: The filter_groups option doesn't affect inheritance of nested group -members, since filtering happens after they are propagated for returning via -NSS. E.g. a group having a member group filtered out will still have the -member users of the latter listed. - - - Par défaut : root - - - - - filter_users_in_groups (booléen) - - - Mettre cette option à « false » si les utilisateurs filtrés doivent rester -membres de groupes. - - - Par défaut : true - - - - - - - fallback_homedir (string) - - - Définir un modèle par défaut pour un répertoire utilisateur si aucun n'est -explicitement spécifié par le fournisseur de données du domaine. - - - Les valeurs disponibles pour cette option sont les mêmes que pour -override_homedir. - - - exemple : -fallback_homedir = /home/%u - - - - Par défaut : non défini (aucune substitution pour les répertoires d'accueil -non définis) - - - - - override_shell (string) - - - Écrase l'interpréteur de commande à utiliser pour tous les -utilisateurs. Cette option prend le pas sur toutes les autres options -d'interpréteur de commande si elle est en action, et peut être indiquée au -choix soit dans la section [nss], soit par domaine. - - - Par défaut : indéfini (SSSD utilisera la valeur récupérée de LDAP) - - - - - allowed_shells (chaîne) - - - Restreindre l'interpréteur de commandes de l'utilisateur à l'une des valeurs -indiquées. L'ordre d'évaluation est : - - - 1. Si l'interpréteur de commandes est présent dans -/etc/shells, il est utilisé. - - - 2. Si l'interpréteur de commandes est dans la liste « allowed_shells » mais -n'est pas dans /etc/shells, la valeur de repli de « -shell_fallback » sera utilisée. - - - 3. Si l'interpréteur de commandes n'est ni dans la liste « allowed_shells » -ni dans /etc/shells, une connexion sans shell est utilisée. - - - The wildcard (*) can be used to allow any shell. - - - The (*) is useful if you want to use shell_fallback in case that user's -shell is not in /etc/shells and maintaining list of all -allowed shells in allowed_shells would be to much overhead. - - - Une chaîne vide pour l'interpréteur de commandes est passée telle quelle est -à la libc. - - - Le fichier /etc/shells n'est lu qu'au démarrage de SSSD. Un -redémarrage de SSSD est nécessaire si un nouvel interpréteur de commandes -est installé. - - - Par défaut : non défini. L'interpréteur de commandes de l'utilisateur est -utilisé automatiquement. - - - - - vetoed_shells (chaîne) - - - Remplace toutes les occurences de ces interpréteurs de commandes par -l'interpréteur de commandes par défaut - - - - - shell_fallback (chaîne) - - - L'interpréteur de commandes par défaut à utiliser si un interpréteur de -commandes autorisé n'est pas installé sur la machine. - - - Par défaut : /bin/sh - - - - - default_shell - - - L'interpréteur de commande par défaut à utiliser si le fournisseur n'en -renvoie pas un lors de la recherche. Cette option peut être indiquée au -choix soit dans la section [nss], soit par domaine. - - - Par défaut : non défini (retourne NULL si aucun shell n'est spécifié et -s'appuyer sur la libc pour remplacer par quelque chose de sensé lorsque -nécessaire, habituellement /bin/sh) - - - - - get_domains_timeout (int) - - - Spécifie la durée en secondes pendant laquelle la liste de sous-domaines est -jugée valide. - - - Par défaut : 60 - - - - - memcache_timeout (int) - - - Specifies time in seconds for which records in the in-memory cache will be -valid. - - - Par défaut : 300 - - - NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to "NO", -client applications will not use the fast in-memory cache. - - - - - user_attributes (chaîne) - - - Some of the additional NSS responder requests can return more attributes -than just the POSIX ones defined by the NSS interface. The list of -attributes is controlled by this option. It is handled the same way as the -user_attributes option of the InfoPipe responder (see - sssd-ifp -5 for details) but with no default -values. - - - To make configuration more easy the NSS responder will check the InfoPipe -option if it is not set for the NSS responder. - - - Par défaut : non défini, repli sur l'option InfoPipe - - - - - - - Options de configuration de PAM - - Ces options permettent de configurer le service Pluggable Authentication -Module (PAM). - - - - offline_credentials_expiration (entier) - - - Si le fournisseur d'authentification est déconnecté, combien de temps -autoriser les connexions à partir du cache (en jours depuis la dernière -connexion réussie). - - - Par défaut : 0 (pas de limite) - - - - - - offline_failed_login_attempts (entier) - - - Si le fournisseur d'authentification est déconnecté, combien de connexions -échouées sont autorisées. - - - Par défaut : 0 (pas de limite) - - - - - - offline_failed_login_delay (entier) - - - Le temps en minutes à attendre après avoir atteint -offline_failed_login_attempts avant qu'une nouvelle tentative de connexion -soit possible. - - - Si la valeur est à 0, l'utilisateur ne peut s'authentifier en mode -déconnecté si offline_failed_login_attempts est atteint. Seulement une -connexion réussie en ligne peut réactiver l'authentification. - - - Par défaut : 5 - - - - - - pam_verbosity (entier) - - - Contrôle le type de messages affichés à l'utilisateur pendant le processus -d'authentification. Plus le nombre est grand, plus le nombre de messages -affichés sera important. - - - Actuellement sssd supporte les valeurs suivantes : - - - 0 : ne pas afficher de message - - - 1 : afficher seulement les messages importants - - - 2 : afficher les messages d'information - - - 3 : afficher tous les messages et informations de -débogage - - - Par défaut : 1 - - - - - - pam_response_filter (integer) - - - A comma separated list of strings which allows to remove (filter) data send -by the PAM responder to pam_sss PAM module. There are different kind of -responses send to pam_sss e.g. messages displayed to the user or environment -variables which should be set by pam_sss. - - - While messages already can be controlled with the help of the pam_verbosity -option this option allows to filter out other kind of responses as well. - - - Currently the following filters are supported: - ENV - Do not sent any environment variables to any service. - - ENV:var_name - Do not sent environment variable var_name to any service. - - ENV:var_name:service - Do not sent environment variable var_name to service. - - - - - Par défaut : non défini - - - Example: ENV:KRB5CCNAME:sudo-i - - - - - - pam_id_timeout (entier) - - - Lors de chaque requête PAM quand SSSD est en mode connecté, SSSD tentera de -mettre à jour immédiatement les informations d'identité mises en cache pour -l'utilisateur de manière à s'assurer que l'authentification se fasse avec -les dernières informations. - - - Une conversation PAM complète peut effectuer plusieurs requêtes PAM, comme -la gestion de compte et l'ouverture de session. Cette option contrôle (par -client et par application) la durée (en secondes) de mise en cache des -informations d'identité afin d'éviter de nombreux aller-retour avec le -fournisseur d'identité. - - - Par défaut : 5 - - - - - - pam_pwd_expiration_warning (entier) - - - Afficher une alerte N jours avant l'expiration du mot de passe. - - - Noter que le moteur du service doit fournir des informations à propos du -délai d'expiration du mot de passe. Si cette information est manquante, sssd -ne peut afficher de message d'alerte. - - - Si la valeur est zéro, ce filtre n'est pas appliqué, c'est-à-dire que si -l'avertissement d'expiration est reçu de la part du moteur du serveur, il -sera automatiquement affiché. - - - Ce paramètre peut être surchargé par le paramètre -pwd_expiration_warning pour un domaine particulier. - - - Par défaut : 0 - - - - - get_domains_timeout (int) - - - Spécifie la durée en secondes pendant laquelle la liste de sous-domaines est -jugée valide. - - - Par défaut : 60 - - - - - pam_trusted_users (chaîne) - - - Specifies the comma-separated list of UID values or user names that are -allowed to run PAM conversations against trusted domains. Users not -included in this list can only access domains marked as public with -pam_public_domains. User names are resolved to UIDs at -startup. - - - Default: All users are considered trusted by default - - - Please note that UID 0 is always allowed to access the PAM responder even in -case it is not in the pam_trusted_users list. - - - - - pam_public_domains (chaîne) - - - Specifies the comma-separated list of domain names that are accessible even -to untrusted users. - - - Deux valeurs spéciales pour l'option pam_public_domains sont définies : - - - all (tous les utilisateurs non dignes de confiance sont autorisés à accéder -à tous les domaines PAM dans le répondeur.) - - - none (les utilisateurs non dignes de confiance, Untrusted, ne sont pas -autorisés à accéder à un des domaines PAM dans le répondeur.) - - - Par défaut : aucun - - - - - pam_account_expired_message (chaîne) - - - Allows a custom expiration message to be set, replacing the default -'Permission denied' message. - - - Note: Please be aware that message is only printed for the SSH service -unless pam_verbostiy is set to 3 (show all messages and debug information). - - - exemple : -pam_account_expired_message = Account expired, please contact help desk. - - - - Par défaut : aucun - - - - - pam_account_locked_message (string) - - - Allows a custom lockout message to be set, replacing the default 'Permission -denied' message. - - - exemple : -pam_account_locked_message = Account locked, please contact help desk. - - - - Par défaut : aucun - - - - - pam_cert_auth (bool) - - - Enable certificate based Smartcard authentication. Since this requires -additional communication with the Smartcard which will delay the -authentication process this option is disabled by default. - - - Par défaut : False - - - - - pam_cert_db_path (string) - - - The path to the certificate database which contain the PKCS#11 modules to -access the Smartcard. - - - Default: /etc/pki/nssdb (NSS version) - - - - - p11_child_timeout (integer) - - - How many seconds will pam_sss wait for p11_child to finish. - - - Par défaut : 10 - - - - - - - - - Options de configuration de SUDO - - Ces options peuvent être utilisées pour configurer le service sudo. Les -directives de configuration de -sudo 8 -dans sssd -8 sont détaillées dans la page de -manuel sssd-sudo -5 . - - - - sudo_timed (booléen) - - - Évaluation ou non des attributs sudoNotBefore et sudoNotAfter qui utilisent -les entrées sudoers sensibles au temps. - - - Par défaut : false - - - - - - - - Options de configuration AUTOFS - - Ces options peuvent être utilisées pour configurer le service autofs. - - - - autofs_negative_timeout (entier) - - - Spécifie le délai en secondes pendant lequel le répondeur autofs stocke les -réponses négatives (autrement dit, les requêtes pour les entrées de mappage -non valide, comme celles qui n'existent pas) avant de demander à nouveau au -moteur. - - - Par défaut : 15 - - - - - - - - - Options de configuration SSH - - Les options suivantes peuvent être utilisées pour configurer le service SSH. - - - - ssh_hash_known_hosts (bool) - - - Condenser ou non les noms de systèmes et adresses du fichier known_hosts - - - Par défaut : true - - - - - ssh_known_hosts_timeout (integer) - - - La durée en secondes pendant laquelle conserver un système dans le fichier -known_hosts géré après que ses clés de système ont été demandés. - - - Par défaut : 180 - - - - - ca_db (string) - - - Path to a storage of trusted CA certificates. The option is used to validate -user certificates before deriving public ssh keys from them. - - - Default: /etc/pki/nssdb - - - - - - - - Options de configuration du répondeur PAC - - Le répondeur PAC fonctionne avec le greffon de données d'autorisation pour -sssd_pac_plugin.so MIT Kerberos et un fournisseur de sous-domaine. Le -greffon envoie les données PAC au cours d'une authentification GSSAPI au -répondeur PAC. Le fournisseur de sous-domaine recueille le SID du domaine et -les plages d'ID du domaine auquel le client est lié au et des domaines -approuvés distants du contrôleur de domaine local. Si les données PAC sont -décodées et évaluées, les opérations suivantes sont effectuées : - - Si l'utilisateur distant n'existe pas dans le cache, il est créé. L'uid est -calculé en fonction du SID, les domaines de confiance auront des groupes -d'utilisateurs privés, et le gid aura la même valeur que l'uid. Le -répertoire utilisateur est défini en fonction du paramètre -subdomain_homedir. Le shell sera vide par défaut, permettant l'utilisation -de la valeur par défaut du système, mais peut être remplacé par le paramètre -default_shell. - - S'il y a des SID de groupes des domaines connus de sssd, l'utilisateur sera -ajouté à ces groupes. - - - - - Les options suivantes peuvent être utilisées pour configurer le répondeur -PAC. - - - - allowed_uids (string) - - - Spécifie la liste séparée par des virgules des UID ou noms d'utilisateurs -qui sont autorisés à accéder au répondeur PAC. Les noms d'utilisateurs -seront résolus en UID au démarrage. - - - Par défaut : 0 (seul l'utilisateur root est autorisé à accéder au répondeur -PAC) - - - Noter que bien que l'UID 0 est utilisé par défaut, il sera remplacé par -cette option. Si vous voulez continuer à permettre à l'utilisateur root à -accéder au répondeur PAC, ce qui serait un cas habituel, vous devez ajouter -0 à la liste des UID d'utilisateurs autorisés. - - - - - pac_lifetime (integer) - - - Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC -data can be used to determine the group memberships of a user. - - - Par défaut : 300 - - - - - - - - - - SECTIONS DOMAINES - - Ces options de configuration peuvent être présentes dans la section de -configuration du domaine, c'est-à-dire dans la section nommée -[domain/NAME] - - min_id,max_id (entier) - - - Limites UID et GID pour le domaine. Si un domaine contient une entrée en -dehors de ces limites, elle est ignorée. - - - Pour les utilisateurs, cela affecte la limite des GID -primaires. L'utilisateur ne sera pas renvoyé vers NSS si l'UID ou le GID -primaire sont en dehors de la plage. Pour l'appartenance à un groupe non -primaire, ceux qui sont dans la plage seront rapportés comme prévu. - - - Ces limites d'identifiants affecte aussi les mises en cache des entrées, et -pas seulement leur recherche par nom ou identifiant. - - - Default: 1 for min_id, 0 (no limit) for max_id - - - - - - enumerate (booléen) - - - Détermine si un domaine peut être énuméré. Ce paramètre peut avoir une des -valeurs suivantes : - - - TRUE = utilisateurs et groupes sont énumérés - - - FALSE = aucune énumération pour ce domaine - - - Par défaut : FALSE - - - Note : activer l'énumération a un impact modéré sur les performances de SSSD -lorsque l'énumération est en cours. Plusieurs minutes peuvent être -nécessaires après le démarrage de SSSD pour terminer l'énumération -complète. Pendant ce temps, les requêtes individuelles pour des informations -iront directement vers LDAP, bien que plus lent et ce à cause de la charge -importante liée au processus d'énumération. Le fait de mettre un grand -nombre d'entrées en cache lorsque l'énumération est terminée peut être -également intensif pour le CPU, car les appartenances aux groupes doivent -être recalculées. - - - Lorsque la première énumération est en cours, les requêtes pour des listes -utilisateurs ou de groupes peuvent retourner des résultats vides avant que -l'énumération ne se termine. - - - De plus, activer l'énumération peut augmenter le temps nécessaire pour -détecter la déconnexion d'un réseau, puisque des délais d'attente supérieurs -sont nécessaires pour s'assurer que les requêtes d'énumération se terminent -avec succès. Pour plus d'informations, se référer au manuel pour le -fournisseur d'identité spécifique utilisé. - - - Pour les raisons citées plus haut, l'activation de l'énumération est -déconseillée, surtout dans les environnements de grande taille. - - - - - - subdomain_enumerate (chaîne) - - - Les domaines approuvés auto-détectés doivent-ils être énumérés ? -Les valeurs prises en charge sont : - - all - Tous les domaines approuvés découverts seront énumérés - - - none - Aucun domaine approuvé découvert ne sera énuméré - - -De manière facultative, une liste d'un ou plusieurs noms de domaines peut -activer l'énumération pour ces seuls domaines. - - - Par défaut : aucun - - - - - - entry_cache_timeout (entier) - - - La durée en secondes pendant laquelle nss_sss doit considérer les entrées -comme valides avant de les redemander au moteur - - - Les horodatages d'expiration de cache sont stockés en tant qu'attributs des -objets individuels dans le cache. Il en découle que la modification du délai -d'expiration du cache ne sera pris en compte que pour les entrées qui y sont -nouvellement ajoutées, ou pour celles qui ont expiré. Vous devriez utiliser -l'outil sss_cache -8 de manière à forcer un -rafraîchissement des entrées qui sont déjà en cache. - - - Par défaut : 5400 - - - - - - entry_cache_user_timeout (entier) - - - La durée en secondes pendant laquelle nss_sss doit considérer les entrées -d'utilisateurs comme valides avant de les redemander au moteur. - - - Par défaut : entry_cache_timeout - - - - - - entry_cache_group_timeout (entier) - - - La durée en secondes pendant laquelle nss_sss doit considérer les entrées de -groupes comme valides avant de les redemander au moteur. - - - Par défaut : entry_cache_timeout - - - - - - entry_cache_netgroup_timeout (entier) - - - La durée en secondes pendant laquelle nss_sss doit considérer les entrées de -netgroup comme valides avant de les redemander au moteur. - - - Par défaut : entry_cache_timeout - - - - - - entry_cache_service_timeout (entier) - - - La durée en secondes pendant laquelle nss_sss doit considérer les entrées de -service valides avant de les redemander au moteur - - - Par défaut : entry_cache_timeout - - - - - - entry_cache_sudo_timeout (integer) - - - La durée en secondes pendant laquelle sudo doit considérer les règles comme -valides avant de les redemander au moteur - - - Par défaut : entry_cache_timeout - - - - - - entry_cache_autofs_timeout (integer) - - - La durée en secondes pendant laquelle le service autofs doit considérer les -cartes d'automontage comme valides avant de les redemander au moteur - - - Par défaut : entry_cache_timeout - - - - - - entry_cache_ssh_host_timeout (entier) - - - La durée en secondes pendant laquelle conserver une clé ssh d'hôte après -rafraichissement. I.e. combien de temps mettre la clé en cache. - - - Par défaut : entry_cache_timeout - - - - - - refresh_expired_interval (entier) - - - Indique la durée en secondes pendant laquelle SSSD doit attendre avant de -déclencher une tâche en arrière-plan qui rafraichira tous les -enregistrements expirés ou sur le point de l'être. - - - The background refresh will process users, groups and netgroups in the -cache. - - - Il est envisageable de configurer cette valeur à 3/4 * entry_cache_timeout. - - - Par défaut : 0 (désactivé) - - - - - - cache_credentials (booléen) - - - Détermine si les données d'identification de l'utilisateur sont aussi mis en -cache dans le cache LDB local - - - Les informations d'identification utilisateur sont stockées dans une table -de hachage SHA512, et non en texte brut - - - Par défaut : FALSE - - - - - - cache_credentials_minimal_first_factor_length (int) - - - If 2-Factor-Authentication (2FA) is used and credentials should be saved -this value determines the minimal length the first authentication factor -(long term password) must have to be saved as SHA512 hash into the cache. - - - This should avoid that the short PINs of a PIN based 2FA scheme are saved in -the cache which would make them easy targets for brute-force attacks. - - - Par défaut : 8 - - - - - - account_cache_expiration (entier) - - - Durée en jours pendant laquelle les entrées sont stockées dans le cache -après la dernière connexion réussie, avant d'être enlevées lors du nettoyage -du cache. 0 signifie qu'elles sont conservées indéfiniment. La valeur de ce -paramètre doit être supérieur ou égal à offline_credentials_expiration. - - - Par défaut : 0 (illimité) - - - - - pwd_expiration_warning (integer) - - - Afficher une alerte N jours avant l'expiration du mot de passe. - - - Si la valeur est zéro, ce filtre n'est pas appliqué, c'est-à-dire que si -l'avertissement d'expiration est reçu de la part du moteur du serveur, il -sera automatiquement affiché. - - - Veuillez noter que le moteur du service doit fournir des informations à -propos du délai d'expiration du mot de passe. Si cette information est -manquante, sssd ne peut afficher de message d'alerte. De plus, un -fournisseur oauth doit être configuré pour le moteur. - - - Par défaut : 7 (Kerberos), 0 (LDAP) - - - - - - id_provider (chaîne) - - - Le fournisseur d'identification utilisé pour le domaine. Les fournisseurs -d'identification pris en charge sont : - - - proxy : prise en charge de l'ancien fournisseur NSS - - - local : Fournisseur interne SSSD pour les utilisateurs locaux - - - ldap : fournisseur -LDAP. Cf. sssd-ldap -5 pour plus d'informations sur la -configuration de LDAP. - - - ipa : fournisseur FreeIPA et Red Hat Enterprise Identity -Management. Cf. sssd-ipa -5 pour plus d'informations sur la -configuration de FreeIPA. - - - ad : fournisseur Active -Directory. Cf. sssd-ad -5 pour plus d'informations sur la -configuration d'Active Directory. - - - - - - use_fully_qualified_names (booléen) - - - Utiliser le nom complet et le domaine (comme formaté par le paramètre -full_name_format du domaine) comme nom de connexion de l'utilisateur -communiqué à NSS. - - - Si défini à TRUE, toutes les requêtes pour ce domaine doivent utiliser des -noms pleinement qualifiés. Par exemple, pour un utilisateur « test » dans un -domaine LOCAL, getent passwd test ne trouvera pas -l'utilisateur avant que getent passwd test@LOCAL ne le -trouve. - - - NOTE : Cette option n'a pas d'effet sur les recherches de netgroups, du fait -de leur tendance à inclure des groupes imbriqués sans noms qualifiés. Pour -les netgroups, la recherche se fera dans tous les domaines lorsqu'un nom non -qualifié sera demandé. - - - Par défaut : false (true si default_domain_suffix est utilisée) - - - - - ignore_group_members (booléen) - - - Ne pas envoyer les membres des groupes sur les recherches de groupes. - - - If set to TRUE, the group membership attribute is not requested from the -ldap server, and group members are not returned when processing group lookup -calls, such as getgrnam -3 or -getgrgid 3 -. As an effect, getent group $groupname would -return the requested group as if it was empty. - - - Enabling this option can also make access provider checks for group -membership significantly faster, especially for groups containing many -members. - - - Par défaut : FALSE - - - - - auth_provider (chaîne) - - - Le fournisseur d'authentification utilisé pour le domaine. Les fournisseurs -pris en charge sont : - - - ldap pour une authentification LDAP -native. Cf. sssd-ldap -5 pour plus d'informations sur la -configuration de LDAP. - - - krb5 pour une authentification Kerberos. Cf. -sssd-krb5 5 - pour plus d'informations sur la configuration de Kerberos. - - - ipa : fournisseur FreeIPA et Red Hat Enterprise Identity -Management. Cf. sssd-ipa -5 pour plus d'informations sur la -configuration de FreeIPA. - - - ad : fournisseur Active -Directory. Cf. sssd-ad -5 pour plus d'informations sur la -configuration d'Active Directory. - - - proxy pour relayer l'authentification vers d'autres cibles -PAM. - - - local : Fournisseur interne SSSD pour les utilisateurs locaux - - - none désactive l'authentification explicitement. - - - Par défaut : id_provider est utilisé s'il est défini et peut -gérer les requêtes d'authentification. - - - - - access_provider (chaîne) - - - Le fournisseur de contrôle d'accès utilisé pour le domaine. Il y a deux -fournisseurs d'accès natifs (en plus de ceux disponibles dans les moteurs -installés). Les fournisseurs internes spécifiques sont : - - - permit toujours autoriser l'accès. C'est le seul fournisseur -d'accès autorisé pour un domaine local. - - - deny toujours refuser les accès. - - - ldap pour une authentification LDAP -native. Cf. sssd-ldap -5 pour plus d'informations sur la -configuration de LDAP. - - - ipa : fournisseur FreeIPA et Red Hat Enterprise Identity -Management. Cf. sssd-ipa -5 pour plus d'informations sur la -configuration de FreeIPA. - - - ad : fournisseur Active -Directory. Cf. sssd-ad -5 pour plus d'informations sur la -configuration d'Active Directory. - - - Contrôle d'accès simple basé sur des listes d'autorisations -ou de refus d'accès. Cf. -sssd-simple -5 pour plus d'informations sur la -configuration du module d'accès simple. - - - krb5: .k5login based access control. See -sssd-krb5 -5 for more information on configuring -Kerberos. - - - proxy for relaying access control to another PAM module. - - - Par défaut : permit - - - - - chpass_provider (chaîne) - - - Le fournisseur qui doit gérer le changement des mots de passe pour le -domaine. Les fournisseurs pris en charge sont : - - - ldap pour modifier un mot de passe stocké sur un serveur -LDAP. Cf. sssd-ldap -5 pour plus d'informations sur la -configuration LDAP. - - - krb5 pour changer le mot de passe -Kerberos. Cf. sssd-krb5 -5 pour plus d'informations sur la -configuration de Kerberos. - - - ipa : fournisseur FreeIPA et Red Hat Enterprise Identity -Management. Cf. sssd-ipa -5 pour plus d'informations sur la -configuration de FreeIPA. - - - ad : fournisseur Active -Directory. Cf. sssd-ad -5 pour plus d'informations sur la -configuration d'Active Directory. - - - proxy pour relayer le changement de mot de passe vers une -autre cible PAM. - - - none pour désactiver explicitement le changement de mot de -passe. - - - Par défaut : auth_provider est utilisé si il est défini et -peut gérer les changements de mot de passe. - - - - - - sudo_provider (chaîne) - - - Le fournisseur SUDO, utilisé pour le domaine. Les fournisseurs SUDO pris en -charge sont : - - - ldap pour les règles stockés dans LDAP. Voir -sssd-ldap -5 pour plus d'informations sur la -configuration de LDAP. - - - ipa identiqué à ldap mais avec les paramètres -par défaut pour IPA. - - - ipa identiqué à ldap mais avec les paramètres -par défaut pour AD. - - - none désactive explicitement SUDO. - - - Par défaut : La valeur de id_provider est utilisée si elle -est définie. - - - The detailed instructions for configuration of sudo_provider are in the -manual page sssd-sudo -5 . There are many configuration -options that can be used to adjust the behavior. Please refer to -"ldap_sudo_*" in sssd-ldap -5 . - - - - - selinux_provider (string) - - - Le fournisseur qui doit gérer le chargement des paramètres de -selinux. Remarque : ce fournisseur sera appelé juste après la fin de l'appel -au fournisseur d'accès. Les fournisseurs selinux pris en charge sont : - - - ipa pour charger les paramètres selinux depuis un serveur -IPA. Cf. sssd-ipa -5 pour plus d'informations sur la -configuration de IPA. - - - none n'autorise pas la récupération explicite des paramètres -selinux. - - - Par défaut : id_provider est utilisé s'il est défini et peut -gérer le chargement selinux - - - - - subdomains_provider (string) - - - Le fournisseur doit être capable de gérer la récupération des -sous-domaines. Cette valeur doit être toujours identique à id_provider. -Les fournisseurs de sous-domaine pris en charge sont : - - - ipa pour charger une liste de sous-domaines depuis un serveur -IPA. Cf. sssd-ipa -5 pour plus d'informations sur la -configuration de IPA. - - - ad to load a list of subdomains from an Active Directory -server. See sssd-ad -5 for more information on configuring -the AD provider. - - - none désactive la récupération explicite des sous-domaines. - - - Par défaut : La valeur de id_provider est utilisée si elle -est définie. - - - - - - autofs_provider (string) - - - Le fournisseur autofs utilisé pour le domaine. Les fournisseurs autofs pris -en charge sont : - - - ldap pour charger les cartes stockées dans -LDAP. Cf. sssd-ldap -5 pour plus d'informations sur la -configuration de LDAP. - - - ipa pour charger les cartes stockées sur un serveur -IPA. Cf. sssd-ipa -5 pour plus d'information sur la -configuration de IPA. - - - ad to load maps stored in an AD server. See -sssd-ad 5 - for more information on configuring the AD provider. - - - none désactive explicitement autofs. - - - Par défaut : La valeur de id_provider est utilisée si elle -est définie. - - - - - - hostid_provider (string) - - - Le fournisseur utilisé pour récupérer les informations d'identité des -systèmes. Les fournisseurs de hostid pris en charge sont : - - - ipa pour charge l'identité du système stockée sur un serveur -IPA. Cf. sssd-ipa -5 pour plus d'informations sur la -configuration de IPA. - - - none désactive explicitement hostid. - - - Par défaut : La valeur de id_provider est utilisée si elle -est définie. - - - - - - re_expression (chaîne) - - - L'expression rationnelle pour ce domaine qui décrit comment analyser la -chaîne contenant le nom d'utilisateur et domaine et en extraire ces -composants. Le « domaine » peut correspondre à soit au nom de domaine de la -configuration SSSD, ou, dans le cas de relations d'approbations avec des -sous-domaines IPA ou des domaines Active Directory, le nom plat (NetBIOS) du -domaine. - - - Valeur par défaut pour les fournisseurs AD et IPA : -(((?P<domain>[^\\]+)\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?P<name>[^@\\]+)$)) -qui utilisent trois styles différents pour les noms d'utilisateurs : - - - username - - - username@domain.name - - - domain\username - - - Bien que les deux premiers correspondent à la valeur par défaut en général -le troisième est introduit pour permettre une intégration facile des -utilisateurs de domaines Windows. - - - Par défaut : (?P<name>[^@]+)@?(?P<domain>[^@]*$) -qui se traduit par « peu importe le nom jusqu'au @, peu -importe le domaine après » - - - REMARQUE : la prise en charge de sous-motifs nommés multiples n'est pas -disponible sur certaines plates-formes (par exemple, RHEL5 et -SLES10). Seules les plates-formes avec libpcre version 7 ou supérieure -peuvent prendre en charge les sous-motifs nommés multiples. - - - REMARQUE ADDITIONNELLE : les anciennes versions de libpcre ne supportent que -la syntaxe Python (?P<name>) pour nommer les sous-motifs. - - - - - full_name_format (chaîne) - - - Un format compatible avec -printf 3 - décrivant comment composer un domaine pleinement qualifé à -partir des noms d'utilisateur et de domaine. - - - Les expansions suivantes sont prises en charge : - - %1$s - nom d'utilisateur - - - %2$s - - - nom de domaine tel qu'indiqué dans le fichier de configuration de SSSD. - - - - - %3$s - - - nom de domaine à plat. Utilisable principalement pour les domaines Active -Directory, configurés directement ou découverts via les relations -d'approbation IPA. - - - - - - - Par défaut : %1$s@%2$s. - - - - - - lookup_family_order (chaîne) - - - Fournit la possibilité de sélectionner la famille d'adresse préférée à -utiliser pour effectuer les requêtes DNS. - - - Valeurs prises en charge : - - - ipv4_first : essayer de chercher une adresse IPv4, et en cas d'échec, -essayer IPv6. - - - ipv4_only : ne tenter de résoudre les noms de systèmes qu'en adresses IPv4. - - - ipv6_first : essayer de chercher une adresse IPv6, et en cas d'échec, tenter -IPv4. - - - ipv6_only : ne tenter de résoudre les noms de systèmes qu'en adresses IPv6. - - - Par défaut : ipv4_first - - - - - - dns_resolver_timeout (entier) - - - Délai (en secondes) d'attente de la réponse du résolveur DNS avant de -considérer qu'il est injoignable. Si ce délai maximum est atteint, le -domaine continuera à opérer en mode déconnecté. - - - Par défaut : 6 - - - - - - dns_discovery_domain (chaîne) - - - Si la découverte de services est utilisé par le moteur, spécifie la partie -du domaine faisant partie de la requête DNS de découverte de services. - - - Par défaut : utiliser la partie du domaine qui est dans le nom de système de -la machine. - - - - - - override_gid (entier) - - - Redéfinit le GID primaire avec la valeur spécifiée. - - - - - - case_sensitive (chaîne) - - - Treat user and group names as case sensitive. At the moment, this option is -not supported in the local provider. Possible option values are: - - - True - - - Case sensitive. This value is invalid for AD provider. - - - - - False - - Insensible à la casse. - - - - Preserving - - - Comme False (insensible à la casse), mais ne convertit pas les noms en -minuscules lors des opérations NSS. Notez que les alias de noms (et dans le -cas des services les noms de protocoles) sont toujours en minuscule dans la -sortie. - - - - - - - Par défaut : true (false pour le fournisseur AD) - - - - - - subdomain_inherit (chaîne) - - - Specifies a list of configuration parameters that should be inherited by a -subdomain. Please note that only selected parameters can be inherited. -Currently the following options can be inherited: - - - ignore_group_members - - - ldap_purge_cache_timeout - - - ldap_use_tokengroups - - - ldap_user_principal - - - ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab -is not set explicitly) - - - Exemple : -subdomain_inherit = ldap_purge_cache_timeout - - - - Par défaut : aucun - - - Note: This option only works with the IPA and AD provider. - - - - - - subdomain_homedir (string) - - - Utiliser ce répertoire utilisateur comme valeur par défaut pour tous les -sous-domaines dans cette relation d'approbation Active Directory. Voir -override_homedir pour des informations sur les valeurs -possibles. En plus de celles-ci, le remplacement ci-dessous ne peut être -utilisé qu'avec subdomain_homedir. - - %F - nom plat (NetBIOS) d'un sous-domaine. - - - - - La valeur peut être surchargée par l'option -override_homedir. - - - Par défaut : /home/%d/%u - - - - - realmd_tags (chaîne) - - - Étiquettes diverses stockées par le service de configuration de realmd pour -ce domaine. - - - - - cached_auth_timeout (int) - - - Specifies time in seconds since last successful online authentication for -which user will be authenticated using cached credentials while SSSD is in -the online mode. - - - Special value 0 implies that this feature is disabled. - - - Please note that if cached_auth_timeout is longer than -pam_id_timeout then the back end could be called to handle -initgroups. - - - Par défaut : 0 - - - - - - - - Options valides pour les domaines proxy. - - proxy_pam_target (chaîne) - - - Le proxy cible duquel PAM devient mandataire. - - - Par défaut : non défini, il faut utiliser une configuration de pam existante -ou en créer une nouvelle et ajouter le nom de service ici. - - - - - - proxy_lib_name (chaîne) - - - Le nom de la bibliothèque NSS à utiliser dans les domaines proxy. Les -recherches de fonctions NSS dans la bibliothèque sont sous la forme -_nss_$(libName)_$(function), par exemple _nss_files_getpwent. - - - - - - proxy_fast_alias (boolean) - - - Quand un utilisateur ou un groupe est recherché par son nom dans le -fournisseur proxy, une deuxième recherche par ID est effectuée pour -récupérer le nom canonique, dans le cas où le nom demandé serait un -alias. Cette option positionnée à true active la recherche par l'ID dans le -cache afin d'améliorer les performances. - - - Par défaut : false - - - - - - proxy_max_children (integer) - - - This option specifies the number of pre-forked proxy children. It is useful -for high-load SSSD environments where sssd may run out of available child -slots, which would cause some issues due to the requests being queued. - - - Par défaut : 10 - - - - - - - - - La section du domaine local - - Cette section contient les paramètres pour le domaine qui stocke les -utilisateurs et les groupes dans la base de données native SSSD, -c'est-à-dire un domaine qui utilise -id_provider=local. - - - Paramètres de sections - - default_shell (chaîne) - - - L'interpréteur de commandes par défaut pour les utilisateurs créés avec les -outils en espace utilisateur SSSD. - - - Par défaut : /bin/bash - - - - - base_directory (chaîne) - - - Les outils ajoutent le nom d'utilisateur à -base_directory et l'utilisent comme dossier -personnel. - - - Par défaut : /home - - - - - create_homedir (booléen) - - - Indique si un dossier personnel doit être créé par défaut pour les nouveaux -utilisateurs. Peut être outrepassé par la ligne de commande. - - - Par défaut : TRUE - - - - - remove_homedir (booléen) - - - Indiquer si un dossier personnel doit par défaut être supprimé à la -suppression des utilisateurs. Peut être outrepassé par la ligne de commande. - - - Par défaut : TRUE - - - - - homedir_umask (entier) - - - Utilisé par sss_useradd -8 pour spécifier les permissions par -défaut sur un répertoire personnel nouvellement créé. - - - Par défaut : 077 - - - - - skel_dir (chaîne) - - - Le répertoire squelette contenant les fichiers et répertoires à copier dans -le répertoire personnel de l'utilisateur une fois ce répertoire créé par - sss_useradd -8 - - - Par défaut : /etc/skel - - - - - mail_dir (chaîne) - - - Le répertoire de gestion des e-mails. Nécessaire pour manipuler les boîtes -e-mail quand les comptes utilisateurs sont modifiés ou supprimés. Si non -précisé, la valeur par défaut est utilisée. - - - Par défaut : /var/mail - - - - - userdel_cmd (chaîne) - - - La commande qui est exécutée quand un utilisateur est supprimé. La commande -a comme seul argument le nom de l'utilisateur qui doit être supprimé. Le -code en retour de la commande n'est pas pris en compte. - - - Par défaut : None, aucune commande lancée - - - - - - - - - - EXEMPLE - - L'exemple suivant montre une configuration SSSD classique. Il ne décrit pas -la configuration des domaines. Se référer à la documentation sur la -configuration des domaines pour plus de détails. -[sssd] -domains = LDAP -services = nss, pam -config_file_version = 2 - -[nss] -filter_groups = root -filter_users = root - -[pam] - -[domain/LDAP] -id_provider = ldap -ldap_uri = ldap://ldap.example.com -ldap_search_base = dc=example,dc=com - -auth_provider = krb5 -krb5_server = kerberos.example.com -krb5_realm = EXAMPLE.COM -cache_credentials = true - -min_id = 10000 -max_id = 20000 -enumerate = False - - - - - - - - diff -Nru sssd-1.15.0/src/man/include/experimental.xml sssd-1.15.2/src/man/include/experimental.xml --- sssd-1.15.0/src/man/include/experimental.xml 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/man/include/experimental.xml 2017-03-15 16:53:24.000000000 +0000 @@ -1,4 +1,4 @@ -This is an experimental feature, please use http://fedorahosted.org/sssd to +This is an experimental feature, please use https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/include/override_homedir.xml sssd-1.15.2/src/man/include/override_homedir.xml --- sssd-1.15.0/src/man/include/override_homedir.xml 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/man/include/override_homedir.xml 2017-03-15 16:53:24.000000000 +0000 @@ -24,6 +24,10 @@ fully qualified user name (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/include/upstream.xml sssd-1.15.2/src/man/include/upstream.xml --- sssd-1.15.0/src/man/include/upstream.xml 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/man/include/upstream.xml 2017-03-15 16:53:24.000000000 +0000 @@ -1,4 +1,4 @@ SSSD - The SSSD upstream - http://fedorahosted.org/sssd + The SSSD upstream - https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/ja/include/experimental.xml sssd-1.15.2/src/man/ja/include/experimental.xml --- sssd-1.15.0/src/man/ja/include/experimental.xml 2017-01-25 15:44:05.924440296 +0000 +++ sssd-1.15.2/src/man/ja/include/experimental.xml 2017-03-15 16:58:45.348938149 +0000 @@ -1,2 +1,2 @@ - これは実験的な機能です、何らかの問題を報告するには http://fedorahosted.org/sssd を使用してください。 - + This is an experimental feature, please use +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/ja/include/override_homedir.xml sssd-1.15.2/src/man/ja/include/override_homedir.xml --- sssd-1.15.0/src/man/ja/include/override_homedir.xml 2017-01-25 15:44:05.924440296 +0000 +++ sssd-1.15.2/src/man/ja/include/override_homedir.xml 2017-03-15 16:58:45.348938149 +0000 @@ -21,6 +21,10 @@ 完全修飾ユーザー名 (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/ja/include/upstream.xml sssd-1.15.2/src/man/ja/include/upstream.xml --- sssd-1.15.0/src/man/ja/include/upstream.xml 2017-01-25 15:44:05.924440296 +0000 +++ sssd-1.15.2/src/man/ja/include/upstream.xml 2017-03-15 16:58:45.348938149 +0000 @@ -1,3 +1,3 @@ SSSD The SSSD upstream - -http://fedorahosted.org/sssd +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/lv/include/experimental.xml sssd-1.15.2/src/man/lv/include/experimental.xml --- sssd-1.15.0/src/man/lv/include/experimental.xml 2017-01-25 15:44:05.929440316 +0000 +++ sssd-1.15.2/src/man/lv/include/experimental.xml 2017-03-15 16:58:45.352938165 +0000 @@ -1,2 +1,2 @@ This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/lv/include/override_homedir.xml sssd-1.15.2/src/man/lv/include/override_homedir.xml --- sssd-1.15.0/src/man/lv/include/override_homedir.xml 2017-01-25 15:44:05.929440316 +0000 +++ sssd-1.15.2/src/man/lv/include/override_homedir.xml 2017-03-15 16:58:45.352938165 +0000 @@ -22,6 +22,10 @@ fully qualified user name (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/lv/include/upstream.xml sssd-1.15.2/src/man/lv/include/upstream.xml --- sssd-1.15.0/src/man/lv/include/upstream.xml 2017-01-25 15:44:05.928440312 +0000 +++ sssd-1.15.2/src/man/lv/include/upstream.xml 2017-03-15 16:58:45.352938165 +0000 @@ -1,3 +1,3 @@ SSSD The SSSD upstream - -http://fedorahosted.org/sssd +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/Makefile.am sssd-1.15.2/src/man/Makefile.am --- sssd-1.15.0/src/man/Makefile.am 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/man/Makefile.am 2017-03-15 16:53:24.000000000 +0000 @@ -35,7 +35,12 @@ if HAVE_SYSTEMD_UNIT SYSTEMD_CONDS = ;have_systemd endif -CONDS = with_false$(SUDO_CONDS)$(AUTOFS_CONDS)$(SSH_CONDS)$(PAC_RESPONDER_CONDS)$(IFP_CONDS)$(GPO_CONDS)$(SEC_CONDS)$(SYSTEMD_CONDS) +if ADD_FILES_DOMAIN +FILES_CONDS = ;enable_files_domain +else +FILES_CONDS = ;no_enable_files_domain +endif +CONDS = with_false$(SUDO_CONDS)$(AUTOFS_CONDS)$(SSH_CONDS)$(PAC_RESPONDER_CONDS)$(IFP_CONDS)$(GPO_CONDS)$(SEC_CONDS)$(SYSTEMD_CONDS)$(FILES_CONDS) #Special Rules: @@ -84,6 +89,10 @@ man_MANS += sss_rpcidmapd.5 endif +if HAVE_INOTIFY +man_MANS += sssd-files.5 +endif + SUFFIXES = .1.xml .1 .3.xml .3 .5.xml .5 .8.xml .8 .1.xml.1: $(XMLLINT) $(XMLLINT_FLAGS) $< diff -Nru sssd-1.15.0/src/man/Makefile.in sssd-1.15.2/src/man/Makefile.in --- sssd-1.15.0/src/man/Makefile.in 2017-01-25 15:42:56.296155988 +0000 +++ sssd-1.15.2/src/man/Makefile.in 2017-03-15 16:57:42.045685867 +0000 @@ -94,6 +94,7 @@ @BUILD_IFP_TRUE@am__append_5 = sssd-ifp.5 @BUILD_SECRETS_TRUE@am__append_6 = sssd-secrets.5 @BUILD_NFS_IDMAP_TRUE@am__append_7 = sss_rpcidmapd.5 +@HAVE_INOTIFY_TRUE@am__append_8 = sssd-files.5 subdir = src/man ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/gettext.m4 \ @@ -143,6 +144,7 @@ $(top_srcdir)/src/external/intgcheck.m4 \ $(top_srcdir)/src/external/systemtap.m4 \ $(top_srcdir)/src/external/service.m4 \ + $(top_srcdir)/src/external/libcurl.m4 \ $(top_srcdir)/src/external/libhttp_parser.m4 \ $(top_srcdir)/src/external/libjansson.m4 \ $(top_srcdir)/src/external/libunistring.m4 \ @@ -234,6 +236,8 @@ CPPFLAGS = @CPPFLAGS@ CRYPTO_CFLAGS = @CRYPTO_CFLAGS@ CRYPTO_LIBS = @CRYPTO_LIBS@ +CURL_CFLAGS = @CURL_CFLAGS@ +CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ @@ -540,7 +544,9 @@ @GPO_DEFAULT_ENFORCING_FALSE@GPO_CONDS = ;gpo_default_permissive @GPO_DEFAULT_ENFORCING_TRUE@GPO_CONDS = ;gpo_default_enforcing @HAVE_SYSTEMD_UNIT_TRUE@SYSTEMD_CONDS = ;have_systemd -CONDS = with_false$(SUDO_CONDS)$(AUTOFS_CONDS)$(SSH_CONDS)$(PAC_RESPONDER_CONDS)$(IFP_CONDS)$(GPO_CONDS)$(SEC_CONDS)$(SYSTEMD_CONDS) +@ADD_FILES_DOMAIN_FALSE@FILES_CONDS = ;no_enable_files_domain +@ADD_FILES_DOMAIN_TRUE@FILES_CONDS = ;enable_files_domain +CONDS = with_false$(SUDO_CONDS)$(AUTOFS_CONDS)$(SSH_CONDS)$(PAC_RESPONDER_CONDS)$(IFP_CONDS)$(GPO_CONDS)$(SEC_CONDS)$(SYSTEMD_CONDS)$(FILES_CONDS) XMLLINT_FLAGS = --catalogs --postvalid --nonet --noent --xinclude --noout XSLTPROC_FLAGS = --catalogs --xinclude --nonet $(am__append_1) EXTRA_DIST = $(wildcard $(srcdir)/*.xml) $(wildcard \ @@ -552,7 +558,7 @@ sss_debuglevel.8 sss_seed.8 sss_override.8 idmap_sss.8 \ sssctl.8 $(NULL) $(am__append_2) $(am__append_3) \ $(am__append_4) $(am__append_5) $(am__append_6) \ - $(am__append_7) + $(am__append_7) $(am__append_8) SUFFIXES = .1.xml .1 .3.xml .3 .5.xml .5 .8.xml .8 PACKAGE_DOC = sssd-docs POTFILE = po/$(PACKAGE_DOC).pot diff -Nru sssd-1.15.0/src/man/nl/include/experimental.xml sssd-1.15.2/src/man/nl/include/experimental.xml --- sssd-1.15.0/src/man/nl/include/experimental.xml 2017-01-25 15:44:05.934440337 +0000 +++ sssd-1.15.2/src/man/nl/include/experimental.xml 2017-03-15 16:58:45.355938177 +0000 @@ -1,2 +1,2 @@ This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/nl/include/override_homedir.xml sssd-1.15.2/src/man/nl/include/override_homedir.xml --- sssd-1.15.0/src/man/nl/include/override_homedir.xml 2017-01-25 15:44:05.934440337 +0000 +++ sssd-1.15.2/src/man/nl/include/override_homedir.xml 2017-03-15 16:58:45.356938181 +0000 @@ -22,6 +22,10 @@ fully qualified user name (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/nl/include/upstream.xml sssd-1.15.2/src/man/nl/include/upstream.xml --- sssd-1.15.0/src/man/nl/include/upstream.xml 2017-01-25 15:44:05.933440333 +0000 +++ sssd-1.15.2/src/man/nl/include/upstream.xml 2017-03-15 16:58:45.355938177 +0000 @@ -1,3 +1,3 @@ SSSD The SSSD upstream - -http://fedorahosted.org/sssd +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/pam_sss.8.xml sssd-1.15.2/src/man/pam_sss.8.xml --- sssd-1.15.0/src/man/pam_sss.8.xml 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/man/pam_sss.8.xml 2017-03-15 16:53:24.000000000 +0000 @@ -4,10 +4,8 @@ SSSD Manual pages - - SSSD - The SSSD upstream - http://fedorahosted.org/sssd - + pam_sss @@ -49,6 +47,9 @@ allow_missing_name + + prompt_always + @@ -184,6 +185,21 @@ + + + + + + + Always prompt the user for credentials. With this + option credentials requested by other PAM modules, + typically a password, will be ignored and pam_sss will + prompt for credentials again. Based on the pre-auth + reply by SSSD pam_sss might prompt for a password, a + Smartcard PIN or other credentials. + + + diff -Nru sssd-1.15.0/src/man/po/br.po sssd-1.15.2/src/man/po/br.po --- sssd-1.15.0/src/man/po/br.po 2017-01-25 15:44:05.891440161 +0000 +++ sssd-1.15.2/src/man/po/br.po 2017-03-15 16:58:45.313938010 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-14 11:51-0500\n" "Last-Translator: Copied by Zanata \n" "Language-Team: Breton (http://www.transifex.com/projects/p/sssd/language/" @@ -30,7 +30,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "Dornlevr SSSD" @@ -40,7 +40,7 @@ msgstr "sss_groupmod" #. type: Content of: -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -66,7 +66,7 @@ "arg>" #. type: Content of: -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -74,7 +74,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "DESKRIVADUR" @@ -86,7 +86,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -133,14 +133,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "" @@ -291,10 +291,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "Dre ziouer : true" @@ -311,11 +312,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "" @@ -342,7 +344,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "" @@ -358,7 +360,7 @@ msgstr "Ar rann [sssd]" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "Arventennoù ar rann" @@ -406,19 +408,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "Dre ziouer : 3" @@ -438,7 +440,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "re_expression (neudennad)" @@ -458,12 +460,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "full_name_format (neudennad)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -471,39 +473,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -627,7 +629,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -775,6 +777,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -787,12 +801,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "RANNOÙ SERVIJOÙ" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -801,22 +815,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -826,17 +840,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -844,18 +858,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -863,24 +877,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -888,12 +902,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -905,46 +919,58 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "Dre ziouer : 120" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -952,7 +978,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -962,7 +988,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -971,17 +997,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -989,34 +1015,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "Dre ziouer : 15" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 msgid "local_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "Dre ziouer : 0" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "filter_users, filter_groups (neudennad)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1025,7 +1051,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1034,41 +1060,41 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "Dre zoiuer : root" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1076,23 +1102,23 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1100,47 +1126,47 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1148,105 +1174,105 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1257,72 +1283,96 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +msgid "pwfield (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1330,59 +1380,59 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "Dre zoiuer : 5" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 msgid "pam_response_filter (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1391,61 +1441,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder type=" "\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1453,7 +1503,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1462,17 +1512,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1480,26 +1530,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1509,74 +1559,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1584,19 +1634,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1604,12 +1654,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 msgid "pam_cert_auth (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1617,48 +1667,48 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 #, fuzzy #| msgid "full_name_format (string)" msgid "pam_cert_db_path (string)" msgstr "full_name_format (neudennad)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 msgid "p11_child_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1669,34 +1719,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1704,68 +1754,68 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 msgid "ca_db (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 msgid "Default: /etc/pki/nssdb" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1777,7 +1827,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1788,24 +1838,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1813,12 +1863,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1827,36 +1877,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 msgid "pac_lifetime (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "RANNOÙ DOMANI" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -1865,46 +1915,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1916,14 +1966,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1932,39 +1982,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -1973,19 +2023,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -1996,151 +2046,151 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2148,24 +2198,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2174,17 +2224,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2193,33 +2243,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2227,8 +2277,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2237,8 +2287,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2246,19 +2296,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2267,7 +2317,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2275,22 +2325,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2302,7 +2352,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2310,19 +2360,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2330,7 +2380,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2338,30 +2388,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2369,19 +2419,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2390,7 +2440,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum></" @@ -2398,29 +2448,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2428,7 +2478,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2436,35 +2486,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2472,32 +2522,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2508,12 +2558,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2521,7 +2571,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2529,31 +2579,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2561,7 +2611,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2570,23 +2620,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2594,7 +2644,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2602,7 +2652,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2610,24 +2660,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2635,12 +2685,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2650,7 +2700,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2659,29 +2709,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2689,7 +2739,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2697,66 +2747,66 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2764,70 +2814,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2835,7 +2885,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2843,17 +2893,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2861,34 +2911,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2896,32 +2946,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2931,34 +2981,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 msgid "cached_auth_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -2966,12 +3016,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -2979,7 +3029,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -2987,29 +3037,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3017,12 +3067,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3031,12 +3081,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 msgid "proxy_max_children (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3044,19 +3094,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3064,73 +3114,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3138,17 +3188,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3157,17 +3207,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3175,17 +3225,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3193,19 +3243,83 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +#, fuzzy +#| msgid "DOMAIN SECTIONS" +msgid "TRUSTED DOMAIN SECTION" +msgstr "RANNOÙ DOMANI" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +msgid "ldap_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +msgid "ldap_user_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +msgid "ldap_group_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +msgid "ldap_netgroup_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +msgid "ldap_service_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3235,7 +3349,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3282,7 +3396,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "" @@ -4094,7 +4209,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "" @@ -5096,7 +5211,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "" @@ -6137,8 +6252,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" @@ -6172,7 +6287,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "" @@ -6185,25 +6300,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6213,11 +6321,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6225,34 +6334,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6260,31 +6369,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6292,36 +6401,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6329,7 +6438,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6339,19 +6448,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 msgid "<option>allow_missing_name</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6359,7 +6468,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6369,25 +6478,40 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +msgid "<option>prompt_always</option>" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -6395,7 +6519,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -6407,7 +6531,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -6812,17 +6936,37 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +msgid "dyndns_auth (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "Dre ziouer : 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6834,12 +6978,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6847,216 +6991,216 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 msgid "dyndns_server (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7064,17 +7208,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7082,190 +7226,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7275,19 +7419,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7295,7 +7439,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7307,7 +7451,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -7315,7 +7459,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8260,7 +8404,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8268,7 +8412,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8283,7 +8427,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8292,7 +8436,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8300,7 +8444,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8310,7 +8454,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9447,7 +9591,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -9457,12 +9601,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -11033,6 +11177,64 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +msgid "sssd-files" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 msgid "sssd-secrets" msgstr "" @@ -11712,6 +11914,13 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12322,8 +12531,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12469,28 +12678,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12502,13 +12721,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12516,7 +12730,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/po/ca.po sssd-1.15.2/src/man/po/ca.po --- sssd-1.15.0/src/man/po/ca.po 2017-01-25 15:44:05.895440177 +0000 +++ sssd-1.15.2/src/man/po/ca.po 2017-03-15 16:58:45.317938026 +0000 @@ -14,7 +14,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2015-10-18 04:13-0400\n" "Last-Translator: Robert Antoni Buj Gelonch <rbuj@fedoraproject.org>\n" "Language-Team: Catalan (http://www.transifex.com/projects/p/sssd/language/" @@ -36,7 +36,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "Pàgines del manual de l'SSSD" @@ -46,7 +46,7 @@ msgstr "sss_groupmod" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -71,7 +71,7 @@ "replaceable></arg> <arg choice='plain'> <replaceable>GRUP</replaceable></arg>" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -79,7 +79,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "DESCRIPCIÓ" @@ -93,7 +93,7 @@ "que s'especifiquen a la línia d'ordres." #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -147,14 +147,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "Formats i convencions dels fitxers" @@ -330,10 +330,11 @@ "opció." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "Per defecte: true" @@ -353,11 +354,12 @@ "aleshores s'ignora aquesta opció." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "Per defecte: false" @@ -386,7 +388,7 @@ "assegurar que el procés età viu i és capaç de respondre a les peticions." #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "Per defecte: 10" @@ -402,7 +404,7 @@ msgstr "La secció [sssd]" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "Paràmetres de la secció" @@ -456,12 +458,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "reconnection_retries (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" @@ -471,7 +473,7 @@ "vençuts" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "Per defecte: 3" @@ -497,7 +499,7 @@ "i guions baixos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "re_expression (cadena)" @@ -523,12 +525,12 @@ "expressions regulars." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "full_name_format (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -539,40 +541,40 @@ "compondre un FQN des dels components del nom d'usuari i del nom del domini." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "%1$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "nom d'usuari" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "%2$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" "el nom del domini tal com s'especifica al fitxer de configuració de l'SSSD." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "%3$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -730,7 +732,7 @@ "d'aquesta opció juntament amb use_fully_qualified_names establert a False." #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -889,6 +891,20 @@ msgid "Default: false (netlink changes are detected)" msgstr "Per defecte: False (inhabilitat)" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +#, fuzzy +#| msgid "ad_enable_dns_sites (boolean)" +msgid "enable_files_domain (boolean)" +msgstr "ad_enable_dns_sites (booleà)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -907,12 +923,12 @@ "type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "SECCIONS DELS SERVEIS" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -925,22 +941,22 @@ "quote>" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "Opcions de configuració del servei general" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "Es poden utilitzar aquestes opcions per configurar qualsevol servei." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "fd_limit" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -950,17 +966,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -968,18 +984,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "Per defecte: 60" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "offline_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -987,24 +1003,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "offline_timeout + random_offset" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "new_interval = old_interval*2 + random_offset" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -1012,14 +1028,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 #, fuzzy #| msgid "client_idle_timeout" msgid "responder_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -1031,18 +1047,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "Per defecte: 300" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "Opcions de configuració de l'NSS" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" @@ -1050,12 +1078,12 @@ "Service Switch)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "enum_cache_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" @@ -1064,17 +1092,17 @@ "(peticions d'informació sobre tots els usuaris)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "Per defecte: 120" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "entry_cache_nowait_percentage (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -1085,7 +1113,7 @@ "valor entry_cache_timeout per al domini." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -1101,7 +1129,7 @@ "peticions que esperen per a una actualització de la memòria cau." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -1114,17 +1142,17 @@ "(0 desactiva aquesta característica)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "Per defecte: 50" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "entry_negative_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -1136,19 +1164,19 @@ "altra vegada." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "Per defecte: 15" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 #, fuzzy #| msgid "autofs_negative_timeout (integer)" msgid "local_negative_timeout (integer)" msgstr "autofs_negative_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 #, fuzzy #| msgid "" #| "Specifies for how many seconds nss_sss should cache negative cache hits " @@ -1164,17 +1192,17 @@ "altra vegada." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "Per defecte: 0" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "filter_users, filter_groups (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1183,7 +1211,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1192,17 +1220,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "Per defecte: root" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "filter_users_in_groups (booleà)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" @@ -1210,12 +1238,12 @@ "aquesta opció a false." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "fallback_homedir (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." @@ -1224,7 +1252,7 @@ "si no se n'especifica cap explícitament amb el proveïdor de dades del domini." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" @@ -1232,7 +1260,7 @@ "override_homedir." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1242,25 +1270,25 @@ " " #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "exemple: <placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" "Per defecte: sense establir (cap substitució per als directoris inicials no " "establerts)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "override_shell (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1271,18 +1299,18 @@ "pot configurar ja sigui en la secció [nss] o per cada domini." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" "Per defecte: sense establir (SSSD utilitzarà el valor recuperat del LDAP)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "allowed_shells (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" @@ -1290,31 +1318,31 @@ "d'avaluació és:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "1. Si el shell està present al <quote>/etc/shells</quote>, s'utilitza." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1322,93 +1350,93 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "vetoed_shells (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "shell_fallback (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "Per defecte: /bin/sh" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "default_shell" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "get_domains_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "memcache_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 #, fuzzy #| msgid "" #| "If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", client " @@ -1421,12 +1449,12 @@ "aplicacions clients no utilitzaran el fast en la memòria cau." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "user_attributes (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1437,24 +1465,50 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +#, fuzzy +#| msgid "skel_dir (string)" +msgid "pwfield (string)" +msgstr "skel_dir (cadena)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "Opcions de configuració del PAM" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." @@ -1463,12 +1517,12 @@ "(Pluggable Authentication Module)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "offline_credentials_expiration (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." @@ -1478,17 +1532,17 @@ "de sessió)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "Per defecte: 0 (sense límit)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "offline_failed_login_attempts (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." @@ -1497,12 +1551,12 @@ "fallits es permet." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "offline_failed_login_delay (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." @@ -1512,7 +1566,7 @@ "possible." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1520,17 +1574,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "Per defecte: 5" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "pam_verbosity (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." @@ -1539,45 +1593,45 @@ "l'autenticació. Com més gran sigui el nombre més missatges es mostren." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "L'sssd actualment admet els següents valors:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "<emphasis>0</emphasis>: no mostris cap missatge" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "<emphasis>1</emphasis>: Mostra només missatges importants" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "<emphasis>2</emphasis>: Mostra missatges informatius" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" "<emphasis>3</emphasis>: Mostra tots els missatges i informació de depuració" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "Per defecte: 1" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 #, fuzzy #| msgid "pam_verbosity (integer)" msgid "pam_response_filter (integer)" msgstr "pam_verbosity (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1586,44 +1640,44 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 #, fuzzy #| msgid "" #| "The following expansions are supported: <placeholder type=\"variablelist" @@ -1636,17 +1690,17 @@ "\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "pam_id_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1658,7 +1712,7 @@ "l'última informació." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1672,17 +1726,17 @@ "excessives al proveïdor d'identitat." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "pam_pwd_expiration_warning (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1690,26 +1744,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "pam_trusted_users (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 #, fuzzy #| msgid "" #| "Specifies the comma-separated list of UID values or user names that are " @@ -1727,74 +1781,74 @@ "noms d'usuaris es resolen als UID en la preparació." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "pam_public_domains (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "Per defecte: none" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "pam_account_expired_message (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1802,21 +1856,21 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 #, fuzzy #| msgid "pam_account_expired_message (string)" msgid "pam_account_locked_message (string)" msgstr "pam_account_expired_message (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1824,14 +1878,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 #, fuzzy #| msgid "enumerate (bool)" msgid "pam_cert_auth (bool)" msgstr "enumerate (booleà)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1839,50 +1893,50 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "Per defecte: False" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 #, fuzzy #| msgid "krb5_confd_path (string)" msgid "pam_cert_db_path (string)" msgstr "krb5_confd_path (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "p11_child_timeout (integer)" msgstr "pam_id_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "Opcions de configuració de SUDO" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1900,35 +1954,35 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "sudo_timed (booleà)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" "Es poden utilitzar aquestes opcions per configurar el servei de l'autofs." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "autofs_negative_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1936,72 +1990,72 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "Es poden utilitzar aquestes opcions per configurar el servei de l'SSH." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "ssh_hash_known_hosts (booleà)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "ssh_known_hosts_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "Per defecte: 180" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 #, fuzzy #| msgid "mail_dir (string)" msgid "ca_db (string)" msgstr "mail_dir (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 #, fuzzy #| msgid "Default: /etc/krb5.keytab" msgid "Default: /etc/pki/nssdb" msgstr "Per defecte: /etc/krb5.keytab" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "Opcions de configuració del contestador del PAC." #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -2013,7 +2067,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -2024,25 +2078,25 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" "Es poden utilitzar aquestes opcions per configurar el contestador del PAC." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "allowed_uids (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -2050,12 +2104,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -2064,31 +2118,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "pac_lifetime (integer)" msgstr "pam_id_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "SECCIONS DE DOMINI" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "min_id, max_id (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." @@ -2097,7 +2151,7 @@ "fora d'aquests límits, s'ignora." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -2110,24 +2164,24 @@ "com s'esperava." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "Per defecte: 1 per a min_id, 0 (sense límit) per a max_id" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "enumerate (booleà)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" @@ -2136,22 +2190,22 @@ "valors següents:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "TRUE = Els usuaris i grups s'enumeren" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "FALSE = Cap enumeració per a aquest domini" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "Per defecte: FALSE" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -2163,7 +2217,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." @@ -2173,7 +2227,7 @@ "finalitzi." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -2187,39 +2241,39 @@ "ús." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "subdomain_enumerate (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "all" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "none" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -2228,12 +2282,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "entry_cache_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" @@ -2242,7 +2296,7 @@ "demanar al rerefons una altra vegada" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -2253,153 +2307,153 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "Per defecte: 5400" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "entry_cache_user_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "Per defecte: entry_cache_timeout" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "entry_cache_group_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "entry_cache_netgroup_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "entry_cache_service_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "entry_cache_sudo_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "entry_cache_autofs_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "entry_cache_ssh_host_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "refresh_expired_interval (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "Per defecte: 0 (inhabilitat)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "cache_credentials (booleà)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" "Determina si les credencials d'usuari també són emmagatzemades en la memòria " "cau local de LDB" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2407,24 +2461,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "Per defecte: 8" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "account_cache_expiration (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2437,17 +2491,17 @@ "ha de ser superior o igual que offline_credentials_expiration." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "Per defecte: 0 (sense límit)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "pwd_expiration_warning (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2456,33 +2510,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "Per defecte: 7 (Kerberos), 0 (LDAP)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "id_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2490,8 +2544,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2500,8 +2554,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2509,19 +2563,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "use_fully_qualified_names (booleà)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2534,7 +2588,7 @@ "l'usuari mentre que <command>getent passwd test@LOCAL</command> sí." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2542,22 +2596,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "ignore_group_members (booleà)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2569,7 +2623,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2577,12 +2631,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "auth_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" @@ -2591,7 +2645,7 @@ "d'autenticació suportats són:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2602,7 +2656,7 @@ "manvolnum></citerefentry> per a més informació sobre configuració d'LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2613,7 +2667,7 @@ "manvolnum></citerefentry> per a més informació sobre configurar Kerberos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" @@ -2621,12 +2675,12 @@ "de PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "<quote>none</quote> impossibilita l'autenticació explícitament." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." @@ -2635,12 +2689,12 @@ "gestionar les sol·licituds d'autenticació." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "access_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2651,19 +2705,19 @@ "instal·lats) Els proveïdors especials interns són:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "<quote>deny</quote> sempre denega l'accés." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2676,7 +2730,7 @@ "configuració del mòdul d'accés simple." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 #, fuzzy #| msgid "" #| "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " @@ -2692,7 +2746,7 @@ "manvolnum></citerefentry> per a més informació sobre configurar Kerberos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 #, fuzzy #| msgid "" #| "<quote>proxy</quote> for relaying password changes to some other PAM " @@ -2703,17 +2757,17 @@ "objectiu PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "Per defecte: <quote>permit</quote>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "chpass_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" @@ -2722,7 +2776,7 @@ "al domini. Els proveïdors de canvi de contrasenya compatibles són:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2734,7 +2788,7 @@ "configuració d'LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2745,7 +2799,7 @@ "manvolnum></citerefentry> per a més informació sobre configurar Kerberos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" @@ -2753,12 +2807,12 @@ "objectiu PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "<quote>none</quote> rebutja els canvis de contrasenya explícitament." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." @@ -2767,17 +2821,17 @@ "gestionar peticions de canvi de contrasenya." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "sudo_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2785,32 +2839,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2821,12 +2875,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "selinux_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2834,7 +2888,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2842,31 +2896,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "subdomains_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2874,7 +2928,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2883,23 +2937,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "autofs_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2907,7 +2961,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2915,7 +2969,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 #, fuzzy #| msgid "" #| "<quote>ldap</quote> to change a password stored in a LDAP server. See " @@ -2932,24 +2986,24 @@ "configuració d'LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "hostid_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2957,12 +3011,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2972,7 +3026,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2981,29 +3035,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -3014,7 +3068,7 @@ "quote> , el domini és tot el que hi ha després\"" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -3022,7 +3076,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." @@ -3031,17 +3085,17 @@ "sintaxi Python (?P <name>) a l'etiqueta subpatterns." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "Per defecte: <quote>%1$s@%2$s</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "lookup_family_order (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." @@ -3050,42 +3104,42 @@ "realitzar cerques de DNS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "Valors admesos:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "ipv4_first: Intenta resoldre l'adreça IPv4, si falla, intenta IPv6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "ipv4_only: Intenta resoldre només noms màquina a adreces IPv4." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "ipv6_first: Intenta resoldre l'adreça IPv6, si falla, intenta IPv4" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "ipv6_only: Intenta resoldre només noms màquina a adreces IPv6." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "Per defecte: ipv4_first" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "dns_resolver_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -3096,18 +3150,18 @@ "aquest temps d'espera, el domini seguirà operant en el mode fora de línia." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "Per defecte: 6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "dns_discovery_domain (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." @@ -3116,52 +3170,52 @@ "del domini de la consulta DNS del servei de descobriment." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "Per defecte: Utilitza la part del domini del nom de màquina" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "override_gid (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "case_sensitive (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "True" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "False" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -3169,7 +3223,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -3177,17 +3231,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "subdomain_inherit (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -3195,34 +3249,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "ignore_group_members" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "ldap_purge_cache_timeout" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "ldap_use_tokengroups" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "ldap_user_principal" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -3232,32 +3286,32 @@ " " #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "Exemple: <placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "subdomain_homedir (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "%F" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -3267,36 +3321,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "Per defecte: <filename>/home/%d/%u</filename>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "realmd_tags (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 #, fuzzy #| msgid "memcache_timeout (int)" msgid "cached_auth_timeout (int)" msgstr "memcache_timeout (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -3304,12 +3358,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -3317,7 +3371,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -3328,17 +3382,17 @@ "replaceable>]</quote> <placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "proxy_pam_target (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "El servidor intermediari on reenvia PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." @@ -3347,12 +3401,12 @@ "de pam existent o crear-ne una de nova i afegir aquí el nom del servei." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "proxy_lib_name (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3363,12 +3417,12 @@ "format _nss_$(libName)_$(function), per exemple _nss_files_getpwent." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "proxy_fast_alias (booleà)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3377,14 +3431,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 #, fuzzy #| msgid "min_id,max_id (integer)" msgid "proxy_max_children (integer)" msgstr "min_id, max_id (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3392,7 +3446,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" @@ -3401,12 +3455,12 @@ "\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "La secció del domini local" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3417,29 +3471,29 @@ "<replaceable>id_provider = local</replaceable>." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "default_shell (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" "El shell predeterminat per als usuaris que es creen amb eines de l'espai " "d'usuari de l'SSSD." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "Per defecte: <filename>/bin/bash</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "base_directory (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." @@ -3448,46 +3502,46 @@ "replaceable> i utilitzen aquest com el directori inicial." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "Per defecte: <filename>/home</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "create_homedir (booleà)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "Per defecte: TRUE" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "remove_homedir (booleà)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "homedir_umask (enter)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3498,17 +3552,17 @@ "defecte en un directori inicial acabat de crear." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "Per defecte: 077" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "skel_dir (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3521,17 +3575,17 @@ "manvolnum></citerefentry>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "Per defecte: <filename>/etc/skel</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "mail_dir (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3542,17 +3596,17 @@ "suprimit. Si no s'especifica, s'utilitzarà un valor per defecte." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "Per defecte: <filename>/var/correu</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "userdel_cmd (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3563,19 +3617,95 @@ "té en compte." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "Per defecte: Cap, no s'executa cap comanda" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +#, fuzzy +#| msgid "DOMAIN SECTIONS" +msgid "TRUSTED DOMAIN SECTION" +msgstr "SECCIONS DE DOMINI" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +#, fuzzy +#| msgid "ldap_search_base (string)" +msgid "ldap_search_base," +msgstr "ldap_search_base (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +#, fuzzy +#| msgid "ldap_user_search_base (string)" +msgid "ldap_user_search_base," +msgstr "ldap_user_search_base (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +#, fuzzy +#| msgid "ldap_group_search_base (string)" +msgid "ldap_group_search_base," +msgstr "ldap_group_search_base (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +#, fuzzy +#| msgid "ldap_netgroup_search_base (string)" +msgid "ldap_netgroup_search_base," +msgstr "ldap_netgroup_search_base (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +#, fuzzy +#| msgid "ldap_service_search_base (string)" +msgid "ldap_service_search_base," +msgstr "ldap_service_search_base (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +#, fuzzy +#| msgid "ad_server, ad_backup_server (string)" +msgid "ad_backup_server," +msgstr "ad_server, ad_backup_server (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "EXEMPLE" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3629,7 +3759,7 @@ "enumerate = False\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3693,7 +3823,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "OPCIONS DE CONFIGURACIÓ" @@ -4556,7 +4687,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "Per defecte: cn" @@ -5618,7 +5749,7 @@ "<quote>krb5_server</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "krb5_realm (cadena)" @@ -6720,8 +6851,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "<placeholder type=\"programlisting\" id=\"0\"/>" @@ -6755,7 +6886,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "NOTES" @@ -6772,27 +6903,18 @@ "<refentrytitle>ldap.conf</refentrytitle> <manvolnum>5</manvolnum></" "citerefentry> de la distribució d'OpenLDAP 2.4." -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" -"<productname>SSSD</productname> <orgname>La línia de desenvolupament " -"principal de l'SSSD - http://fedorahosted.org/sssd</orgname>" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "pam_sss" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "Mòdul de PAM per SSSD" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 #, fuzzy #| msgid "" #| "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" @@ -6813,7 +6935,8 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6825,7 +6948,7 @@ "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg>" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6836,22 +6959,22 @@ "<command>syslog(3)</command> amb el canal LOG_AUTHPRIV." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "<option>quiet</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "Suprimeix el registre dels missatges per als usuaris desconeguts." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." @@ -6860,12 +6983,12 @@ "s'introdueix es posa a la pila perquè els altres mòduls del PAM l'utilitzin." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "<option>use_first_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6876,12 +6999,12 @@ "cap contrasenya o no és correcta, es denegarà l'accés a l'usuari." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "<option>use_authtok</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." @@ -6890,12 +7013,12 @@ "la proporcionada per un mòdul de contrasenya prèviament apilat." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "<option>retry=N</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." @@ -6904,7 +7027,7 @@ "vegades més una contrasenya. Per defecte és 0." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6916,12 +7039,12 @@ "<option>PasswordAuthentication</option>." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "<option>ignore_unknown_user</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." @@ -6930,12 +7053,12 @@ "PAM_IGNORE. Això provoca que el marc de treball del PAM ignori aquest mòdul." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "<option>ignore_authinfo_unavail</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." @@ -6945,12 +7068,12 @@ "aquest mòdul." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "<option>domains</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6961,7 +7084,7 @@ "dels noms dels dominis SSSD, com s'especifica al fitxer sssd.conf." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6976,21 +7099,21 @@ "dues opcions del contestador del PAM." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 #, fuzzy #| msgid "<option>domains</option>" msgid "<option>allow_missing_name</option>" msgstr "<option>domains</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6998,7 +7121,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -7008,13 +7131,30 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +#, fuzzy +#| msgid "<option>domains</option>" +msgid "<option>prompt_always</option>" +msgstr "<option>domains</option>" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "TIPUS DE MÒDULS PROPORCIONATS" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." @@ -7023,12 +7163,12 @@ "<option>auth</option>, <option>password</option> i <option>session</option>)." #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "FITXERS" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -7040,7 +7180,7 @@ "instruccions sobre com es restableix una contrasenya." #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -7060,7 +7200,7 @@ "únicament han de tenir els permisos de lectura." #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -7536,17 +7676,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +#, fuzzy +#| msgid "dyndns_iface (string)" +msgid "dyndns_auth (string)" +msgstr "dyndns_iface (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "Per defecte: 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "ipa_enable_dns_sites (booleà)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -7558,12 +7720,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "dyndns_refresh_interval (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -7571,218 +7733,218 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "dyndns_update_ptr (booleà)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "Per defecte: False (inhabilitat)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "dyndns_force_tcp (booleà)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 #, fuzzy #| msgid "dyndns_iface (string)" msgid "dyndns_server (string)" msgstr "dyndns_iface (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "ipa_hbac_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "Per defecte: Utilitza el DN base" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "ipa_host_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "Per defecte: el valor de <emphasis>ldap_search_base</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "ipa_selinux_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "ipa_subdomains_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "ipa_master_domain_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "ipa_views_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "krb5_confd_path (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "ipa_hbac_refresh (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7790,17 +7952,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "Per defecte: 5 (segons)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "ipa_hbac_selinux (enter)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7808,190 +7970,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "ipa_server_mode (booleà)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "ipa_automount_location (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "ipa_view_class (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "Per defecte: nsContainer" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "ipa_view_name (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "ipa_overide_object_class (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "Per defecte: ipaOverrideAnchor" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "ipa_anchor_uuid (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "Per defecte: ipaAnchorUUID" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "ipa_user_override_object_class (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "ldap_user_name" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "ldap_user_uid_number" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "ldap_user_gid_number" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "ldap_user_gecos" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "ldap_user_home_directory" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "ldap_user_shell" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "ldap_user_ssh_public_key" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "Per defecte: ipaUserOverride" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "ipa_group_override_object_class (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "ldap_group_name" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "ldap_group_gid_number" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "Per defecte: ipaGroupOverride" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -8001,19 +8163,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "PROVEÏDOR DELS SUBDOMINIS" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -8021,7 +8183,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -8033,7 +8195,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8045,7 +8207,7 @@ "específiques del proveïdor IPA." #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -9023,7 +9185,7 @@ msgstr "Per defecte: True" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -9031,7 +9193,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -9055,7 +9217,7 @@ "ad_domain = exemple.com\n" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -9067,7 +9229,7 @@ "ldap_account_expire_policy = ad\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -9075,7 +9237,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -9085,7 +9247,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -10361,7 +10523,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -10371,12 +10533,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "%%" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -12181,6 +12343,116 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +#, fuzzy +#| msgid "sssd-simple" +msgid "sssd-files" +msgstr "sssd-simple" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +#, fuzzy +#| msgid "SSSD IPA provider" +msgid "SSSD files provider" +msgstr "Proveïdor d'IPA de l'SSSD" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +#, fuzzy +#| msgid "" +#| "This manual page describes the configuration of the IPA provider for " +#| "<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +#| "manvolnum> </citerefentry>. For a detailed syntax reference, refer to " +#| "the <quote>FILE FORMAT</quote> section of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page." +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" +"En aquesta pàgina del manual es descriu la configuració del proveïdor IPA " +"per a <citerefentry><refentrytitle>sssd</refentrytitle> <manvolnum>8</" +"manvolnum></citerefentry>. Per una referència detallada sintaxi, aneu a la " +"secció de <quote>FORMAT DE FITXER</quote> de la pàgina del manual " +"<citerefentry>d'<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</" +"manvolnum></citerefentry>." + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +#, fuzzy +#| msgid "" +#| "These options can be used to configure the sudo service. The detailed " +#| "instructions for configuration of <citerefentry> <refentrytitle>sudo</" +#| "refentrytitle> <manvolnum>8</manvolnum> </citerefentry> to work with " +#| "<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +#| "manvolnum> </citerefentry> are in the manual page <citerefentry> " +#| "<refentrytitle>sssd-sudo</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry>." +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" +"Es poden utilitzar aquestes opcions per configurar el servei del sudo. Les " +"instruccions detallades per la configuració del <citerefentry> " +"<refentrytitle>sudo</refentrytitle> <manvolnum>8</manvolnum> </citerefentry> " +"perquè funcioni amb <citerefentry> <refentrytitle>sssd</refentrytitle> " +"<manvolnum>8</manvolnum> </citerefentry> estan en la pàgina del manual " +"<citerefentry> <refentrytitle>sssd-sudo</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +#, fuzzy +#| msgid "" +#| "Refer to the section <quote>DOMAIN SECTIONS</quote> of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page for details on the configuration of an SSSD " +#| "domain. <placeholder type=\"variablelist\" id=\"0\"/>" +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" +"Per a més informació sobre la configuració d'un domini SSSD, consulteu la " +"secció <quote>SECCIONS DELS DOMINIS</quote> de la pàgina del manual " +"<citerefentry> <refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>. <placeholder type=\"variablelist\" id=\"0\"/>" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +#, fuzzy +#| msgid "" +#| "The following example assumes that SSSD is correctly configured and LDAP " +#| "is set to one of the domains in the <replaceable>[domains]</replaceable> " +#| "section." +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" +"L'exemple següent presuposa que l'SSSD està correctament configurat i l'LDAP " +"està definit com a un dels dominis a la secció <replaceable>[domains]</" +"replaceable>." + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 #, fuzzy #| msgid "sssd-simple" @@ -12922,6 +13194,19 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +#, fuzzy +#| msgid "" +#| "<productname>SSSD</productname> <orgname>The SSSD upstream - http://" +#| "fedorahosted.org/sssd</orgname>" +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" +"<productname>SSSD</productname> <orgname>La línia de desenvolupament " +"principal de l'SSSD - http://fedorahosted.org/sssd</orgname>" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -13589,8 +13874,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -13786,28 +14071,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -13819,13 +14114,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -13833,7 +14123,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/po/cs.po sssd-1.15.2/src/man/po/cs.po --- sssd-1.15.0/src/man/po/cs.po 2017-01-25 15:44:05.899440194 +0000 +++ sssd-1.15.2/src/man/po/cs.po 2017-03-15 16:58:45.321938042 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-14 11:52-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: Czech (http://www.transifex.com/projects/p/sssd/language/" @@ -30,7 +30,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "Manuálové stránky SSSD" @@ -40,7 +40,7 @@ msgstr "" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -63,7 +63,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -71,7 +71,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "POPIS" @@ -83,7 +83,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -128,14 +128,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "" @@ -286,10 +286,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "" @@ -306,11 +307,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "" @@ -337,7 +339,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "" @@ -353,7 +355,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "" @@ -401,19 +403,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "" @@ -433,7 +435,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "" @@ -453,12 +455,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -466,39 +468,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -622,7 +624,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -768,6 +770,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -780,12 +794,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -794,22 +808,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -819,17 +833,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -837,18 +851,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -856,24 +870,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -881,12 +895,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -898,46 +912,58 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -945,7 +971,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -955,7 +981,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -964,17 +990,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -982,34 +1008,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 msgid "local_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1018,7 +1044,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1027,41 +1053,41 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1069,23 +1095,23 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1093,47 +1119,47 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1141,105 +1167,105 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1250,72 +1276,96 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +msgid "pwfield (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1323,59 +1373,59 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 msgid "pam_response_filter (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1384,61 +1434,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder type=" "\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1446,7 +1496,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1455,17 +1505,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1473,26 +1523,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1502,74 +1552,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1577,19 +1627,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1597,12 +1647,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 msgid "pam_cert_auth (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1610,46 +1660,46 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 msgid "pam_cert_db_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 msgid "p11_child_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1660,34 +1710,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1695,68 +1745,68 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 msgid "ca_db (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 msgid "Default: /etc/pki/nssdb" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1768,7 +1818,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1779,24 +1829,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1804,12 +1854,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1818,36 +1868,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 msgid "pac_lifetime (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -1856,46 +1906,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1907,14 +1957,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1923,39 +1973,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -1964,19 +2014,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -1987,151 +2037,151 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2139,24 +2189,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2165,17 +2215,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2184,33 +2234,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2218,8 +2268,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2228,8 +2278,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2237,19 +2287,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2258,7 +2308,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2266,22 +2316,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2293,7 +2343,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2301,19 +2351,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2321,7 +2371,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2329,30 +2379,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2360,19 +2410,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2381,7 +2431,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum></" @@ -2389,29 +2439,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2419,7 +2469,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2427,35 +2477,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2463,32 +2513,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2499,12 +2549,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2512,7 +2562,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2520,31 +2570,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2552,7 +2602,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2561,23 +2611,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2585,7 +2635,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2593,7 +2643,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2601,24 +2651,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2626,12 +2676,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2641,7 +2691,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2650,29 +2700,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2680,7 +2730,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2688,66 +2738,66 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2755,70 +2805,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2826,7 +2876,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2834,17 +2884,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2852,34 +2902,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2887,32 +2937,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2922,34 +2972,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 msgid "cached_auth_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -2957,12 +3007,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -2970,7 +3020,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -2978,29 +3028,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3008,12 +3058,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3022,12 +3072,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 msgid "proxy_max_children (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3035,19 +3085,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3055,73 +3105,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3129,17 +3179,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3148,17 +3198,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3166,17 +3216,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3184,19 +3234,81 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +msgid "TRUSTED DOMAIN SECTION" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +msgid "ldap_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +msgid "ldap_user_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +msgid "ldap_group_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +msgid "ldap_netgroup_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +msgid "ldap_service_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3226,7 +3338,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3273,7 +3385,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "" @@ -4083,7 +4196,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "" @@ -5081,7 +5194,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "" @@ -6122,8 +6235,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" @@ -6157,7 +6270,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "" @@ -6170,27 +6283,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" -"<productname>SSSD</productname> <orgname>Vývojáři SSSD - http://fedorahosted." -"org/sssd</orgname>" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6200,11 +6304,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6212,34 +6317,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6247,31 +6352,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6279,36 +6384,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6316,7 +6421,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6326,19 +6431,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 msgid "<option>allow_missing_name</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6346,7 +6451,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6356,25 +6461,42 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +#, fuzzy +#| msgid "<option>-h</option>,<option>--help</option>" +msgid "<option>prompt_always</option>" +msgstr "<option>-h</option>,<option>--help</option>" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -6382,7 +6504,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -6394,7 +6516,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -6799,17 +6921,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +msgid "dyndns_auth (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +msgid "Default: GSS-TSIG" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6821,12 +6961,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6834,216 +6974,216 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 msgid "dyndns_server (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7051,17 +7191,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7069,190 +7209,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7262,19 +7402,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7282,7 +7422,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7294,7 +7434,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -7302,7 +7442,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8243,7 +8383,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8251,7 +8391,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8266,7 +8406,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8275,7 +8415,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8283,7 +8423,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8293,7 +8433,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9426,7 +9566,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -9436,12 +9576,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -11009,6 +11149,64 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +msgid "sssd-files" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 msgid "sssd-secrets" msgstr "" @@ -11672,6 +11870,19 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +#, fuzzy +#| msgid "" +#| "<productname>SSSD</productname> <orgname>The SSSD upstream - http://" +#| "fedorahosted.org/sssd</orgname>" +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" +"<productname>SSSD</productname> <orgname>Vývojáři SSSD - http://fedorahosted." +"org/sssd</orgname>" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12282,8 +12493,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12429,28 +12640,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12462,13 +12683,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12476,7 +12692,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/po/de.po sssd-1.15.2/src/man/po/de.po --- sssd-1.15.0/src/man/po/de.po 2017-01-25 15:44:05.904440214 +0000 +++ sssd-1.15.2/src/man/po/de.po 2017-03-15 16:58:45.326938062 +0000 @@ -10,7 +10,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-14 11:53-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: German (http://www.transifex.com/projects/p/sssd/language/" @@ -32,7 +32,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "SSSD-Handbuchseiten" @@ -42,7 +42,7 @@ msgstr "sss_groupmod" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -68,7 +68,7 @@ "arg>" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -76,7 +76,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "BESCHREIBUNG" @@ -90,7 +90,7 @@ "Befehlszeile angegebenen Änderungen widerzuspiegeln." #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -145,14 +145,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "Dateiformate und Konventionen" @@ -319,10 +319,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "Voreinstellung: »true«" @@ -339,11 +340,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "Voreinstellung: »false«" @@ -373,7 +375,7 @@ "Anfragen zu beantworten." #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "Voreinstellung: 10" @@ -389,7 +391,7 @@ msgstr "Der Abschnitt [sssd]" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "Abschnittsparameter" @@ -443,12 +445,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "reconnection_retries (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" @@ -458,7 +460,7 @@ "startet." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "Voreinstellung: 3" @@ -478,7 +480,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "re_expression (Zeichenkette)" @@ -505,12 +507,12 @@ "unter DOMAIN-ABSCHNITTE." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "full_name_format (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -522,32 +524,32 @@ "zusammengestellt wird." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "%1$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "Benutzername" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "%2$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "Domain-Name, wie er durch die SSSD-Konfigurationsdatei angegeben wird" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "%3$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." @@ -556,7 +558,7 @@ "direkt konfiguriert als auch über IPA-Trust" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -710,7 +712,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -868,6 +870,20 @@ msgid "Default: false (netlink changes are detected)" msgstr "Voreinstellung: False (deaktiviert)" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +#, fuzzy +#| msgid "ad_enable_dns_sites (boolean)" +msgid "enable_files_domain (boolean)" +msgstr "ad_enable_dns_sites (Boolesch)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -886,12 +902,12 @@ "verwendet. <placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "DIENSTABSCHNITTE" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -904,22 +920,22 @@ "Abschnitt zum Beispiel <quote>[nss]</quote>." #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "Allgemeine Optionen zum Konfigurieren von Diensten" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "Diese Optionen können zur Konfiguration jedes Dienstes benutzt werden." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "fd_limit" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -935,17 +951,17 @@ "Begrenzung in der »limit.conf« sein." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "Voreinstellung: 8192 (oder die »harte« Begrenzung der »limit.conf«)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -957,18 +973,18 @@ "des Systems blockiert werden." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "Voreinstellung: 60" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "offline_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -976,24 +992,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -1001,14 +1017,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 #, fuzzy #| msgid "client_idle_timeout" msgid "responder_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -1020,18 +1036,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "Voreinstellung: 300" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "NSS-Konfigurationsoptionen" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" @@ -1039,12 +1067,12 @@ "benutzt werden" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "enum_cache_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" @@ -1053,17 +1081,17 @@ "über alle Nutzer) zwischenspeichern?" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "Voreinstellung: 120" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "entry_cache_nowait_percentage (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -1075,7 +1103,7 @@ "werden." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -1092,7 +1120,7 @@ "Zwischenspeicheraktualisierung zu warten." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -1105,17 +1133,17 @@ "Sekunden senken. (0 schaltet diese Funktionalität aus.)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "Voreinstellung: 50" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "entry_negative_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -1127,19 +1155,19 @@ "Backend erneut gefragt wird)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "Voreinstellung: 15" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 #, fuzzy #| msgid "autofs_negative_timeout (integer)" msgid "local_negative_timeout (integer)" msgstr "autofs_negative_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 #, fuzzy #| msgid "" #| "Specifies for how many seconds nss_sss should cache negative cache hits " @@ -1155,17 +1183,17 @@ "Backend erneut gefragt wird)." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "Voreinstellung: 0" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "filter_users, filter_groups (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 #, fuzzy #| msgid "" #| "Exclude certain users from being fetched from the sss NSS database. This " @@ -1184,7 +1212,7 @@ "von einer bestimmten Domain herauszufiltern." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1193,17 +1221,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "Voreinstellung: root" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "filter_users_in_groups (Boolesch)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" @@ -1211,12 +1239,12 @@ "setzen Sie diese Option auf »false«." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "fallback_homedir (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." @@ -1225,7 +1253,7 @@ "es nicht explizit durch den Datenanbieter der Domain angegeben wurde." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" @@ -1233,7 +1261,7 @@ "»override_homedir«." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1243,25 +1271,25 @@ " " #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "Beispiel: <placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" "Voreinstellung: nicht gesetzt (kein Ersetzen nicht gesetzter Home-" "Verzeichnisse)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "override_shell (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1272,19 +1300,19 @@ "entweder im Abschnitt [nss] oder für jede Domain gesetzt werden." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" "Voreinstellung: nicht gesetzt (SSSD wird den von LDAP erhaltenen Wert " "benutzen)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "allowed_shells (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" @@ -1292,12 +1320,12 @@ "Reihenfolge der Auswertung ist:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "1. Falls die Shell in »/etc/shells« vorhanden ist, wird sie benutzt." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." @@ -1306,7 +1334,7 @@ "shells« steht, wird der Wert des Parameters »shell_fallback« verwendet." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." @@ -1315,12 +1343,12 @@ "steht, wird eine Nicht-Login-Shell benutzt." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1328,13 +1356,13 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" "Eine leere Zeichenkette als Shell wird, so wie sie ist, an Libc übergeben." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." @@ -1343,28 +1371,28 @@ "Fall einer neu installierten Shell ein Neustart von SSSD nötig ist." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" "Voreinstellung: nicht gesetzt. Die Benutzer-Shell wird automatisch verwendet." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "vetoed_shells (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "ersetzt jedwede Instanz dieser Shells durch die aus »shell_fallback«." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "shell_fallback (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" @@ -1372,17 +1400,17 @@ "auf dem Rechner installiert ist." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "Voreinstellung: /bin/sh" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "default_shell" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." @@ -1392,7 +1420,7 @@ "jede Domain gesetzt werden." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" @@ -1402,12 +1430,12 @@ "Vernünftiges, üblicherweise /bin/sh, ersetzt.)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "get_domains_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." @@ -1416,12 +1444,12 @@ "gültig erachtet wird." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "memcache_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 #, fuzzy #| msgid "" #| "Specifies time in seconds for which records in the in-memory cache will " @@ -1434,7 +1462,7 @@ "Zwischenspeicher als gültig erachtet werden." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 #, fuzzy #| msgid "" #| "If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", client " @@ -1448,12 +1476,12 @@ "nicht." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "user_attributes (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1464,24 +1492,50 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +#, fuzzy +#| msgid "skel_dir (string)" +msgid "pwfield (string)" +msgstr "skel_dir (Zeichenkette)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "Diese Option kann auch pro Domain gesetzt werden." + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "PAM-Konfigurationsoptionen" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." @@ -1490,12 +1544,12 @@ "Authentication Module« (PAM) einzurichten." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "offline_credentials_expiration (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." @@ -1505,17 +1559,17 @@ "erfolgreichen Anmeldung)?" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "Voreinstellung: 0 (unbegrenzt)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "offline_failed_login_attempts (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." @@ -1524,12 +1578,12 @@ "Authentifizierungsanbieter offline ist?" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "offline_failed_login_delay (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." @@ -1539,7 +1593,7 @@ "Anmeldeversuch möglich ist." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1551,17 +1605,17 @@ "Authentifizierung reaktivieren." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "Voreinstellung: 5" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "pam_verbosity (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." @@ -1570,45 +1624,45 @@ "angezeigt werden. Je höher die Zahl, desto mehr Nachrichten werden angezeigt." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "Derzeit unterstützt SSSD folgende Werte:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "<emphasis>0</emphasis>: keine Nachricht anzeigen" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "<emphasis>1</emphasis>: nur wichtige Nachrichten anzeigen" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "<emphasis>2</emphasis>: nur informative Nachrichten anzeigen" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" "<emphasis>3</emphasis>: alle Nachrichten und Debug-Informationen anzeigen" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "Voreinstellung: 1" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 #, fuzzy #| msgid "pam_verbosity (integer)" msgid "pam_response_filter (integer)" msgstr "pam_verbosity (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1617,44 +1671,44 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 #, fuzzy #| msgid "" #| "The following expansions are supported: <placeholder type=\"variablelist" @@ -1667,17 +1721,17 @@ "\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "pam_id_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1689,7 +1743,7 @@ "den neusten Informationen erfolgt." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1703,17 +1757,17 @@ "viele Abfragen der Identitätsanbieter zu vermeiden." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "pam_pwd_expiration_warning (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "zeigt N Tage vor Ablauf des Passworts eine Warnung an." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1724,7 +1778,7 @@ "SSSD keine Warnung anzeigen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." @@ -1734,7 +1788,7 @@ "automatisch angezeigt." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." @@ -1743,12 +1797,12 @@ "emphasis> für eine bestimmte Domain außer Kraft gesetzt werden." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 #, fuzzy #| msgid "" #| "Specifies the comma-separated list of UID values or user names that are " @@ -1766,74 +1820,74 @@ "Benutzernamen werden beim Start in Benutzer-IDs aufgelöst." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "Voreinstellung: none" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1841,21 +1895,21 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 #, fuzzy #| msgid "ldap_ns_account_lock (string)" msgid "pam_account_locked_message (string)" msgstr "ldap_ns_account_lock (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1863,14 +1917,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 #, fuzzy #| msgid "enumerate (bool)" msgid "pam_cert_auth (bool)" msgstr "enumerate (Boolesch)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1878,50 +1932,50 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "Voreinstellung: False" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 #, fuzzy #| msgid "ipa_hbac_search_base (string)" msgid "pam_cert_db_path (string)" msgstr "ipa_hbac_search_base (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "p11_child_timeout (integer)" msgstr "pam_id_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "Sudo-Konfigurationsoptionen" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1939,12 +1993,12 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "sudo_timed (Boolesch)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." @@ -1954,23 +2008,23 @@ "nicht." #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "AUTOFS-Konfigurationsoptionen" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" "Diese Optionen können zum Konfigurieren des Dienstes »autofs« benutzt werden." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "autofs_negative_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1981,23 +2035,23 @@ "nicht existierende), bevor das Backend erneut befragt wird." #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "SSH-Konfigurationsoptionen" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" "Diese Optionen können zum Konfigurieren des SSH-Dienstes benutzt werden." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "ssh_hash_known_hosts (Boolesch)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." @@ -2006,12 +2060,12 @@ "»known_hosts« zusammengemischt werden oder nicht." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "ssh_known_hosts_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." @@ -2020,38 +2074,38 @@ "»known_hosts« behalten wird, bevor seine Rechnerschlüssel abgefragt werden." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "Voreinstellung: 180" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 #, fuzzy #| msgid "mail_dir (string)" msgid "ca_db (string)" msgstr "mail_dir (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 #, fuzzy #| msgid "Default: /etc/krb5.keytab" msgid "Default: /etc/pki/nssdb" msgstr "Voreinstellung: /etc/krb5.keytab" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "PAC-Responder-Konfigurationsoptionen" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -2070,7 +2124,7 @@ "ausgewertet wurde, werden einige der folgenden Transaktionen durchgeführt:" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -2088,7 +2142,7 @@ "werden." #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." @@ -2097,18 +2151,18 @@ "diesen Gruppen hinzugefügt." #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" "Diese Optionen können zur Konfiguration des PAC-Responders verwendet werden." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "allowed_uids (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -2119,14 +2173,14 @@ "beim Starten zu UIDs aufgelöst." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" "Voreinstellung: 0 (Nur dem Benutzer Root ist der Zugriff auf den PAC-" "Responder gestattet.)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -2139,31 +2193,31 @@ "der Liste der erlaubten UIDs auch die 0 hinzufügen." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "pac_lifetime (integer)" msgstr "pam_id_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "DOMAIN-ABSCHNITTE" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "min_id,max_id (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." @@ -2172,7 +2226,7 @@ "enthält, der jenseits dieser Beschränkungen liegt, wird er ignoriert." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -2185,7 +2239,7 @@ "werden jene, die im Bereich liegen, wie erwartet gemeldet." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." @@ -2194,17 +2248,17 @@ "den Zwischenspeicher und nicht nur ihre Rückgabe über Name oder ID." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "Voreinstellung: 1 für »min_id«, 0 (keine Beschränkung) für »max_id«" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "enumerate (Boolesch)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" @@ -2213,22 +2267,22 @@ "der folgenden Werte haben:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "TRUE = Benutzer und Gruppen werden aufgezählt." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "FALSE = keine Aufzählungen für diese Domain" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "Voreinstellung: FALSE" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -2248,7 +2302,7 @@ "die Mitgliedschaften neu berechnet werden müssen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." @@ -2258,7 +2312,7 @@ "Ergebnisse zurück." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -2273,7 +2327,7 @@ "benutzten »id_provider«." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." @@ -2282,32 +2336,32 @@ "insbesondere in großen Umgebungen, nicht empfohlen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "subdomain_enumerate (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "all" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "Alle entdeckten vertrauenswürdigen Domains werden aufgezählt." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "none" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "Keine der entdeckten vertrauenswürdigen Domains wird aufgezählt." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -2321,12 +2375,12 @@ "Domains aktivieren." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "entry_cache_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" @@ -2335,7 +2389,7 @@ "soll, bevor das Backend erneut abgefragt wird." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -2353,17 +2407,17 @@ "wurden." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "Voreinstellung: 5400" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "entry_cache_user_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" @@ -2372,19 +2426,19 @@ "betrachten soll, bevor das Backend erneut abgefragt wird." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "Voreinstellung: entry_cache_timeout" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "entry_cache_group_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" @@ -2393,12 +2447,12 @@ "betrachten soll, bevor das Backend erneut abgefragt wird." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "entry_cache_netgroup_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" @@ -2407,12 +2461,12 @@ "betrachten soll, bevor das Backend erneut abgefragt wird." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "entry_cache_service_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" @@ -2421,12 +2475,12 @@ "betrachten soll, bevor das Backend erneut abgefragt wird." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "entry_cache_sudo_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" @@ -2435,12 +2489,12 @@ "bevor das Backend erneut abgefragt wird." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "entry_cache_autofs_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" @@ -2450,24 +2504,24 @@ "wird." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "refresh_expired_interval (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." @@ -2477,49 +2531,49 @@ "abgelaufenen oder beinahe abgelaufenen Daten aktualisiert werden." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" "Sie können in Betracht ziehen, diesen Wert auf 3/4 * entry_cache_timeout zu " "setzen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "Voreinstellung: 0 (deaktiviert)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "cache_credentials (Boolesch)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" "bestimmt, ob auch Benutzerberechtigungen im lokalen LDB-Zwischenspeicher " "zwischengespeichert werden." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" "Benutzerberechtigungen werden in einem SHA512-Hash, nicht im Klartext " "gespeichert." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2527,24 +2581,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "account_cache_expiration (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2557,17 +2611,17 @@ "Parameters muss größer oder gleich »offline_credentials_expiration« sein." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "Voreinstellung: 0 (unbegrenzt)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "pwd_expiration_warning (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2580,17 +2634,17 @@ "Authentifizierungsanbieter konfiguriert werden." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "Voreinstellung: 7 (Kerberos), 0 (LDAP)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "id_provider (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" @@ -2598,17 +2652,17 @@ "werden unterstützt:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "»proxy«: unterstützt einen veralteten NSS-Anbieter." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "»local«: SSSDs interner Anbieter für lokale Benutzer" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2619,8 +2673,8 @@ "<manvolnum>5</manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2633,8 +2687,8 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2646,12 +2700,12 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "use_fully_qualified_names (Boolesch)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." @@ -2661,7 +2715,7 @@ "Benutzers, der an NSS gemeldet wird." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2675,7 +2729,7 @@ "test@LOCAL</command> würde ihn hingegen finden." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2687,22 +2741,22 @@ "nicht voll qualifizierter Name angefragt wird." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "ignore_group_members (Boolesch)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "gibt beim Nachschlagen der Gruppe nicht die Gruppenmitglieder zurück." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2714,7 +2768,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2722,12 +2776,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "auth_provider (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" @@ -2736,7 +2790,7 @@ "Authentifizierungsanbieter werden unterstützt:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2747,7 +2801,7 @@ "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2759,19 +2813,19 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" "»proxy« zur Weitergabe der Authentifizierung an irgendein anderes PAM-Ziel" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "»none« deaktiviert explizit die Authentifizierung." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." @@ -2780,12 +2834,12 @@ "mit Authentifizierungsanfragen umgehen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "access_provider (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2796,7 +2850,7 @@ "Backends enthalten sind). Interne Spezialanbieter sind:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." @@ -2805,12 +2859,12 @@ "für eine lokale Domain." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "»deny« verweigert dem Zugriff immer." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2823,7 +2877,7 @@ "simple</refentrytitle> <manvolnum>5</manvolnum></citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 #, fuzzy #| msgid "" #| "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " @@ -2840,7 +2894,7 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 #, fuzzy #| msgid "" #| "<quote>proxy</quote> for relaying password changes to some other PAM " @@ -2850,17 +2904,17 @@ "»proxy« zur Weitergabe der Passwortänderung an irgendein anderes PAM-Ziel" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "Voreinstellung: »permit«" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "chpass_provider (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" @@ -2869,7 +2923,7 @@ "Folgende Anbieter von Passwortänderungen werden unterstützt:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2881,7 +2935,7 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2893,19 +2947,19 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" "»proxy« zur Weitergabe der Passwortänderung an irgendein anderes PAM-Ziel" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "»none« verbietet explizit Passwortänderungen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." @@ -2914,19 +2968,19 @@ "kann mit Passwortänderungsanfragen umgehen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "sudo_provider (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" "der für diese Domain benutzte Sudo-Anbieter. Folgende Sudo-Anbieter werden " "unterstützt:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2937,7 +2991,7 @@ "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." @@ -2946,7 +3000,7 @@ "Vorgabeeinstellungen für IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." @@ -2955,19 +3009,19 @@ "Vorgabeeinstellungen für AD." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "»none« deaktiviert explizit Sudo." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" "Voreinstellung: Falls gesetzt, wird der Wert von »id_provider« benutzt." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2984,12 +3038,12 @@ "<manvolnum>5</manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "selinux_provider (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -3000,7 +3054,7 @@ "Zugriffsanbieter beendet hat. Folgende SELinux-Anbieter werden unterstützt:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -3012,12 +3066,12 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "»none« verbietet explizit das Abholen von SELinux-Einstellungen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." @@ -3026,12 +3080,12 @@ "kann SELinux-Ladeanfragen handhaben." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "subdomains_provider (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" @@ -3041,7 +3095,7 @@ "werden unterstützt:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -3053,7 +3107,7 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -3062,17 +3116,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "»none« deaktiviert explizit das Abholen von Subdomains." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "autofs_provider (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" @@ -3080,7 +3134,7 @@ "»autofs« werden unterstützt:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -3092,7 +3146,7 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -3104,7 +3158,7 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 #, fuzzy #| msgid "" #| "<quote>ipa</quote> to load maps stored in an IPA server. See " @@ -3121,17 +3175,17 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "»none« deaktiviert explizit »autofs«." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "hostid_provider (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" @@ -3140,7 +3194,7 @@ "wird. Folgende Anbieter von »hostid« werden unterstützt:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -3152,12 +3206,12 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "»none« deaktiviert explizit »hostid«." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -3172,7 +3226,7 @@ "(NetBIOS-) Namen der Domain entsprechen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -3184,22 +3238,22 @@ "P<Name>[^@\\\\]+)$))« " #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "Benutzername" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "Benutzername@Domain.Name" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "Domain\\Benutzername" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." @@ -3209,7 +3263,7 @@ "Windows-Domains zu ermöglichen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -3219,7 +3273,7 @@ "bedeutet »der Name ist alles bis zum »@«-Zeichen, die Domain alles danach«" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -3231,7 +3285,7 @@ "eindeutig benannte Musterteile unterstützen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." @@ -3240,17 +3294,17 @@ "Beschriftungsmusterteile nur die Python-Syntax (?P<Name>)." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "Voreinstellung: »%1$s@%2$s«" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "lookup_family_order (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." @@ -3258,46 +3312,46 @@ "ermöglicht es, die bei DNS-Abfragen zu bevorzugende Adressfamilie zu wählen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "unterstützte Werte:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" "ipv4_first: versucht die IPv4- und, falls dies fehlschlägt, die IPv6-Adresse " "nachzuschlagen" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "ipv4_only: versucht, nur Rechnernamen zu IPv4-Adressen aufzulösen" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" "ipv6_first: versucht die IPv6- und, falls dies fehlschlägt, die IPv4-Adresse " "nachzuschlagen" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "ipv6_only: versucht, nur Rechnernamen zu IPv6-Adressen aufzulösen" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "Voreinstellung: ipv4_first" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "dns_resolver_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -3309,18 +3363,18 @@ "Offline-Modus arbeiten." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "Voreinstellung: 6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "dns_discovery_domain (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." @@ -3329,52 +3383,52 @@ "DNS-Dienstabfrage an." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "Voreinstellung: Der Domain-Teil des Rechnernamens wird benutzt." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "override_gid (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "überschreibt die Haupt-GID mit der angegebenen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -3382,7 +3436,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -3390,17 +3444,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -3408,34 +3462,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "ldap_use_tokengroups" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -3443,34 +3497,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 #, fuzzy #| msgid "This option is not available in IPA provider." msgid "Note: This option only works with the IPA and AD provider." msgstr "Diese Option ist für IPA-Anbieter nicht verfügbar." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "subdomain_homedir (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "%F" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "flacher (NetBIOS-) Name einer Subdomain" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -3485,7 +3539,7 @@ "verwendet werden. <placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" @@ -3493,17 +3547,17 @@ "überschrieben werden." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "Voreinstellung: <filename>/home/%d/%u</filename>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "realmd_tags (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" @@ -3511,14 +3565,14 @@ "Kennzeichnungen" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 #, fuzzy #| msgid "memcache_timeout (int)" msgid "cached_auth_timeout (int)" msgstr "memcache_timeout (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -3526,12 +3580,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -3539,7 +3593,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -3551,17 +3605,17 @@ "\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "proxy_pam_target (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "das Proxy-Ziel, an das PAM weiterleitet" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." @@ -3571,12 +3625,12 @@ "hinzufügen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "proxy_lib_name (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3587,12 +3641,12 @@ "$(libName)_$(function)«, zum Beispiel »_nss_files_getpwent«." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "proxy_fast_alias (Boolesch)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3606,14 +3660,14 @@ "veranlassen, die ID im Zwischenspeicher nachzuschlagen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 #, fuzzy #| msgid "min_id,max_id (integer)" msgid "proxy_max_children (integer)" msgstr "min_id,max_id (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3621,7 +3675,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" @@ -3630,12 +3684,12 @@ "\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "Der Abschnitt lokale Domain" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3646,29 +3700,29 @@ "<replaceable>ID_Anbieter=lokal</replaceable> benutzt." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "default_shell (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" "die Standard-Shell für Anwender, die mit den SSSD-Werkzeugen für den " "Benutzerbereich erstellt wurde." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "Voreinstellung: <filename>/bin/bash</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "base_directory (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." @@ -3677,17 +3731,17 @@ "replaceable> und benutzen dies als Home-Verzeichnis." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "Voreinstellung: <filename>/home</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "create_homedir (Boolesch)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." @@ -3696,17 +3750,17 @@ "werden soll; kann auf der Befehlszeile überschrieben werden" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "Voreinstellung: TRUE" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "remove_homedir (Boolesch)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." @@ -3715,12 +3769,12 @@ "entfernt werden soll; kann auf der Befehlszeile überschrieben werden" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "homedir_umask (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3731,17 +3785,17 @@ "Standardzugriffsrechte für ein neu erstelltes Home-Verzeichnis anzugeben." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "Voreinstellung: 077" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "skel_dir (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3754,17 +3808,17 @@ "<manvolnum>8</manvolnum> </citerefentry> erstellt wird" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "Voreinstellung: <filename>/etc/skel</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "mail_dir (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3775,17 +3829,17 @@ "wurde. Ist dies nicht angegeben wird ein Standardwert verwendet." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "Voreinstellung: <filename>/var/mail</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "userdel_cmd (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3797,19 +3851,95 @@ "berücksichtigt." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "Voreinstellung: keine, es wird kein Befehl ausgeführt" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +#, fuzzy +#| msgid "DOMAIN SECTIONS" +msgid "TRUSTED DOMAIN SECTION" +msgstr "DOMAIN-ABSCHNITTE" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +#, fuzzy +#| msgid "ldap_search_base (string)" +msgid "ldap_search_base," +msgstr "ldap_search_base (Zeichenkette)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +#, fuzzy +#| msgid "ldap_user_search_base (string)" +msgid "ldap_user_search_base," +msgstr "ldap_user_search_base (Zeichenkette)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +#, fuzzy +#| msgid "ldap_group_search_base (string)" +msgid "ldap_group_search_base," +msgstr "ldap_group_search_base (Zeichenkette)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +#, fuzzy +#| msgid "ldap_netgroup_search_base (string)" +msgid "ldap_netgroup_search_base," +msgstr "ldap_netgroup_search_base (Zeichenkette)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +#, fuzzy +#| msgid "ldap_service_search_base (string)" +msgid "ldap_service_search_base," +msgstr "ldap_service_search_base (Zeichenkette)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +#, fuzzy +#| msgid "ad_server, ad_backup_server (string)" +msgid "ad_backup_server," +msgstr "ad_server, ad_backup_server (Zeichenkette)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "BEISPIEL" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3863,7 +3993,7 @@ "enumerate = False\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3928,7 +4058,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "KONFIGURATIONSOPTIONEN" @@ -4872,7 +5003,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "Voreinstellung: cn" @@ -6089,7 +6220,7 @@ "migrieren." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "krb5_realm (Zeichenkette)" @@ -7312,8 +7443,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "<placeholder type=\"programlisting\" id=\"0\"/>" @@ -7347,7 +7478,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "ANMERKUNGEN" @@ -7364,27 +7495,18 @@ "refentrytitle> <manvolnum>5</manvolnum> </citerefentry> der Distribution " "OpenLDAP 2.4." -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" -"<productname>SSSD</productname> <orgname>Die SSSD-Originalautoren – http://" -"fedorahosted.org/sssd</orgname>" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "pam_sss" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "PAM-Modul für SSSD" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -7394,11 +7516,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -7410,22 +7533,22 @@ "Fertigkeit LOG_AUTHPRIV protokolliert." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "<option>quiet</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "unterdrückt Protokollnachrichten für unbekannte Benutzer" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." @@ -7435,12 +7558,12 @@ "es nutzen können." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "<option>use_first_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -7452,12 +7575,12 @@ "ungeeignet ist, wird dem Benutzer der Zugriff verwehrt." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "<option>use_authtok</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." @@ -7467,12 +7590,12 @@ "bereitgestellt wird." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "<option>retry=N</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." @@ -7481,7 +7604,7 @@ "gefragt, falls die Authentifizierung fehlschlägt. Voreinstellung ist 0." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -7493,12 +7616,12 @@ "<option>PasswordAuthentication</option>." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "<option>ignore_unknown_user</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." @@ -7508,12 +7631,12 @@ "Framework dieses Modul ignoriert." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "<option>ignore_authinfo_unavail</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." @@ -7523,12 +7646,12 @@ "Framework dieses Modul ignoriert." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -7536,7 +7659,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -7546,21 +7669,21 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 #, fuzzy #| msgid "<option>forward_pass</option>" msgid "<option>allow_missing_name</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -7568,7 +7691,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -7578,13 +7701,30 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +#, fuzzy +#| msgid "<option>retry=N</option>" +msgid "<option>prompt_always</option>" +msgstr "<option>retry=N</option>" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "BEREITGESTELLTE MODULTYPEN" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." @@ -7594,12 +7734,12 @@ "bereitgestellt." #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "DATEIEN" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -7611,7 +7751,7 @@ "Anweisungen enthalten, wie ein Passwort zurückgesetzt wird." #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -7631,7 +7771,7 @@ "Leserechte haben dürfen." #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -8201,17 +8341,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +#, fuzzy +#| msgid "dyndns_iface (string)" +msgid "dyndns_auth (string)" +msgstr "dyndns_iface (Zeichenkette)" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "Voreinstellung: 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "ipa_enable_dns_sites (Boolesch)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "aktiviert DNS-Sites – standortbasierte Dienstsuche" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -8231,12 +8393,12 @@ "gefundenen als Sicherungsserver." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "dyndns_refresh_interval (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -8247,12 +8409,12 @@ "Diese Option ist optional und nur anwendbar, wenn »dyndns_update« »true« ist." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "dyndns_update_ptr (Boolesch)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." @@ -8262,7 +8424,7 @@ "»dyndns_update« »true« ist" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." @@ -8272,17 +8434,17 @@ "Weiterleitungsdatensätze ändern." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "Voreinstellung: False (deaktiviert)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "dyndns_force_tcp (Boolesch)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." @@ -8291,77 +8453,77 @@ "DNS-Server verwenden soll" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "Voreinstellung: False (lässt Nsupdate das Protokoll auswählen)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 #, fuzzy #| msgid "dyndns_iface (string)" msgid "dyndns_server (string)" msgstr "dyndns_iface (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 #, fuzzy #| msgid "Default: False (let nsupdate choose the protocol)" msgid "Default: None (let nsupdate choose the server)" msgstr "Voreinstellung: False (lässt Nsupdate das Protokoll auswählen)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "ipa_hbac_search_base (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" "optional, verwendet die angegebene Zeichenkette als Suchgrundlage für HBAC-" "bezogene Objekte" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "Voreinstellung: verwendet Basis-DN" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "ipa_host_search_base (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" "optional, verwendet die angegebene Zeichenkette als Suchgrundlage für " "Rechnerobjekte" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." @@ -8370,73 +8532,73 @@ "unter »ldap_search_base«." #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "Voreinstellung: der Wert von <emphasis>ldap_search_base</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "ipa_selinux_search_base (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" "optional, verwendet die angegebene Zeichenkette als Suchgrundlage für " "SELinux-Benutzerabbildungen" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "ipa_subdomains_search_base (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" "optional, verwendet die angegebene Zeichenkette als Suchgrundlage für " "vertrauenswürdige Domains" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "Voreinstellung: der Wert von <emphasis>cn=trusts,%basedn</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "ipa_master_domain_search_base (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" "optional, verwendet die angegebene Zeichenkette als Suchgrundlage für das " "Master-Domain-Objekt." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "Voreinstellung: der Wert von <emphasis>cn=ad,cn=etc,%basedn</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." @@ -8445,7 +8607,7 @@ "Wert von »ipa_domain«." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." @@ -8455,37 +8617,37 @@ "zu verwenden." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "ipa_hbac_refresh (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -8496,17 +8658,17 @@ "Zugriffssteuerungsanfragen in einer kurzen Zeitspanne ankommen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "Voreinstellung: 5 (Sekunden)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "ipa_hbac_selinux (Ganzzahl)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -8517,17 +8679,17 @@ "viele Benutzeranmeldeanfragen in einer kurzen Zeitspanne ankommen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "ipa_server_mode (Boolesch)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "Diese Option sollte nur vom IPA-Installer gesetzt werden." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." @@ -8537,173 +8699,173 @@ "durchgeführt werden sollte." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "ipa_automount_location (Zeichenkette)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "der Ort des Automounters, den dieser IPA-Client benutzen wird" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "Voreinstellung: der Ort namens »default«" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -8713,12 +8875,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "ANBIETER VON UNTER-DOMAINS" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." @@ -8727,7 +8889,7 @@ "ob er explizit oder implizit konfiguriert wurde." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -8738,7 +8900,7 @@ "und alle Subdomain-Anfragen werden, falls nötig, an den IPA-Server gesandt." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -8757,7 +8919,7 @@ "online gegangen ist, wird der Subdomain-Anbieter erneut aktiviert." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8769,7 +8931,7 @@ "Optionen von IPA." #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -9908,7 +10070,7 @@ msgstr "Voreinstellung: True" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -9920,7 +10082,7 @@ "Optionen von AD." #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -9944,7 +10106,7 @@ "ad_domain = example.com\n" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -9956,7 +10118,7 @@ "ldap_account_expire_policy = ad\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -9967,7 +10129,7 @@ "<placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -9977,7 +10139,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -11373,7 +11535,7 @@ msgstr "Wert von krb5_ccachedir" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "%P" @@ -11383,12 +11545,12 @@ msgstr "die Prozess-ID des SSSD-Clients" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "%%" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "ein buchstäbliches »%«" @@ -13286,6 +13448,115 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +#, fuzzy +#| msgid "sssd-simple" +msgid "sssd-files" +msgstr "sssd-simple" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +#, fuzzy +#| msgid "SSSD Kerberos provider" +msgid "SSSD files provider" +msgstr "SSSD Kerberos-Anbieter" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +#, fuzzy +#| msgid "" +#| "This manual page describes the configuration of the AD provider for " +#| "<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +#| "manvolnum> </citerefentry>. For a detailed syntax reference, refer to " +#| "the <quote>FILE FORMAT</quote> section of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page." +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" +"Diese Handbuchseite beschreibt die Konfiguration des AD-Anbieters für " +"<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> " +"</citerefentry>. Eine ausführliche Syntax-Referenz finden Sie im Abschnitt " +"»DATEIFORMAT« der Handbuchseite <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry>." + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +#, fuzzy +#| msgid "" +#| "These options can be used to configure the sudo service. The detailed " +#| "instructions for configuration of <citerefentry> <refentrytitle>sudo</" +#| "refentrytitle> <manvolnum>8</manvolnum> </citerefentry> to work with " +#| "<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +#| "manvolnum> </citerefentry> are in the manual page <citerefentry> " +#| "<refentrytitle>sssd-sudo</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry>." +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" +"Diese Optionen können zur Konfiguration des Sudo-Dienstes verwendet werden. " +"Detaillierte Informationen zur Konfiguration von <citerefentry> " +"<refentrytitle>sudo</refentrytitle> <manvolnum>8</manvolnum> </citerefentry> " +"zur Verwendung mit <citerefentry> <refentrytitle>sssd</refentrytitle> " +"<manvolnum>8</manvolnum> </citerefentry> finden Sie in der Handbuchseite zu " +"<citerefentry> <refentrytitle>sssd-sudo</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +#, fuzzy +#| msgid "" +#| "Refer to the section <quote>DOMAIN SECTIONS</quote> of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page for details on the configuration of an SSSD " +#| "domain. <placeholder type=\"variablelist\" id=\"0\"/>" +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" +"Einzelheiten über die Konfiguration einer SSSD-Domain finden Sie im " +"Abschnitt »DOMAIN-ABSCHNITTE« der Handbuchseite <citerefentry> " +"<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry>. <placeholder type=\"variablelist\" id=\"0\"/>" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +#, fuzzy +#| msgid "" +#| "The following example assumes that SSSD is correctly configured and LDAP " +#| "is set to one of the domains in the <replaceable>[domains]</replaceable> " +#| "section." +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" +"Das folgende Beispiel geht davon aus, dass SSSD korrekt konfiguriert ist und " +"LDAP auf eine der Domains im Abschnitt <replaceable>[domains]</replaceable> " +"gesetzt ist." + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 #, fuzzy #| msgid "sssd-simple" @@ -14039,6 +14310,19 @@ msgstr "" "Weitere Informationen über den Dienstsuchmechanismus finden Sie in RFC 2782." +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +#, fuzzy +#| msgid "" +#| "<productname>SSSD</productname> <orgname>The SSSD upstream - http://" +#| "fedorahosted.org/sssd</orgname>" +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" +"<productname>SSSD</productname> <orgname>Die SSSD-Originalautoren – http://" +"fedorahosted.org/sssd</orgname>" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -14846,9 +15130,13 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 +#, fuzzy +#| msgid "" +#| "<emphasis> This is an experimental feature, please use http://" +#| "fedorahosted.org/sssd to report any issues. </emphasis>" msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" "<emphasis> Dies ist eine experimentelle Funktionalität. Fehler können Sie " "auf http://fedorahosted.org/sssd melden.</emphasis>" @@ -15021,28 +15309,38 @@ msgid "fully qualified user name (user@domain)" msgstr "voll qualifizierter Benutzername (Benutzer@Domain)" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "%o" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "das Original-Home-Verzeichnis, das vom Identitätsanbieter geholt wurde" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "%H" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" "Der Wert der Konfigurationsoption <emphasis>homedir_substring</emphasis>." @@ -15059,13 +15357,8 @@ "werden die folgenden Sequenzen ersetzt: <placeholder type=\"variablelist\" " "id=\"0\"/>" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "Diese Option kann auch pro Domain gesetzt werden." - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -15075,7 +15368,7 @@ " " #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" "Voreinstellung: nicht gesetzt (SSSD wird den von LDAP geholten Wert benutzen)" diff -Nru sssd-1.15.0/src/man/po/es.po sssd-1.15.2/src/man/po/es.po --- sssd-1.15.0/src/man/po/es.po 2017-01-25 15:44:05.912440247 +0000 +++ sssd-1.15.2/src/man/po/es.po 2017-03-15 16:58:45.336938102 +0000 @@ -15,7 +15,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-14 11:54-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: Spanish (http://www.transifex.com/projects/p/sssd/language/" @@ -37,7 +37,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "Páginas de manual de SSSD" @@ -47,7 +47,7 @@ msgstr "sss_groupmod" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -73,7 +73,7 @@ "arg>" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -81,7 +81,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "DESCRIPCION" @@ -95,7 +95,7 @@ "indicados en la línea de comandos." #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -149,14 +149,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "Formatos de archivo y convenciones" @@ -324,10 +324,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "Predeterminado: true" @@ -344,11 +345,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "Predeterminado: false" @@ -377,7 +379,7 @@ "para asegurar que el proceso está vivo y capaz de responder peticiones." #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "Predeterminado: 10" @@ -393,7 +395,7 @@ msgstr "La sección [sssd]" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "Parámetros de sección" @@ -443,12 +445,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "reconnection_retries (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" @@ -457,7 +459,7 @@ "de datos del proveedor, o de reiniciarse antes de abandonar" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "Predeterminado: 3" @@ -477,7 +479,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "re_expression (cadena)" @@ -502,12 +504,12 @@ "DOMAIN SECTIONS para más información sobre estas expresiones regulares." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "full_name_format (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -515,39 +517,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -698,7 +700,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -852,6 +854,20 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +#, fuzzy +#| msgid "ldap_id_mapping (boolean)" +msgid "enable_files_domain (boolean)" +msgstr "ldap_id_mapping (booleano)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -870,12 +886,12 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "SECCIONES DE SERVICIOS" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -888,22 +904,22 @@ "<quote>[nss]</quote>" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "Opciones de configuración de servicios generales" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "Estas opciones pueden usarse para configurar cualquier servicio." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "fd_limit" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -918,17 +934,17 @@ "valor más bajo de este o de limite “hard” en limits.conf." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "Por defecto: 8192 (o limite “hard” en limits.conf)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -940,18 +956,18 @@ "sistema." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "Predeterminado: 60" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -959,24 +975,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -984,14 +1000,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 #, fuzzy #| msgid "client_idle_timeout" msgid "responder_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -1003,18 +1019,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "Predeterminado: 300" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "Opciones de configuración de NSS" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" @@ -1022,12 +1050,12 @@ "Switch (NSS)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "enum_cache_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" @@ -1036,17 +1064,17 @@ "sobre todos los usuarios)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "Predeterminado: 120" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "entry_cache_nowait_percentage (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -1057,7 +1085,7 @@ "valor de entry_cache_timeout para el dominio." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -1073,7 +1101,7 @@ "actualización del cache." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -1086,17 +1114,17 @@ "segundos. (0 deshabilita esta función)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "Predeterminado: 50" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "entry_negative_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -1107,19 +1135,19 @@ "entradas no existentes) antes de preguntar al punto final otra vez." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "Predeterminado: 15" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 #, fuzzy #| msgid "autofs_negative_timeout (integer)" msgid "local_negative_timeout (integer)" msgstr "autofs_negative_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 #, fuzzy #| msgid "" #| "Specifies for how many seconds nss_sss should cache negative cache hits " @@ -1134,17 +1162,17 @@ "entradas no existentes) antes de preguntar al punto final otra vez." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "Predeterminado: 0" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "filter_users, filter_groups (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 #, fuzzy #| msgid "" #| "Exclude certain users from being fetched from the sss NSS database. This " @@ -1163,7 +1191,7 @@ "filtrar sólo usuario de un dominio concreto." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1172,17 +1200,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "Predeterminado: root" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "filter_users_in_groups (bool)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" @@ -1190,12 +1218,12 @@ "opción a false." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "fallback_homedir (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." @@ -1204,7 +1232,7 @@ "especificado una explícitamente por el proveedor de datos del dominio." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" @@ -1212,7 +1240,7 @@ "override_homedir." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1222,24 +1250,24 @@ " " #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "ejemplo: <placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" "Por defecto: no fijado (sin sustitución para los directorios home no fijados)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "override_shell (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1247,17 +1275,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "Por defecto: no fijado (SSSD usará el valor recuperado desde LDAP)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "allowed_shells (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" @@ -1265,12 +1293,12 @@ "evaluación es:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "1. Si el shell está presente en <quote>/etc/shells</quote>, se usa." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." @@ -1279,7 +1307,7 @@ "shells</quote>, usa el valor del parámetro shell_fallback." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." @@ -1288,12 +1316,12 @@ "shells</quote>, se usará un shell de no acceso." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1301,12 +1329,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "Una cadena vacía para el shell se pasa como-es a libc." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." @@ -1316,27 +1344,27 @@ "una nueva shell." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "Por defecto: No fijado. La shell del usuario se usa automáticamente." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "vetoed_shells (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "Reemplaza cualquier instancia de estos shells con shell_fallback" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "shell_fallback (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" @@ -1344,24 +1372,24 @@ "máquina." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "Predeterminado: /bin/sh" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "default_shell" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" @@ -1371,12 +1399,12 @@ "normalmente /bin/sh)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "get_domains_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." @@ -1385,12 +1413,12 @@ "considerada válida." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "memcache_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 #, fuzzy #| msgid "" #| "Specifies time in seconds for which records in the in-memory cache will " @@ -1403,19 +1431,19 @@ "escondrijo en memoria serán válidos." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1426,24 +1454,50 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +#, fuzzy +#| msgid "skel_dir (string)" +msgid "pwfield (string)" +msgstr "skel_dir (cadena)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "Esta opción puede ser también fijada por dominio." + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "Opciones de configuración PAM" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." @@ -1452,12 +1506,12 @@ "Authentication Module (PAM)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "offline_credentials_expiration (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." @@ -1466,17 +1520,17 @@ "los accesos escondidos (en días desde el último login en línea con éxito)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "Predeterminado: 0 (Sin límite)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "offline_failed_login_attempts (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." @@ -1485,12 +1539,12 @@ "login fallados están permitidos." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "offline_failed_login_delay (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." @@ -1500,7 +1554,7 @@ "intento de login sea posible." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1511,17 +1565,17 @@ "éxito puede habilitar otra vez la autenticación fuera de línea." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "Predeterminado: 5" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "pam_verbosity (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." @@ -1530,46 +1584,46 @@ "autenticación. Cuanto mayor sea el número de mensajes más aparecen." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "Actualmente sssd soporta los siguientes valores:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "<emphasis>0</emphasis>: no mostrar ningún mensaje" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "<emphasis>1</emphasis>: mostrar sólo mensajes importantes" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "<emphasis>2</emphasis>: mostrar mensajes informativos" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" "<emphasis>3</emphasis>: mostrar todos los mensajes e información de " "depuración" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "Predeterminado: 1" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 #, fuzzy #| msgid "pam_verbosity (integer)" msgid "pam_response_filter (integer)" msgstr "pam_verbosity (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1578,44 +1632,44 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 #, fuzzy #| msgid "" #| "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" @@ -1628,17 +1682,17 @@ "\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "pam_id_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1650,7 +1704,7 @@ "información más actual." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1664,17 +1718,17 @@ "proveedor de identidad." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "pam_pwd_expiration_warning (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "Mostrar una advertencia N días antes que la contraseña caduque." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1685,7 +1739,7 @@ "información desaparece, sssd no podrá mostrar un aviso." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." @@ -1695,7 +1749,7 @@ "automáticamente." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." @@ -1704,12 +1758,12 @@ "<emphasis>pwd_expiration_warning</emphasis> para un dominio concreto." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 #, fuzzy #| msgid "" #| "Specifies the comma-separated list of UID values or user names that are " @@ -1726,74 +1780,74 @@ "usuario que tiene el acceso permitido al respondedor PAC." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "Predeterminado: none" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1801,21 +1855,21 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 #, fuzzy #| msgid "ldap_ns_account_lock (string)" msgid "pam_account_locked_message (string)" msgstr "ldap_ns_account_lock (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1823,14 +1877,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 #, fuzzy #| msgid "enumerate (bool)" msgid "pam_cert_auth (bool)" msgstr "enumerar (bool)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1838,50 +1892,50 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "Por defecto: False" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 #, fuzzy #| msgid "ipa_hbac_search_base (string)" msgid "pam_cert_db_path (string)" msgstr "ipa_hbac_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "p11_child_timeout (integer)" msgstr "pam_id_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "SUDO opciones de configuración" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1892,12 +1946,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "sudo_timed (booleano)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." @@ -1906,22 +1960,22 @@ "entradas de sudoers dependientes del tiempo." #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "Opciones de configuración AUTOFS" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "Estas opciones pueden ser usadas para configurar el servicio autofs." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "autofs_negative_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1932,22 +1986,22 @@ "existentes) antes de preguntar al punto final otra vez." #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "Opciones de configuración SSH" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "Estas opciones se pueden usar para configurar el servicio SSH." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "ssh_hash_known_hosts (booleano)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." @@ -1956,12 +2010,12 @@ "known_host. " #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "ssh_known_hosts_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." @@ -1970,38 +2024,38 @@ "después de que se hayan pedido sus claves de host." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "Por defecto: 180" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 #, fuzzy #| msgid "mail_dir (string)" msgid "ca_db (string)" msgstr "mail_dir (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 #, fuzzy #| msgid "Default: /etc/krb5.keytab" msgid "Default: /etc/pki/nssdb" msgstr "Predeterminado: /etc/krb5.keytab" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "Opciones de configuración del respondedor PAC" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -2020,7 +2074,7 @@ "siguientes operaciones:" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -2031,24 +2085,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "Estas opciones pueden ser usadas para configurar el respondedor PAC." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "allowed_uids (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -2058,14 +2112,14 @@ "usuario que tiene el acceso permitido al respondedor PAC." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" "Por defecto: 0 (sólo el usuario root tiene permitido el acceso al " "respondedor PAC)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -2078,31 +2132,31 @@ "lista de UIDs permitidas también." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "pac_lifetime (integer)" msgstr "pam_id_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "SECCIONES DE DOMINIO" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "min_id, max_id (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." @@ -2111,7 +2165,7 @@ "está fuera de estos límites, ésta es ignorada." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -2124,24 +2178,24 @@ "reportados como en espera." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "Predeterminado: 1 para min_id, 0 (sin límite) para max_id" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "enumerar (bool)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" @@ -2150,22 +2204,22 @@ "de los siguientes valores:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "TRUE = Usuarios y grupos son enumerados" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "FALSE = Sin enumeraciones para este dominio" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "Predeterminado: FALSE" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -2185,7 +2239,7 @@ "las afiliaciones deben ser recalculadas." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." @@ -2195,7 +2249,7 @@ "completen." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -2209,7 +2263,7 @@ "específico id_provider en uso." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." @@ -2218,32 +2272,32 @@ "especialmente en entornos grandes." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -2252,12 +2306,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "entry_cache_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" @@ -2266,7 +2320,7 @@ "volver a consultar al backend" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -2277,17 +2331,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "Predeterminado: 5400" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "entry_cache_user_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" @@ -2296,19 +2350,19 @@ "antes de preguntar al punto final otra vez." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "Por defecto: entry_cache_timeout" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "entry_cache_group_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" @@ -2317,12 +2371,12 @@ "antes de preguntar al punto final otra vez." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "entry_cache_netgroup_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" @@ -2331,12 +2385,12 @@ "válidas antes de preguntar al punto final otra vez." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "entry_cache_service_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" @@ -2345,12 +2399,12 @@ "antes de preguntar al punto final otra vez." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "entry_cache_sudo_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" @@ -2359,12 +2413,12 @@ "preguntar al backend otra vez." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "entry_cache_autofs_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" @@ -2373,71 +2427,71 @@ "automontaje válidos antes de preguntar al punto final otra vez." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "cache_credentials (bool)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" "Determina si las credenciales del usuario están también escondidas en el " "cache LDB local" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" "Las credenciales de usuario son almacenadas en un hash SHA512, no en texto " "plano" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2445,24 +2499,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "account_cache_expiration (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2475,17 +2529,17 @@ "grande o igual que offline_credentials_expiration." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "Predeterminado: 0 (ilimitado)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "pwd_expiration_warning (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2498,17 +2552,17 @@ "configurar un proveedor de autorización para el backend." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "Por defecto: 7 (Kerberos), 0 (LDAP)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "id_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" @@ -2516,17 +2570,17 @@ "soportados son:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "<quote>proxy</quote>: Soporta un proveedor NSS legado" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "<quote>local</quote>: Proveedor interno SSSD para usuarios locales" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2537,8 +2591,8 @@ "información sobre la configuración de LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2551,8 +2605,8 @@ "configuración de FreeIPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2564,12 +2618,12 @@ "Directory." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "use_fully_qualified_names (bool)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." @@ -2579,7 +2633,7 @@ "NSS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2593,7 +2647,7 @@ "command> lo haría." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2601,22 +2655,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "ignore_group_members (bool)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "No devuelve miembros de grupo para búsquedas de grupo." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2628,7 +2682,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2636,12 +2690,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "auth_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" @@ -2650,7 +2704,7 @@ "autenticación soportados son:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2661,7 +2715,7 @@ "citerefentry> para más información sobre la configuración LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2672,7 +2726,7 @@ "citerefentry> para más información sobre la configuración de Kerberos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" @@ -2680,12 +2734,12 @@ "objetivo PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "<quote>none</quote> deshabilita la autenticación explícitamente." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." @@ -2694,12 +2748,12 @@ "manejar las peticiones de autenticación." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "access_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2710,7 +2764,7 @@ "proveedores especiales internos son:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." @@ -2719,12 +2773,12 @@ "sólo permitido para un dominio local." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "<quote>deny</quote> siempre niega el acceso." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2737,7 +2791,7 @@ "configuración del módulo de acceso sencillo." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 #, fuzzy #| msgid "" #| "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " @@ -2753,7 +2807,7 @@ "citerefentry> para más información sobre la configuración de Kerberos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 #, fuzzy #| msgid "" #| "<quote>proxy</quote> for relaying password changes to some other PAM " @@ -2764,17 +2818,17 @@ "otros objetivos PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "Predeterminado: <quote>permit</quote>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "chpass_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" @@ -2783,7 +2837,7 @@ "el dominio. Los proveedores de cambio de passweord soportados son:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2795,7 +2849,7 @@ "configurar LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2806,7 +2860,7 @@ "citerefentry> para más información sobre configurar Kerberos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" @@ -2814,13 +2868,13 @@ "otros objetivos PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" "<quote>none</quote> deniega explícitamente los cambios en la contraseña." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." @@ -2829,18 +2883,18 @@ "puede manejar las peticiones de cambio de password." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "sudo_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" "El proveedor SUDO usado por el dominio. Los proveedores SUDO soportados son:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2851,33 +2905,33 @@ "citerefentry> para más información sobre la configuración LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "<quote>none</quote>deshabilita SUDO explícitamente." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" "Por defecto: el valor de <quote>id_provider</quote> se usa si está fijado." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2888,12 +2942,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "selinux_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2904,7 +2958,7 @@ "finalice. Los proveedores selinux soportados son:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2916,14 +2970,14 @@ "IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" "<quote>none</quote> deshabilita ir a buscar los ajustes selinux " "explícitamente." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." @@ -2932,12 +2986,12 @@ "manejar las peticiones de carga selinux." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "subdomains_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" @@ -2947,7 +3001,7 @@ "soportados son:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2959,7 +3013,7 @@ "configuración de IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2968,18 +3022,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" "<quote>none</quote> deshabilita el buscador de subdominios explícitamente." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "autofs_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" @@ -2987,7 +3041,7 @@ "son:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2999,7 +3053,7 @@ "LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -3011,7 +3065,7 @@ "IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 #, fuzzy #| msgid "" #| "<quote>ipa</quote> to load maps stored in an IPA server. See " @@ -3028,17 +3082,17 @@ "IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "<quote>none</quote> deshabilita autofs explícitamente." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "hostid_provider (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" @@ -3047,7 +3101,7 @@ "proveedores de hostid soportados son:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -3059,12 +3113,12 @@ "configuración de IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "<quote>none</quote> deshabilita hostid explícitamente." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -3074,7 +3128,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -3087,22 +3141,22 @@ "nombres de usuario:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "nombre de usuario" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "username@domain.name" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "dominio/nombre_de_usuario" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." @@ -3112,7 +3166,7 @@ "dominios Windows." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -3123,7 +3177,7 @@ "el nombre, el dominio es el resto detrás de este signo\"" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -3135,7 +3189,7 @@ "subplantillas sin nombre único." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." @@ -3144,17 +3198,17 @@ "soportan la sintaxis Python (?P<name>) para identificar subpatrones." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "Predeterminado: <quote>%1$s@%2$s</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "lookup_family_order (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." @@ -3163,42 +3217,42 @@ "a usar cuando se lleven a cabo búsquedas DNS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "Valores soportados:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "ipv4_first: Intenta buscar dirección IPv4, si falla, intenta IPv6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "ipv4_only: Sólo intenta resolver nombres de host a direccones IPv4." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "ipv6_first: Intenta buscar dirección IPv6, si falla, intenta IPv4" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "ipv6_only: Sólo intenta resolver nombres de host a direccones IPv6." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "Predeterminado: ipv4_first" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "dns_resolver_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -3209,18 +3263,18 @@ "espera, el dominio continuará operativo en modo fuera de línea." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "Predeterminado: 6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "dns_discovery_domain (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." @@ -3229,53 +3283,53 @@ "de dominio de la pregunta al descubridor de servicio DNS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" "Predeterminado: Utilizar la parte del dominio del nombre de host del equipo" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "override_gid (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "Anula el valor primario GID con el especificado." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -3283,7 +3337,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -3291,17 +3345,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -3309,34 +3363,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -3344,34 +3398,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 #, fuzzy #| msgid "This option is not available in IPA provider." msgid "Note: This option only works with the IPA and AD provider." msgstr "Esta opción no está disponible en el proveedor IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "subdomain_homedir (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -3381,7 +3435,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" @@ -3389,30 +3443,30 @@ "emphasis>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "Por defecto: <filename>/home/%d/%u</filename>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 #, fuzzy #| msgid "memcache_timeout (int)" msgid "cached_auth_timeout (int)" msgstr "memcache_timeout (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -3420,12 +3474,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -3433,7 +3487,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -3445,17 +3499,17 @@ "id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "proxy_pam_target (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "El proxy de destino PAM próximo a." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." @@ -3464,12 +3518,12 @@ "pam existente o crear una nueva y añadir el nombre de servicio aquí." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "proxy_lib_name (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3480,12 +3534,12 @@ "$(function), por ejemplo _nss_files_getpwent." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "proxy_fast_alias (booleano)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3499,14 +3553,14 @@ "razones de rendimiento." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 #, fuzzy #| msgid "min_id,max_id (integer)" msgid "proxy_max_children (integer)" msgstr "min_id, max_id (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3514,7 +3568,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" @@ -3523,12 +3577,12 @@ "\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "La sección de dominio local" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3539,29 +3593,29 @@ "utiliza <replaceable>id_provider=local</replaceable>." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "default_shell (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" "El shell predeterminado para los usuarios creados con herramientas de " "espacio de usuario SSSD." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "Predeterminado: <filename>/bin/bash</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "base_directory (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." @@ -3571,17 +3625,17 @@ "de inicio." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "Predeterminado: <filename>/home</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "create_homedir (bool)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." @@ -3590,17 +3644,17 @@ "Puede ser anulado desde la línea de comando." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "Predeterminado: TRUE" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "remove_homedir (bool)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." @@ -3609,12 +3663,12 @@ "borrados. Puede ser anulado desde la línea de comando." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "homedir_umask (entero)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3625,17 +3679,17 @@ "predeterminados en un directorio de inicio recién creado." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "Predeterminado: 077" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "skel_dir (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3648,17 +3702,17 @@ "<manvolnum>8</manvolnum></citerefentry>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "Predeterminado: <filename>/etc/skel</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "mail_dir (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3669,17 +3723,17 @@ "Si no se especifica, se utiliza un valor por defecto." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "Predeterminado: <filename>/var/mail</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "userdel_cmd (cadena)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3690,19 +3744,95 @@ "único parámetro. El código de retorno del comando no es tenido en cuenta." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "Predeterminado: None, no se ejecuta comando" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +#, fuzzy +#| msgid "DOMAIN SECTIONS" +msgid "TRUSTED DOMAIN SECTION" +msgstr "SECCIONES DE DOMINIO" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +#, fuzzy +#| msgid "ldap_search_base (string)" +msgid "ldap_search_base," +msgstr "ldap_search_base (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +#, fuzzy +#| msgid "ldap_user_search_base (string)" +msgid "ldap_user_search_base," +msgstr "ldap_user_search_base (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +#, fuzzy +#| msgid "ldap_group_search_base (string)" +msgid "ldap_group_search_base," +msgstr "ldap_group_search_base (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +#, fuzzy +#| msgid "ldap_netgroup_search_base (string)" +msgid "ldap_netgroup_search_base," +msgstr "ldap_netgroup_search_base (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +#, fuzzy +#| msgid "ldap_service_search_base (string)" +msgid "ldap_service_search_base," +msgstr "ldap_service_search_base (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +#, fuzzy +#| msgid "ad_server, ad_backup_server (string)" +msgid "ad_backup_server," +msgstr "ad_server, ad_backup_server (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "EJEMPLO" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3756,7 +3886,7 @@ "enumerate = False\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3819,7 +3949,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "OPCIONES DE CONFIGURACIÓN" @@ -4742,7 +4873,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "Predeterminado: cn" @@ -5893,7 +6024,7 @@ "configuración para usar <quote>krb5_server</quote> en su lugar." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "krb5_realm (cadena)" @@ -7077,8 +7208,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "<placeholder type=\"programlisting\" id=\"0\"/>" @@ -7112,7 +7243,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "NOTAS" @@ -7129,27 +7260,18 @@ "<refentrytitle>ldap.conf</refentrytitle> <manvolnum>5</manvolnum> </" "citerefentry> de la distribución OpenLDAP 2.4." -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "pam_sss" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "Módulo PAM para SSSD" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -7159,11 +7281,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -7174,22 +7297,22 @@ "través de <command>syslog(3)</command> con la facilidad LOG_AUTHPRIV." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "<option>quiet</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "Suprime el registro de mensajes de usuarios desconocidos." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." @@ -7198,12 +7321,12 @@ "en la pila para que lo usen otros módulos PAM." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "<option>use_first_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -7214,12 +7337,12 @@ "disponible o el password no es apropiado, se denegará el acceso al usuario." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "<option>use_authtok</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." @@ -7228,12 +7351,12 @@ "suministrado por un módulo de password previamente apilado." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "<option>retry=N</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." @@ -7242,7 +7365,7 @@ "autenticación falla. Por defecto es 0." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -7253,36 +7376,36 @@ "<command>sshd</command> con <option>PasswordAuthentication</option>." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -7290,7 +7413,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -7300,21 +7423,21 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 #, fuzzy #| msgid "<option>forward_pass</option>" msgid "<option>allow_missing_name</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -7322,7 +7445,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -7332,13 +7455,30 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +#, fuzzy +#| msgid "<option>retry=N</option>" +msgid "<option>prompt_always</option>" +msgstr "<option>retry=N</option>" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "TIPOS DE MÓDULOS SUMINISTRADOS" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." @@ -7347,12 +7487,12 @@ "<option>password</option> y <option>session</option>) son suministrados." #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "ARCHIVOS" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -7364,7 +7504,7 @@ "sobre como resetear un password." #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -7384,7 +7524,7 @@ "lectura." #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -7898,17 +8038,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +#, fuzzy +#| msgid "ldap_sasl_authid (string)" +msgid "dyndns_auth (string)" +msgstr "ldap_sasl_authid (cadena)" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "Predeterminado: 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -7920,12 +8082,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -7933,109 +8095,109 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 #, fuzzy #| msgid "ldap_dns_service_name (string)" msgid "dyndns_server (string)" msgstr "ldap_dns_service_name (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "ipa_hbac_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" "Opcional. Usa la cadena dada como base de búsqueda para los objetos HBAC " "relacionados." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "Predeterminado: Utilizar DN base" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "ipa_host_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "Opcional. Usa la cadena dada como base de búsqueda para objetos host." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." @@ -8044,72 +8206,72 @@ "de múltiples bases de búsqueda." #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "Predeterminado: el valor de <emphasis>ldap_search_base</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "ipa_selinux_search_base (cadena)Opcional. " #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" "Opcional. Usa la cadena dada como base de búsqueda para los mapas de usuario " "SELinux." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "ipa_subdomains_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" "Opcional: Usa la cadena dada como base de búsqueda de dominios de confianza." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "Por defecto: el valor de <emphasis>cn=trusts,%basedn</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "ipa_master_domain_search_base (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" "Opcional: Usa la cadena dada como base de búsqueda para el objeto maestro de " "dominio." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "Por defecto: el valor de <emphasis>cn=ad,cn=etc,%basedn</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." @@ -8118,7 +8280,7 @@ "de <quote>ipa_domain</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." @@ -8127,37 +8289,37 @@ "convertido hacia la base DN para usarlo para llevar a cabo operaciones LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "ipa_hbac_refresh (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -8168,17 +8330,17 @@ "muchas peticiones de control de acceso hechas en un corto período." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "Predeterminado: 5 (segundos)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "ipa_hbac_selinux (entero)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -8189,190 +8351,190 @@ "hay muchas peticiones de acceso de usuario hechas en un corto período." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "ipa_automount_location (cadena)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "La localización del automontador de este cliente IPA que será usada" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "Por defecto: La localización llamada “default”" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -8382,12 +8544,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "PROVEEDOR DE SUBDOMINIOS" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." @@ -8396,7 +8558,7 @@ "si está configurado explícitamente o implícitamente." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -8408,7 +8570,7 @@ "de IPA si es necesario." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -8420,7 +8582,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8431,7 +8593,7 @@ "Este ejemplo muestra sólo las opciones específicas del proveedor ipa." #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -9436,7 +9598,7 @@ msgstr "Predeterminado: True" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -9447,7 +9609,7 @@ "Este ejemplo muestra sólo las opciones específicas del proveedor AD." #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -9471,7 +9633,7 @@ "ad_domain = example.com\n" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -9483,7 +9645,7 @@ "ldap_account_expire_policy = ad\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -9494,7 +9656,7 @@ "<placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -9504,7 +9666,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -10858,7 +11020,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "%P" @@ -10868,12 +11030,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "%%" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "un literal ‘%’" @@ -12634,6 +12796,112 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +#, fuzzy +#| msgid "sssd-simple" +msgid "sssd-files" +msgstr "sssd-simple" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +#, fuzzy +#| msgid "" +#| "This manual page describes the configuration of the AD provider for " +#| "<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +#| "manvolnum> </citerefentry>. For a detailed syntax reference, refer to " +#| "the <quote>FILE FORMAT</quote> section of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page." +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" +"Esta página de manual describe la configuración del proveedor AD para " +"<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> " +"</citerefentry>. Para una referencia detallada de sintaxis, vea la sección " +"<quote>FILE FORMAT</quote> de la página de manual <citerefentry> " +"<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry>." + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +#, fuzzy +#| msgid "" +#| "Specifies the timeout (in seconds) after which the <citerefentry> " +#| "<refentrytitle>poll</refentrytitle> <manvolnum>2</manvolnum> </" +#| "citerefentry>/<citerefentry> <refentrytitle>select</refentrytitle> " +#| "<manvolnum>2</manvolnum> </citerefentry> following a <citerefentry> " +#| "<refentrytitle>connect</refentrytitle> <manvolnum>2</manvolnum> </" +#| "citerefentry> returns in case of no activity." +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" +"Especifica el tiempo de salida (en segudos) después del cual <citerefentry> " +"<refentrytitle>poll</refentrytitle> <manvolnum>2</manvolnum> </citerefentry>/" +"<citerefentry> <refentrytitle>select</refentrytitle> <manvolnum>2</" +"manvolnum> </citerefentry> siguiendo un <citerefentry> " +"<refentrytitle>connect</refentrytitle> <manvolnum>2</manvolnum> </" +"citerefentry> vuelve en caso de no actividad." + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +#, fuzzy +#| msgid "" +#| "Refer to the section <quote>DOMAIN SECTIONS</quote> of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page for details on the configuration of an SSSD " +#| "domain. <placeholder type=\"variablelist\" id=\"0\"/>" +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" +"Vea la sección <quote>DOMAIN SECTIONS</quote> de la página de manual " +"<citerefentry> <refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry> para detalles sobre la configuración de un " +"dominio SSSD. <placeholder type=\"variablelist\" id=\"0\"/>" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +#, fuzzy +#| msgid "" +#| "The following example assumes that SSSD is correctly configured and LDAP " +#| "is set to one of the domains in the <replaceable>[domains]</replaceable> " +#| "section." +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" +"El siguiente ejemplo asume que SSSS está configurado correctamente y LDAP " +"está fijado a uno de los dominios de la sección <replaceable>[domains]</" +"replaceable>." + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 #, fuzzy #| msgid "sssd-simple" @@ -13378,6 +13646,19 @@ "Para más información sobre el mecanismo del servicio descubridor, vea el RFC " "2782." +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +#, fuzzy +#| msgid "" +#| "<productname>SSSD</productname> <orgname>The SSSD upstream - http://" +#| "fedorahosted.org/sssd</orgname>" +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" +"fedorahosted.org/sssd</orgname>" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -14102,9 +14383,13 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 +#, fuzzy +#| msgid "" +#| "<emphasis> This is an experimental feature, please use http://" +#| "fedorahosted.org/sssd to report any issues. </emphasis>" msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" "<emphasis> Este es una función experimental, por favor utilice http://" "fedorahosted.org/sssd para reportar cualquier cuestión. </emphasis>" @@ -14275,28 +14560,38 @@ msgid "fully qualified user name (user@domain)" msgstr "nombre totalmente cualificado del usuario (user@domain)" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "%o" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "El directorio home original recuperado del proveedor de identidad." #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -14311,13 +14606,8 @@ "absoluto o una plantilla. En la plantilla, serán sustituidas las siguientes " "secuencias: <placeholder type=\"variablelist\" id=\"0\"/>" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "Esta opción puede ser también fijada por dominio." - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -14325,7 +14615,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "Por defecto: No fijado (SSSD usará el valor recuperado desde LDAP)" diff -Nru sssd-1.15.0/src/man/po/eu.po sssd-1.15.2/src/man/po/eu.po --- sssd-1.15.0/src/man/po/eu.po 2017-01-25 15:44:05.908440231 +0000 +++ sssd-1.15.2/src/man/po/eu.po 2017-03-15 16:58:45.332938086 +0000 @@ -7,7 +7,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-14 11:55-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: Basque (http://www.transifex.com/projects/p/sssd/language/" @@ -29,7 +29,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "" @@ -39,7 +39,7 @@ msgstr "" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -62,7 +62,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -70,7 +70,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "" @@ -82,7 +82,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -127,14 +127,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "" @@ -285,10 +285,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "" @@ -305,11 +306,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "" @@ -336,7 +338,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "" @@ -352,7 +354,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "" @@ -400,19 +402,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "" @@ -432,7 +434,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "" @@ -452,12 +454,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -465,39 +467,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -621,7 +623,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -767,6 +769,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -779,12 +793,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -793,22 +807,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -818,17 +832,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -836,18 +850,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -855,24 +869,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -880,12 +894,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -897,46 +911,58 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -944,7 +970,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -954,7 +980,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -963,17 +989,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -981,34 +1007,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 msgid "local_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1017,7 +1043,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1026,41 +1052,41 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1068,23 +1094,23 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1092,47 +1118,47 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1140,105 +1166,105 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1249,72 +1275,96 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +msgid "pwfield (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1322,59 +1372,59 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 msgid "pam_response_filter (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1383,61 +1433,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder type=" "\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1445,7 +1495,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1454,17 +1504,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1472,26 +1522,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1501,74 +1551,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1576,19 +1626,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1596,12 +1646,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 msgid "pam_cert_auth (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1609,46 +1659,46 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 msgid "pam_cert_db_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 msgid "p11_child_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1659,34 +1709,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1694,68 +1744,68 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 msgid "ca_db (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 msgid "Default: /etc/pki/nssdb" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1767,7 +1817,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1778,24 +1828,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1803,12 +1853,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1817,36 +1867,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 msgid "pac_lifetime (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -1855,46 +1905,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1906,14 +1956,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1922,39 +1972,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -1963,19 +2013,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -1986,151 +2036,151 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2138,24 +2188,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2164,17 +2214,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2183,33 +2233,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2217,8 +2267,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2227,8 +2277,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2236,19 +2286,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2257,7 +2307,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2265,22 +2315,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2292,7 +2342,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2300,19 +2350,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2320,7 +2370,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2328,30 +2378,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2359,19 +2409,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2380,7 +2430,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum></" @@ -2388,29 +2438,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2418,7 +2468,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2426,35 +2476,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2462,32 +2512,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2498,12 +2548,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2511,7 +2561,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2519,31 +2569,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2551,7 +2601,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2560,23 +2610,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2584,7 +2634,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2592,7 +2642,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2600,24 +2650,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2625,12 +2675,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2640,7 +2690,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2649,29 +2699,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2679,7 +2729,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2687,66 +2737,66 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2754,70 +2804,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2825,7 +2875,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2833,17 +2883,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2851,34 +2901,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2886,32 +2936,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2921,34 +2971,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 msgid "cached_auth_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -2956,12 +3006,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -2969,7 +3019,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -2977,29 +3027,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3007,12 +3057,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3021,12 +3071,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 msgid "proxy_max_children (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3034,19 +3084,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3054,73 +3104,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3128,17 +3178,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3147,17 +3197,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3165,17 +3215,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3183,19 +3233,81 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +msgid "TRUSTED DOMAIN SECTION" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +msgid "ldap_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +msgid "ldap_user_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +msgid "ldap_group_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +msgid "ldap_netgroup_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +msgid "ldap_service_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3225,7 +3337,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3272,7 +3384,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "" @@ -4082,7 +4195,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "" @@ -5080,7 +5193,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "" @@ -6121,8 +6234,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" @@ -6156,7 +6269,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "" @@ -6169,25 +6282,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6197,11 +6303,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6209,34 +6316,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6244,31 +6351,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6276,36 +6383,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6313,7 +6420,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6323,19 +6430,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 msgid "<option>allow_missing_name</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6343,7 +6450,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6353,25 +6460,40 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +msgid "<option>prompt_always</option>" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -6379,7 +6501,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -6391,7 +6513,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -6796,17 +6918,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +msgid "dyndns_auth (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +msgid "Default: GSS-TSIG" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6818,12 +6958,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6831,216 +6971,216 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 msgid "dyndns_server (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7048,17 +7188,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7066,190 +7206,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7259,19 +7399,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7279,7 +7419,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7291,7 +7431,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -7299,7 +7439,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8240,7 +8380,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8248,7 +8388,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8263,7 +8403,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8272,7 +8412,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8280,7 +8420,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8290,7 +8430,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9411,7 +9551,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -9421,12 +9561,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -10975,6 +11115,64 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +msgid "sssd-files" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 msgid "sssd-secrets" msgstr "" @@ -11638,6 +11836,13 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12248,8 +12453,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12395,28 +12600,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12428,13 +12643,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12442,7 +12652,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/po/fr.po sssd-1.15.2/src/man/po/fr.po --- sssd-1.15.0/src/man/po/fr.po 2017-01-25 15:44:05.916440263 +0000 +++ sssd-1.15.2/src/man/po/fr.po 2017-03-15 16:58:45.340938118 +0000 @@ -16,7 +16,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2016-03-19 03:04-0400\n" "Last-Translator: Jean-Baptiste Holcroft <jean-baptiste@holcroft.fr>\n" "Language-Team: French (http://www.transifex.com/projects/p/sssd/language/" @@ -38,7 +38,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "Pages de manuel de SSSD" @@ -48,7 +48,7 @@ msgstr "sss_groupmod" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -74,7 +74,7 @@ "arg>" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -82,7 +82,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "DESCRIPTION" @@ -96,7 +96,7 @@ "changements spécifiés sur la ligne de commande." #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -150,14 +150,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "Formats de fichier et conventions" @@ -334,10 +334,11 @@ "la journalisation de débogage de SSSD, cette option sera ignorée." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "Par défaut : true" @@ -357,11 +358,12 @@ "sera ignorée." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "Par défaut : false" @@ -390,7 +392,7 @@ "s'assurer que le processus est toujours actif et capable de répondre." #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "Par défaut : 10" @@ -406,7 +408,7 @@ msgstr "La section [sssd]" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "Paramètres de sections" @@ -460,12 +462,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "reconnection_retries (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" @@ -475,7 +477,7 @@ "d'abandonner" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "Par défaut : 3" @@ -501,7 +503,7 @@ "points et caractères soulignés." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "re_expression (chaîne)" @@ -527,12 +529,12 @@ "expressions régulières." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "full_name_format (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -544,33 +546,33 @@ "domaine." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "%1$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "nom d'utilisateur" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "%2$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" "nom de domaine tel qu'indiqué dans le fichier de configuration de SSSD." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "%3$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." @@ -580,7 +582,7 @@ "d'approbation IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -738,7 +740,7 @@ "use_fully_qualified_names à False." #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -904,6 +906,20 @@ msgid "Default: false (netlink changes are detected)" msgstr "Par défaut : False (désactivé)" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +#, fuzzy +#| msgid "ad_enable_dns_sites (boolean)" +msgid "enable_files_domain (boolean)" +msgstr "ad_enable_dns_sites (booléen)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -922,12 +938,12 @@ "l'identité des domaines. <placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "SECTIONS DE SERVICES" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -940,22 +956,22 @@ "section doit être <quote>[nss]</quote>" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "Options générales de configuration de service" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "Ces options peuvent être utilisées pour configurer les services." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "fd_limit" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -970,17 +986,17 @@ "valeur inférieure ou la limite « hard » de limits.conf." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "Par défault : 8192 (ou la limite « hard » de limits.conf)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -992,18 +1008,18 @@ "ressources sur le système." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "Par défaut : 60" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "offline_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -1011,24 +1027,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "offline_timeout + random_offset" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "new_interval = old_interval*2 + random_offset" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -1036,14 +1052,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 #, fuzzy #| msgid "client_idle_timeout" msgid "responder_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -1055,18 +1071,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "Par défaut : 300" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "Options de configuration NSS" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" @@ -1074,12 +1102,12 @@ "Switch (NSS)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "enum_cache_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" @@ -1088,17 +1116,17 @@ "énumérations (requêtes sur les informations de tous les utilisateurs)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "Par défaut : 120" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "entry_cache_nowait_percentage (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -1109,7 +1137,7 @@ "valeur de entry_cache_timeout pour le domaine." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -1125,7 +1153,7 @@ "cache." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -1138,17 +1166,17 @@ "de non réponse à moins de 10 secondes (0 pour désactiver l'option)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "Par défaut : 50" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "entry_negative_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -1160,19 +1188,19 @@ "appel au moteur." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "Par défaut : 15" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 #, fuzzy #| msgid "autofs_negative_timeout (integer)" msgid "local_negative_timeout (integer)" msgstr "autofs_negative_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 #, fuzzy #| msgid "" #| "Specifies for how many seconds nss_sss should cache negative cache hits " @@ -1188,17 +1216,17 @@ "appel au moteur." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "Par défaut : 0" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "filter_users, filter_groups (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 #, fuzzy #| msgid "" #| "Exclude certain users from being fetched from the sss NSS database. This " @@ -1218,7 +1246,7 @@ "certain domaine." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1227,17 +1255,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "Par défaut : root" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "filter_users_in_groups (booléen)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" @@ -1245,12 +1273,12 @@ "membres de groupes." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "fallback_homedir (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." @@ -1259,7 +1287,7 @@ "explicitement spécifié par le fournisseur de données du domaine." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" @@ -1267,7 +1295,7 @@ "override_homedir." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1277,25 +1305,25 @@ " " #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "exemple : <placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" "Par défaut : non défini (aucune substitution pour les répertoires d'accueil " "non définis)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "override_shell (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1307,17 +1335,17 @@ "section [nss], soit par domaine." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "Par défaut : indéfini (SSSD utilisera la valeur récupérée de LDAP)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "allowed_shells (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" @@ -1325,14 +1353,14 @@ "indiquées. L'ordre d'évaluation est :" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" "1. Si l'interpréteur de commandes est présent dans <quote>/etc/shells</" "quote>, il est utilisé." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." @@ -1342,7 +1370,7 @@ "shell_fallback » sera utilisée." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." @@ -1351,12 +1379,12 @@ "ni dans <quote>/etc/shells</quote>, une connexion sans shell est utilisée." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1364,14 +1392,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" "Une chaîne vide pour l'interpréteur de commandes est passée telle quelle est " "à la libc." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." @@ -1381,31 +1409,31 @@ "est installé." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" "Par défaut : non défini. L'interpréteur de commandes de l'utilisateur est " "utilisé automatiquement." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "vetoed_shells (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" "Remplace toutes les occurences de ces interpréteurs de commandes par " "l'interpréteur de commandes par défaut" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "shell_fallback (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" @@ -1413,17 +1441,17 @@ "commandes autorisé n'est pas installé sur la machine." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "Par défaut : /bin/sh" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "default_shell" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." @@ -1433,7 +1461,7 @@ "choix soit dans la section [nss], soit par domaine." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" @@ -1443,12 +1471,12 @@ "nécessaire, habituellement /bin/sh)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "get_domains_timeout (int)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." @@ -1457,12 +1485,12 @@ "jugée valide." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "memcache_timeout (int)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 #, fuzzy #| msgid "" #| "Specifies time in seconds for which records in the in-memory cache will " @@ -1475,19 +1503,19 @@ "mémoire seront valides" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "user_attributes (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1498,24 +1526,50 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "Par défaut : non défini, repli sur l'option InfoPipe" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +#, fuzzy +#| msgid "skel_dir (string)" +msgid "pwfield (string)" +msgstr "skel_dir (chaîne)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "Cette option peut aussi être définie pour chaque domaine." + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "Options de configuration de PAM" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." @@ -1524,12 +1578,12 @@ "Module (PAM)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "offline_credentials_expiration (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." @@ -1539,17 +1593,17 @@ "connexion réussie)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "Par défaut : 0 (pas de limite)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "offline_failed_login_attempts (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." @@ -1558,12 +1612,12 @@ "échouées sont autorisées." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "offline_failed_login_delay (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." @@ -1573,7 +1627,7 @@ "soit possible." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1584,17 +1638,17 @@ "connexion réussie en ligne peut réactiver l'authentification." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "Par défaut : 5" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "pam_verbosity (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." @@ -1604,46 +1658,46 @@ "affichés sera important." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "Actuellement sssd supporte les valeurs suivantes :" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "<emphasis>0</emphasis> : ne pas afficher de message" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "<emphasis>1</emphasis> : afficher seulement les messages importants" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "<emphasis>2</emphasis> : afficher les messages d'information" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" "<emphasis>3</emphasis> : afficher tous les messages et informations de " "débogage" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "Par défaut : 1" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 #, fuzzy #| msgid "pam_verbosity (integer)" msgid "pam_response_filter (integer)" msgstr "pam_verbosity (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1652,44 +1706,44 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 #, fuzzy #| msgid "" #| "The following expansions are supported: <placeholder type=\"variablelist" @@ -1702,17 +1756,17 @@ "\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "pam_id_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1724,7 +1778,7 @@ "les dernières informations." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1738,17 +1792,17 @@ "fournisseur d'identité." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "pam_pwd_expiration_warning (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "Afficher une alerte N jours avant l'expiration du mot de passe." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1759,7 +1813,7 @@ "ne peut afficher de message d'alerte." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." @@ -1769,7 +1823,7 @@ "sera automatiquement affiché." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." @@ -1778,12 +1832,12 @@ "<emphasis>pwd_expiration_warning</emphasis> pour un domaine particulier." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "pam_trusted_users (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 #, fuzzy #| msgid "" #| "Specifies the comma-separated list of UID values or user names that are " @@ -1801,7 +1855,7 @@ "seront résolus en UID au démarrage." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 #, fuzzy #| msgid "Default: all (All users are allowed to access the PAM responder)" msgid "Default: All users are considered trusted by default" @@ -1809,32 +1863,32 @@ "Par défaut : all (tous les utilisateurs peuvent accéder au répondeur PAM)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "pam_public_domains (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" "Deux valeurs spéciales pour l'option pam_public_domains sont définies :" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" @@ -1842,7 +1896,7 @@ "à tous les domaines PAM dans le répondeur.)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" @@ -1851,32 +1905,32 @@ "autorisés à accéder à un des domaines PAM dans le répondeur.)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "Par défaut : aucun" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "pam_account_expired_message (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, fuzzy, no-wrap #| msgid "" #| "pam_account_expired_message = Account expired, please call help desk.\n" @@ -1889,21 +1943,21 @@ " " #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 #, fuzzy #| msgid "pam_account_expired_message (string)" msgid "pam_account_locked_message (string)" msgstr "pam_account_expired_message (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, fuzzy, no-wrap #| msgid "" #| "pam_account_expired_message = Account expired, please call help desk.\n" @@ -1916,14 +1970,14 @@ " " #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 #, fuzzy #| msgid "enumerate (bool)" msgid "pam_cert_auth (bool)" msgstr "enumerate (booléen)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1931,50 +1985,50 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "Par défaut : False" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 #, fuzzy #| msgid "krb5_confd_path (string)" msgid "pam_cert_db_path (string)" msgstr "krb5_confd_path (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "p11_child_timeout (integer)" msgstr "pam_id_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "Options de configuration de SUDO" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1991,12 +2045,12 @@ "sudo</refentrytitle> <manvolnum>5</manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "sudo_timed (booléen)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." @@ -2005,22 +2059,22 @@ "les entrées sudoers sensibles au temps." #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "Options de configuration AUTOFS" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "Ces options peuvent être utilisées pour configurer le service autofs." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "autofs_negative_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -2032,23 +2086,23 @@ "moteur." #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "Options de configuration SSH" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" "Les options suivantes peuvent être utilisées pour configurer le service SSH." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "ssh_hash_known_hosts (bool)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." @@ -2056,12 +2110,12 @@ "Condenser ou non les noms de systèmes et adresses du fichier known_hosts" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "ssh_known_hosts_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." @@ -2070,38 +2124,38 @@ "known_hosts géré après que ses clés de système ont été demandés." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "Par défaut : 180" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 #, fuzzy #| msgid "mail_dir (string)" msgid "ca_db (string)" msgstr "mail_dir (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 #, fuzzy #| msgid "Default: /etc/krb5.keytab" msgid "Default: /etc/pki/nssdb" msgstr "Par défaut : /etc/krb5.keytab" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "Options de configuration du répondeur PAC" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -2120,7 +2174,7 @@ "décodées et évaluées, les opérations suivantes sont effectuées :" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -2138,7 +2192,7 @@ "default_shell." #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." @@ -2147,19 +2201,19 @@ "ajouté à ces groupes." #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" "Les options suivantes peuvent être utilisées pour configurer le répondeur " "PAC." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "allowed_uids (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -2170,14 +2224,14 @@ "seront résolus en UID au démarrage." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" "Par défaut : 0 (seul l'utilisateur root est autorisé à accéder au répondeur " "PAC)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -2190,31 +2244,31 @@ "0 à la liste des UID d'utilisateurs autorisés." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "pac_lifetime (integer)" msgstr "pam_id_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "SECTIONS DOMAINES" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "min_id,max_id (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." @@ -2223,7 +2277,7 @@ "dehors de ces limites, elle est ignorée." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -2236,7 +2290,7 @@ "qui sont dans la plage seront rapportés comme prévu." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." @@ -2245,17 +2299,17 @@ "pas seulement leur recherche par nom ou identifiant." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "Default: 1 for min_id, 0 (no limit) for max_id" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "enumerate (booléen)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" @@ -2264,22 +2318,22 @@ "valeurs suivantes :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "TRUE = utilisateurs et groupes sont énumérés" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "FALSE = aucune énumération pour ce domaine" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "Par défaut : FALSE" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -2300,7 +2354,7 @@ "être recalculées." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." @@ -2310,7 +2364,7 @@ "l'énumération ne se termine." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -2324,7 +2378,7 @@ "fournisseur d'identité spécifique utilisé." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." @@ -2333,32 +2387,32 @@ "déconseillée, surtout dans les environnements de grande taille." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "subdomain_enumerate (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "all" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "Tous les domaines approuvés découverts seront énumérés" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "none" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "Aucun domaine approuvé découvert ne sera énuméré" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -2372,12 +2426,12 @@ "activer l'énumération pour ces seuls domaines." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "entry_cache_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" @@ -2386,7 +2440,7 @@ "comme valides avant de les redemander au moteur" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -2404,17 +2458,17 @@ "rafraîchissement des entrées qui sont déjà en cache." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "Par défaut : 5400" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "entry_cache_user_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" @@ -2423,19 +2477,19 @@ "d'utilisateurs comme valides avant de les redemander au moteur." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "Par défaut : entry_cache_timeout" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "entry_cache_group_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" @@ -2444,12 +2498,12 @@ "groupes comme valides avant de les redemander au moteur." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "entry_cache_netgroup_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" @@ -2458,12 +2512,12 @@ "netgroup comme valides avant de les redemander au moteur." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "entry_cache_service_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" @@ -2472,12 +2526,12 @@ "service valides avant de les redemander au moteur" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "entry_cache_sudo_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" @@ -2486,12 +2540,12 @@ "valides avant de les redemander au moteur" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "entry_cache_autofs_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" @@ -2500,12 +2554,12 @@ "cartes d'automontage comme valides avant de les redemander au moteur" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "entry_cache_ssh_host_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." @@ -2514,12 +2568,12 @@ "rafraichissement. I.e. combien de temps mettre la clé en cache." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "refresh_expired_interval (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." @@ -2529,48 +2583,48 @@ "enregistrements expirés ou sur le point de l'être." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" "Il est envisageable de configurer cette valeur à 3/4 * entry_cache_timeout." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "Par défaut : 0 (désactivé)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "cache_credentials (booléen)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" "Détermine si les données d'identification de l'utilisateur sont aussi mis en " "cache dans le cache LDB local" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" "Les informations d'identification utilisateur sont stockées dans une table " "de hachage SHA512, et non en texte brut" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2578,24 +2632,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "Par défaut : 8" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "account_cache_expiration (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2608,17 +2662,17 @@ "paramètre doit être supérieur ou égal à offline_credentials_expiration." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "Par défaut : 0 (illimité)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "pwd_expiration_warning (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2631,17 +2685,17 @@ "fournisseur oauth doit être configuré pour le moteur." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "Par défaut : 7 (Kerberos), 0 (LDAP)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "id_provider (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" @@ -2649,18 +2703,18 @@ "d'identification pris en charge sont :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "<quote>proxy</quote> : prise en charge de l'ancien fournisseur NSS" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" "<quote>local</quote> : Fournisseur interne SSSD pour les utilisateurs locaux" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2672,8 +2726,8 @@ "LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2686,8 +2740,8 @@ "configuration de FreeIPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2699,12 +2753,12 @@ "d'Active Directory." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "use_fully_qualified_names (booléen)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." @@ -2714,7 +2768,7 @@ "communiqué à NSS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2728,7 +2782,7 @@ "trouve." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2740,22 +2794,22 @@ "qualifié sera demandé." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "Par défaut : false (true si default_domain_suffix est utilisée)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "ignore_group_members (booléen)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "Ne pas envoyer les membres des groupes sur les recherches de groupes." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2767,7 +2821,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2775,12 +2829,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "auth_provider (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" @@ -2789,7 +2843,7 @@ "pris en charge sont :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2801,7 +2855,7 @@ "LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2812,7 +2866,7 @@ "citerefentry> pour plus d'informations sur la configuration de Kerberos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" @@ -2820,12 +2874,12 @@ "PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "<quote>none</quote> désactive l'authentification explicitement." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." @@ -2834,12 +2888,12 @@ "gérer les requêtes d'authentification." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "access_provider (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2850,7 +2904,7 @@ "installés). Les fournisseurs internes spécifiques sont :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." @@ -2859,12 +2913,12 @@ "d'accès autorisé pour un domaine local." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "<quote>deny</quote> toujours refuser les accès." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2877,7 +2931,7 @@ "d'informations sur la configuration du module d'accès simple." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 #, fuzzy #| msgid "" #| "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " @@ -2893,7 +2947,7 @@ "citerefentry> pour plus d'informations sur la configuration de Kerberos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 #, fuzzy #| msgid "" #| "<quote>proxy</quote> for relaying password changes to some other PAM " @@ -2904,17 +2958,17 @@ "autre cible PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "Par défaut : <quote>permit</quote>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "chpass_provider (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" @@ -2923,7 +2977,7 @@ "domaine. Les fournisseurs pris en charge sont :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2935,7 +2989,7 @@ "configuration LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2947,7 +3001,7 @@ "Kerberos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" @@ -2955,14 +3009,14 @@ "autre cible PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" "<quote>none</quote> pour désactiver explicitement le changement de mot de " "passe." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." @@ -2971,19 +3025,19 @@ "peut gérer les changements de mot de passe." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "sudo_provider (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" "Le fournisseur SUDO, utilisé pour le domaine. Les fournisseurs SUDO pris en " "charge sont :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2995,7 +3049,7 @@ "LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." @@ -3004,7 +3058,7 @@ "par défaut pour IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." @@ -3013,20 +3067,20 @@ "par défaut pour AD." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "<quote>none</quote> désactive explicitement SUDO." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" "Par défaut : La valeur de <quote>id_provider</quote> est utilisée si elle " "est définie." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -3037,12 +3091,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "selinux_provider (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -3053,7 +3107,7 @@ "fournisseur d'accès. Les fournisseurs selinux pris en charge sont :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -3065,14 +3119,14 @@ "IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" "<quote>none</quote> n'autorise pas la récupération explicite des paramètres " "selinux." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." @@ -3081,12 +3135,12 @@ "gérer le chargement selinux" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "subdomains_provider (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" @@ -3096,7 +3150,7 @@ "fournisseurs de sous-domaine pris en charge sont :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -3108,7 +3162,7 @@ "IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -3117,18 +3171,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" "<quote>none</quote> désactive la récupération explicite des sous-domaines." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "autofs_provider (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" @@ -3136,7 +3190,7 @@ "en charge sont :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -3148,7 +3202,7 @@ "LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -3160,7 +3214,7 @@ "IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 #, fuzzy #| msgid "" #| "<quote>ipa</quote> to load maps stored in an IPA server. See " @@ -3177,17 +3231,17 @@ "IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "<quote>none</quote> désactive explicitement autofs." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "hostid_provider (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" @@ -3196,7 +3250,7 @@ "systèmes. Les fournisseurs de hostid pris en charge sont :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -3208,12 +3262,12 @@ "configuration de IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "<quote>none</quote> désactive explicitement hostid." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -3229,7 +3283,7 @@ "domaine." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -3242,22 +3296,22 @@ "styles différents pour les noms d'utilisateurs :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "username" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "username@domain.name" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "domain\\username" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." @@ -3267,7 +3321,7 @@ "utilisateurs de domaines Windows." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -3278,7 +3332,7 @@ "importe le domaine après »" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -3290,7 +3344,7 @@ "prendre en charge les sous-motifs nommés multiples." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." @@ -3299,17 +3353,17 @@ "la syntaxe Python (?P<name>) pour nommer les sous-motifs." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "Par défaut : <quote>%1$s@%2$s</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "lookup_family_order (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." @@ -3318,48 +3372,48 @@ "utiliser pour effectuer les requêtes DNS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "Valeurs prises en charge :" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" "ipv4_first : essayer de chercher une adresse IPv4, et en cas d'échec, " "essayer IPv6." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" "ipv4_only : ne tenter de résoudre les noms de systèmes qu'en adresses IPv4." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" "ipv6_first : essayer de chercher une adresse IPv6, et en cas d'échec, tenter " "IPv4." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" "ipv6_only : ne tenter de résoudre les noms de systèmes qu'en adresses IPv6." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "Par défaut : ipv4_first" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "dns_resolver_timeout (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -3370,18 +3424,18 @@ "domaine continuera à opérer en mode déconnecté." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "Par défaut : 6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "dns_discovery_domain (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." @@ -3390,54 +3444,54 @@ "du domaine faisant partie de la requête DNS de découverte de services." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" "Par défaut : utiliser la partie du domaine qui est dans le nom de système de " "la machine." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "override_gid (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "Redéfinit le GID primaire avec la valeur spécifiée." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "case_sensitive (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "True" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "False" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "Insensible à la casse." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "Preserving" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -3449,7 +3503,7 @@ "sortie." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -3457,17 +3511,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "Par défaut : true (false pour le fournisseur AD)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "subdomain_inherit (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -3475,34 +3529,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "ignore_group_members" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "ldap_purge_cache_timeout" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "ldap_use_tokengroups" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "ldap_user_principal" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -3512,34 +3566,34 @@ " " #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "Exemple : <placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 #, fuzzy #| msgid "This option is not available in IPA provider." msgid "Note: This option only works with the IPA and AD provider." msgstr "Cette option n'est pas disponible dans le fournisseur IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "subdomain_homedir (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "%F" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "nom plat (NetBIOS) d'un sous-domaine." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -3555,7 +3609,7 @@ "\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" @@ -3563,17 +3617,17 @@ "emphasis>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "Par défaut : <filename>/home/%d/%u</filename>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "realmd_tags (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" @@ -3581,14 +3635,14 @@ "ce domaine." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 #, fuzzy #| msgid "memcache_timeout (int)" msgid "cached_auth_timeout (int)" msgstr "memcache_timeout (int)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -3596,12 +3650,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -3609,7 +3663,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -3621,17 +3675,17 @@ "id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "proxy_pam_target (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "Le proxy cible duquel PAM devient mandataire." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." @@ -3640,12 +3694,12 @@ "ou en créer une nouvelle et ajouter le nom de service ici." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "proxy_lib_name (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3656,12 +3710,12 @@ "$(libName)_$(function), par exemple _nss_files_getpwent." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "proxy_fast_alias (boolean)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3675,14 +3729,14 @@ "afin d'améliorer les performances." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 #, fuzzy #| msgid "min_id,max_id (integer)" msgid "proxy_max_children (integer)" msgstr "min_id,max_id (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3690,7 +3744,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" @@ -3699,12 +3753,12 @@ "id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "La section du domaine local" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3715,29 +3769,29 @@ "dire un domaine qui utilise <replaceable>id_provider=local</replaceable>." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "default_shell (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" "L'interpréteur de commandes par défaut pour les utilisateurs créés avec les " "outils en espace utilisateur SSSD." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "Par défaut : <filename>/bin/bash</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "base_directory (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." @@ -3746,17 +3800,17 @@ "replaceable> et l'utilisent comme dossier personnel." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "Par défaut : <filename>/home</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "create_homedir (booléen)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." @@ -3765,17 +3819,17 @@ "utilisateurs. Peut être outrepassé par la ligne de commande." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "Par défaut : TRUE" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "remove_homedir (booléen)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." @@ -3784,12 +3838,12 @@ "suppression des utilisateurs. Peut être outrepassé par la ligne de commande." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "homedir_umask (entier)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3800,17 +3854,17 @@ "défaut sur un répertoire personnel nouvellement créé." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "Par défaut : 077" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "skel_dir (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3823,17 +3877,17 @@ "manvolnum> </citerefentry>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "Par défaut : <filename>/etc/skel</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "mail_dir (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3844,17 +3898,17 @@ "précisé, la valeur par défaut est utilisée." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "Par défaut : <filename>/var/mail</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "userdel_cmd (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3865,19 +3919,95 @@ "code en retour de la commande n'est pas pris en compte." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "Par défaut : None, aucune commande lancée" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +#, fuzzy +#| msgid "DOMAIN SECTIONS" +msgid "TRUSTED DOMAIN SECTION" +msgstr "SECTIONS DOMAINES" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +#, fuzzy +#| msgid "ldap_search_base (string)" +msgid "ldap_search_base," +msgstr "ldap_search_base (chaîne)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +#, fuzzy +#| msgid "ldap_user_search_base (string)" +msgid "ldap_user_search_base," +msgstr "ldap_user_search_base (chaînes)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +#, fuzzy +#| msgid "ldap_group_search_base (string)" +msgid "ldap_group_search_base," +msgstr "ldap_group_search_base (chaînes)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +#, fuzzy +#| msgid "ldap_netgroup_search_base (string)" +msgid "ldap_netgroup_search_base," +msgstr "ldap_netgroup_search_base (chaînes)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +#, fuzzy +#| msgid "ldap_service_search_base (string)" +msgid "ldap_service_search_base," +msgstr "ldap_service_search_base (string)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +#, fuzzy +#| msgid "ad_server, ad_backup_server (string)" +msgid "ad_backup_server," +msgstr "ad_server, ad_backup_server (string)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "EXEMPLE" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3931,7 +4061,7 @@ "enumerate = False\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3996,7 +4126,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "OPTIONS DE CONFIGURATION" @@ -4940,7 +5071,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "Par défaut : cn" @@ -6139,7 +6270,7 @@ "l'utilisation de <quote>krb5_server</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "krb5_realm (chaîne)" @@ -7357,8 +7488,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "<placeholder type=\"programlisting\" id=\"0\"/>" @@ -7402,7 +7533,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "NOTES" @@ -7419,27 +7550,18 @@ "refentrytitle> <manvolnum>5</manvolnum> </citerefentry> de la distribution " "de OpenLDAP 2.4." -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" -"<productname>SSSD</productname> <orgname>Le projet SSSD - http://" -"fedorahosted.org/sssd</orgname>" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "pam_sss" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "Module PAM pour SSSD" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -7449,11 +7571,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -7464,22 +7587,22 @@ "<command>syslog(3)</command> avec l'argument LOG_AUTHPRIV." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "<option>quiet</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "Supprimer les messages de journal pour les utilisateurs inconnus." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." @@ -7488,12 +7611,12 @@ "inséré en mémoire pour les autres modules PAM utilisés." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "<option>use_first_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -7505,12 +7628,12 @@ "l'utilisateur verra son accès refusé." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "<option>use_authtok</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." @@ -7519,12 +7642,12 @@ "passe par celui fourni par un module de mot de passe déjà chargé en mémoire." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "<option>retry=N</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." @@ -7533,7 +7656,7 @@ "l'authentification échoue. Par défaut : 0." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -7545,36 +7668,36 @@ "<option>PasswordAuthentication</option>." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "<option>ignore_unknown_user</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "<option>ignore_authinfo_unavail</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -7582,7 +7705,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -7592,21 +7715,21 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 #, fuzzy #| msgid "<option>forward_pass</option>" msgid "<option>allow_missing_name</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -7614,7 +7737,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -7624,13 +7747,30 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +#, fuzzy +#| msgid "<option>retry=N</option>" +msgid "<option>prompt_always</option>" +msgstr "<option>retry=N</option>" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "TYPES DE MODULES FOURNIS" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." @@ -7639,12 +7779,12 @@ "<option>password</option> et <option>session</option>) sont fournis." #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "FICHIERS" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -7656,7 +7796,7 @@ "exemple, contenir les instructions permettant la réinitialisation." #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -7676,7 +7816,7 @@ "utilisateurs doivent avoir les autorisations en lecture seule." #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -8237,17 +8377,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +#, fuzzy +#| msgid "dyndns_iface (string)" +msgid "dyndns_auth (string)" +msgstr "dyndns_iface (chaîne)" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "Par défaut : 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "ipa_enable_dns_sites (booléen)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "Active les sites DNS - découverte de service basée sur l'emplacement" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -8267,12 +8429,12 @@ "seront utilisés comme serveurs de repli" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "dyndns_refresh_interval (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -8284,12 +8446,12 @@ "configurée à true." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "dyndns_update_ptr (booléen)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." @@ -8299,7 +8461,7 @@ "l'option dyndns_update est configurée à true." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." @@ -8309,17 +8471,17 @@ "quand les enregistrements directs sont modifiés." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "Par défaut : False (désactivé)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "dyndns_force_tcp (booléen)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." @@ -8328,77 +8490,77 @@ "communication avec le serveur DNS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "Par défaut : False (laisser nsupdate choisir le protocole)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 #, fuzzy #| msgid "dyndns_iface (string)" msgid "dyndns_server (string)" msgstr "dyndns_iface (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 #, fuzzy #| msgid "Default: False (let nsupdate choose the protocol)" msgid "Default: None (let nsupdate choose the server)" msgstr "Par défaut : False (laisser nsupdate choisir le protocole)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "ipa_hbac_search_base (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" "Facultatif. Utilise la chaîne donnée comme base de recherche pour les objets " "HBAC associés." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "Par défaut : utilise le DN de base" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "ipa_host_search_base (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" "Facultatif. Utiliser la chaîne donnée comme base de recherche pour héberger " "des objets." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." @@ -8407,73 +8569,73 @@ "configuration des bases de recherche multiples." #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "Par défaut : la valeur de <emphasis>ldap_search_base</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "ipa_selinux_search_base (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" "Facultatif. Utiliser la chaîne donnée comme base de recherche pour les " "mappages utilisateur SELinux." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "ipa_subdomains_search_base (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" "Facultatif. Utiliser la chaîne donnée comme base de recherche pour les " "domaines approuvés." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "Par défaut : la valeur de <emphasis>cn=trusts,%basedn</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "ipa_master_domain_search_base (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" "Facultatif. Utiliser la chaîne donnée comme base de recherche objet de " "domaine maître." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "Par défaut : la valeur de <emphasis>cn=ad,cn=etc,%basedn</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "ipa_views_search_base (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." @@ -8482,7 +8644,7 @@ "valeur de <quote>ipa_domain</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." @@ -8491,37 +8653,37 @@ "convertit en DN de base pour effectuer les opérations LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "krb5_confd_path (chaîne)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "ipa_hbac_refresh (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -8532,17 +8694,17 @@ "beaucoup de requêtes de contrôle d'accès sur une courte période." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "Par défaut : 5 (secondes)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "ipa_hbac_selinux (entier)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -8553,17 +8715,17 @@ "requêtes de connexions utilisateurs sur une courte période." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "ipa_server_mode (booléen)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." @@ -8573,173 +8735,173 @@ "domaines approuvés." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "ipa_automount_location (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "L'emplacement à automonter qu'utilisera ce client IPA" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "Par défaut : Le lieu nommé « default »" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "ipa_view_class (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "ipa_view_name (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "ipa_overide_object_class (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "ipa_anchor_uuid (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "ipa_user_override_object_class (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "ipa_group_override_object_class (chaîne)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -8749,12 +8911,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "FOURNISSEURS DE SOUS-DOMAINES" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." @@ -8763,7 +8925,7 @@ "configuré explicitement ou implicitement." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -8775,7 +8937,7 @@ "serveur IPA si nécessaire." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -8795,7 +8957,7 @@ "fournisseur de sous-domaines est à nouveau activé." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8806,7 +8968,7 @@ "exemples montrent seulement les options spécifiques au fournisseur IPA." #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -9868,7 +10030,7 @@ msgstr "Par défaut : True" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -9879,7 +10041,7 @@ "exemples montrent seulement les options spécifiques au fournisseur AD." #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -9903,7 +10065,7 @@ "ad_domain = example.com\n" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -9915,7 +10077,7 @@ "ldap_account_expire_policy = ad\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -9926,7 +10088,7 @@ "<placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -9936,7 +10098,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -11303,7 +11465,7 @@ msgstr "valeur de krb5_ccachedir" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "%P" @@ -11313,12 +11475,12 @@ msgstr "l'ID de processus du client SSSD" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "%%" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "un « % » littéral" @@ -13178,6 +13340,115 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +#, fuzzy +#| msgid "sssd-simple" +msgid "sssd-files" +msgstr "sssd-simple" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +#, fuzzy +#| msgid "SSSD Kerberos provider" +msgid "SSSD files provider" +msgstr "Fournisseur Kerberos SSSD" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +#, fuzzy +#| msgid "" +#| "This manual page describes the configuration of the AD provider for " +#| "<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +#| "manvolnum> </citerefentry>. For a detailed syntax reference, refer to " +#| "the <quote>FILE FORMAT</quote> section of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page." +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" +"Cette page de manuel décrit la configuration du fournisseur AD pour " +"<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> " +"</citerefentry>. Pour une référence détaillée sur la syntaxe, cf. la section " +"<quote>FORMAT DE FICHIER</quote> de la page de manuel <citerefentry> " +"<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry>." + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +#, fuzzy +#| msgid "" +#| "These options can be used to configure the sudo service. The detailed " +#| "instructions for configuration of <citerefentry> <refentrytitle>sudo</" +#| "refentrytitle> <manvolnum>8</manvolnum> </citerefentry> to work with " +#| "<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +#| "manvolnum> </citerefentry> are in the manual page <citerefentry> " +#| "<refentrytitle>sssd-sudo</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry>." +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" +"Ces options peuvent être utilisées pour configurer le service sudo. Les " +"directives de configuration de <citerefentry> <refentrytitle>sudo</" +"refentrytitle> <manvolnum>8</manvolnum> </citerefentry> dans <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </citerefentry> " +"sont détaillées dans la page de manuel <citerefentry> <refentrytitle>sssd-" +"sudo</refentrytitle> <manvolnum>5</manvolnum> </citerefentry>." + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +#, fuzzy +#| msgid "" +#| "Refer to the section <quote>DOMAIN SECTIONS</quote> of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page for details on the configuration of an SSSD " +#| "domain. <placeholder type=\"variablelist\" id=\"0\"/>" +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" +"Se référer à la section <quote>SECTIONS DE DOMAINE</quote> de la page de " +"manuel <citerefentry> <refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry> pour les détails sur la configuration d'un " +"domaine SSSD. <placeholder type=\"variablelist\" id=\"0\"/>" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +#, fuzzy +#| msgid "" +#| "The following example assumes that SSSD is correctly configured and LDAP " +#| "is set to one of the domains in the <replaceable>[domains]</replaceable> " +#| "section." +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" +"L'exemple suivant suppose que SSSD est correctement configuré et que LDAP " +"pointe sur un des domaines de la section <replaceable>[domains]</" +"replaceable>." + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 #, fuzzy #| msgid "sssd-simple" @@ -13932,6 +14203,19 @@ "Pour plus d'informations sur le mécanisme de découverte de services, se " "reporter à la RFC 2782." +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +#, fuzzy +#| msgid "" +#| "<productname>SSSD</productname> <orgname>The SSSD upstream - http://" +#| "fedorahosted.org/sssd</orgname>" +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" +"<productname>SSSD</productname> <orgname>Le projet SSSD - http://" +"fedorahosted.org/sssd</orgname>" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -14689,9 +14973,13 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 +#, fuzzy +#| msgid "" +#| "<emphasis> This is an experimental feature, please use http://" +#| "fedorahosted.org/sssd to report any issues. </emphasis>" msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" "<emphasis>Il s'agit d'une fonctionnalité expérimentale, utiliser http://" "fedorahosted.org/sssd pour signaler les problèmes.</emphasis>" @@ -14904,30 +15192,40 @@ msgid "fully qualified user name (user@domain)" msgstr "nom d'utilisateur pleinement qualifié (utilisateur@domaine)" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" "UPN - Nom de principal d'utilisateur (User principal name, nom@ROYAUME)" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "%o" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" "Le répertoire utilisateur original provenant du fournisseur d'identité." #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "%H" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" "La valeur de l'option de configuration <emphasis>homedir_substring</" @@ -14944,13 +15242,8 @@ "une valeur absolue ou un patron. Dans le cas d'un patron, les séquences " "suivantes sont substituées :<placeholder type=\"variablelist\" id=\"0\"/>" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "Cette option peut aussi être définie pour chaque domaine." - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -14960,7 +15253,7 @@ " " #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "Par défaut : Indéfini (SSSD utilisera la valeur récupérée de LDAP)" diff -Nru sssd-1.15.0/src/man/po/ja.po sssd-1.15.2/src/man/po/ja.po --- sssd-1.15.0/src/man/po/ja.po 2017-01-25 15:44:05.921440284 +0000 +++ sssd-1.15.2/src/man/po/ja.po 2017-03-15 16:58:45.345938138 +0000 @@ -10,7 +10,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-14 11:59-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: Japanese (http://www.transifex.com/projects/p/sssd/language/" @@ -32,7 +32,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "SSSD マニュアル ページ" @@ -42,7 +42,7 @@ msgstr "sss_groupmod" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -68,7 +68,7 @@ "arg>" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -76,7 +76,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "概要" @@ -90,7 +90,7 @@ "するようグループを変更します。" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -144,14 +144,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "ファイル形式および変換" @@ -314,10 +314,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "初期値: true" @@ -334,11 +335,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "初期値: false" @@ -365,7 +367,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "初期値: 10" @@ -381,7 +383,7 @@ msgstr "[sssd] セクション" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "セクションのパラメーター" @@ -431,12 +433,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "reconnection_retries (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" @@ -445,7 +447,7 @@ "める前に試行する回数です。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "初期値: 3" @@ -465,7 +467,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "re_expression (文字列)" @@ -485,12 +487,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "full_name_format (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -501,39 +503,39 @@ "manvolnum> </citerefentry> 互換形式。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "%1$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "ユーザー名" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "%2$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "SSSD 設定ファイルにおいて指定されるドメイン名。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "%3$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -676,7 +678,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -830,6 +832,20 @@ msgid "Default: false (netlink changes are detected)" msgstr "初期値: False (無効)" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +#, fuzzy +#| msgid "ad_enable_dns_sites (boolean)" +msgid "enable_files_domain (boolean)" +msgstr "ad_enable_dns_sites (論理値)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -847,12 +863,12 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "サービスセクション" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -864,22 +880,22 @@ "ば、NSS サービスは <quote>[nss]</quote> セクションです" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "サービス設定の全体オプション" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "これらのオプションはすべてのサービスを設定するために使用できます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "fd_limit" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -889,17 +905,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -910,18 +926,18 @@ "避けるために制限されます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "初期値: 60" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -929,24 +945,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -954,14 +970,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 #, fuzzy #| msgid "client_idle_timeout" msgid "responder_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -973,18 +989,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "初期値: 300" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "NSS 設定オプション" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" @@ -992,12 +1020,12 @@ "きます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "enum_cache_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" @@ -1006,17 +1034,17 @@ "要求)。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "初期値: 120" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "entry_cache_nowait_percentage (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -1027,7 +1055,7 @@ "す。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -1042,7 +1070,7 @@ "とをブロックする必要がありません。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -1055,17 +1083,17 @@ "(0 はこの機能を無効にします)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "初期値: 50" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "entry_negative_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -1076,19 +1104,19 @@ "せ)をキャッシュする秒数を指定します。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "初期値: 15" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 #, fuzzy #| msgid "autofs_negative_timeout (integer)" msgid "local_negative_timeout (integer)" msgstr "autofs_negative_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 #, fuzzy #| msgid "" #| "Specifies for how many seconds nss_sss should cache negative cache hits " @@ -1103,17 +1131,17 @@ "せ)をキャッシュする秒数を指定します。" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "初期値: 0" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "filter_users, filter_groups (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 #, fuzzy #| msgid "" #| "Exclude certain users from being fetched from the sss NSS database. This " @@ -1132,7 +1160,7 @@ "飾名を含めることができます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1141,17 +1169,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "初期値: root" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "filter_users_in_groups (論理値)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" @@ -1159,12 +1187,12 @@ "ションを偽に設定します。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "fallback_homedir (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." @@ -1173,7 +1201,7 @@ "ホームディレクトリーの標準テンプレートを設定します。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" @@ -1181,7 +1209,7 @@ "同じです。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1191,23 +1219,23 @@ " " #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "例: <placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "初期値: 設定なし (ホームディレクトリーの設定がない場合は代替なし)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "override_shell (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1215,17 +1243,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "初期値: 設定なし (SSSD は LDAP から取得された値を使用します)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "allowed_shells (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" @@ -1233,13 +1261,13 @@ "す:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" "1. シェルが <quote>/etc/shells</quote> に存在すると、それが使用されます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." @@ -1248,7 +1276,7 @@ "ば、shell_fallback パラメーターの値を使用します。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." @@ -1257,12 +1285,12 @@ "ば、nologin シェルが使用されます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1270,12 +1298,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "シェルの空文字列は libc にそのまま渡されます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." @@ -1285,27 +1313,27 @@ "ます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "初期値: 設定されません。ユーザーシェルが自動的に使用されます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "vetoed_shells (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "これらのシェルのインスタンスをすべて shell_fallback に置き換えます" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "shell_fallback (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" @@ -1313,67 +1341,67 @@ "す。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "初期値: /bin/sh" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "default_shell" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "get_domains_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "memcache_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1384,24 +1412,50 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +#, fuzzy +#| msgid "skel_dir (string)" +msgid "pwfield (string)" +msgstr "skel_dir (文字列)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "このオプションはドメインごとに設定できます。" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "PAM 設定オプション" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." @@ -1410,12 +1464,12 @@ "ために使用できます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "offline_credentials_expiration (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." @@ -1424,17 +1478,17 @@ "ラインログインの最終成功からの日数)です。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "初期値: 0 (無制限)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "offline_failed_login_attempts (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." @@ -1442,12 +1496,12 @@ "認証プロバイダーがオフラインの場合、ログイン試行の失敗が許容される回数です。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "offline_failed_login_delay (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." @@ -1456,7 +1510,7 @@ "渡される分単位の時間です。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1467,17 +1521,17 @@ "効にできます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "初期値: 5" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "pam_verbosity (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." @@ -1486,44 +1540,44 @@ "きいほどメッセージが表示されます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "現在 sssd は以下の値をサポートします:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "<emphasis>0</emphasis>: 何もメッセージを表示しない" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "<emphasis>1</emphasis>: 重要なメッセージのみを表示する" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "<emphasis>2</emphasis>: 情報レベルのメッセージを表示する" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "<emphasis>3</emphasis>: すべてのメッセージとデバッグ情報を表示する" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "初期値: 1" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 #, fuzzy #| msgid "pam_verbosity (integer)" msgid "pam_response_filter (integer)" msgstr "pam_verbosity (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1532,44 +1586,44 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 #, fuzzy #| msgid "" #| "The following expansions are supported: <placeholder type=\"variablelist" @@ -1582,17 +1636,17 @@ "id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "pam_id_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1602,7 +1656,7 @@ "されるよう、SSSD は直ちにキャッシュされた識別情報を更新しようとします。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1615,17 +1669,17 @@ "アプリケーションごとに)制御します。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "pam_pwd_expiration_warning (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "パスワードの期限が切れる前に N 日間警告を表示します。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1635,26 +1689,26 @@ "ことに注意してください。この情報がなければ、sssd は警告を表示します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1664,74 +1718,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "初期値: none" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1739,21 +1793,21 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 #, fuzzy #| msgid "ldap_ns_account_lock (string)" msgid "pam_account_locked_message (string)" msgstr "ldap_ns_account_lock (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1761,14 +1815,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 #, fuzzy #| msgid "enumerate (bool)" msgid "pam_cert_auth (bool)" msgstr "enumerate (論理値)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1776,50 +1830,50 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "初期値: 偽" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 #, fuzzy #| msgid "ipa_hbac_search_base (string)" msgid "pam_cert_db_path (string)" msgstr "ipa_hbac_search_base (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "p11_child_timeout (integer)" msgstr "pam_id_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "SUDO 設定オプション" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1830,12 +1884,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "sudo_timed (論理値)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." @@ -1844,22 +1898,22 @@ "を評価するかしないかです。" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "Autofs 設定オプション" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "これらのオプションが autofs サービスを設定するために使用されます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "autofs_negative_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1870,72 +1924,72 @@ "ヒットする秒数を指定します。" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "SSH 設定オプション" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "これらのオプションは SSH サービスを設定するために使用されます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "ssh_hash_known_hosts (論理値)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "ssh_known_hosts_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "初期値: 180" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 #, fuzzy #| msgid "mail_dir (string)" msgid "ca_db (string)" msgstr "mail_dir (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 #, fuzzy #| msgid "Default: /etc/krb5.keytab" msgid "Default: /etc/pki/nssdb" msgstr "初期値: /etc/krb5.keytab" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1947,7 +2001,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1958,24 +2012,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "allowed_uids (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1983,12 +2037,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1997,31 +2051,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "pac_lifetime (integer)" msgstr "pam_id_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "ドメインセクション" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "min_id,max_id (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." @@ -2030,7 +2084,7 @@ "トリーを含む場合、それは無視されます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -2042,24 +2096,24 @@ "バーに対して、範囲内にあるものは予期されたものとして報告されます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "初期値: min_id は 1, max_id は 0 (無制限)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "enumerate (論理値)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" @@ -2068,22 +2122,22 @@ "必要があります:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "TRUE = ユーザーとグループが列挙されます" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "FALSE = このドメインに対して列挙しません" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "初期値: FALSE" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -2095,7 +2149,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." @@ -2104,7 +2158,7 @@ "れが完了するまで結果を返しません。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -2117,39 +2171,39 @@ "てください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -2158,12 +2212,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "entry_cache_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" @@ -2172,7 +2226,7 @@ "数です。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -2183,17 +2237,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "初期値: 5400" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "entry_cache_user_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" @@ -2202,19 +2256,19 @@ "考える秒数です。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "初期値: entry_cache_timeout" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "entry_cache_group_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" @@ -2223,12 +2277,12 @@ "考える秒数です。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "entry_cache_netgroup_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" @@ -2237,12 +2291,12 @@ "有効であると考える秒数です。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "entry_cache_service_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" @@ -2251,94 +2305,94 @@ "考える秒数です。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "entry_cache_sudo_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "entry_cache_autofs_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "refresh_expired_interval (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "初期値: 0 (無効)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "cache_credentials (論理値)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" "ユーザーのクレディンシャルがローカル LDB キャッシュにキャッシュされるかどうか" "を決めます" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" "ユーザーのクレディンシャルが、平文ではなく SHA512 ハッシュで保存されます" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2346,24 +2400,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "account_cache_expiration (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2375,17 +2429,17 @@ "offline_credentials_expiration と同等以上でなければいけません。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "初期値: 0 (無制限)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "pwd_expiration_warning (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2394,17 +2448,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "初期値: 7 (Kerberos), 0 (LDAP)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "id_provider (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" @@ -2412,17 +2466,17 @@ "ダーは次のとおりです:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "<quote>proxy</quote>: レガシーな NSS プロバイダーのサポート" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "<quote>local</quote>: ローカルユーザー向け SSSD 内部プロバイダー" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2433,8 +2487,8 @@ "manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2447,8 +2501,8 @@ "い。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2459,12 +2513,12 @@ "<manvolnum>5</manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "use_fully_qualified_names (論理値)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." @@ -2473,7 +2527,7 @@ "名形式により整形されたように) を使用します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2486,7 +2540,7 @@ "んが、<command>getent passwd test@LOCAL</command> は見つけられます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2494,22 +2548,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "ignore_group_members (論理値)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2521,7 +2575,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2529,12 +2583,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "auth_provider (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" @@ -2543,7 +2597,7 @@ "ダーは次のとおりです:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2554,7 +2608,7 @@ "manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2565,19 +2619,19 @@ "manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" "<quote>proxy</quote> はいくつかの他の PAM ターゲットに認証を中継します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "<quote>none</quote> は明示的に認証を無効化します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." @@ -2586,12 +2640,12 @@ "ならば、それが使用されます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "access_provider (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2602,7 +2656,7 @@ "えます)。内部の特別プロバイダーは次のとおりです:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." @@ -2611,12 +2665,12 @@ "ロバイダーのみアクセスが許可されます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "<quote>deny</quote> は常にアクセスを拒否します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2629,7 +2683,7 @@ "citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 #, fuzzy #| msgid "" #| "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " @@ -2645,7 +2699,7 @@ "manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 #, fuzzy #| msgid "" #| "<quote>proxy</quote> for relaying password changes to some other PAM " @@ -2656,17 +2710,17 @@ "します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "初期値: <quote>permit</quote>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "chpass_provider (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" @@ -2675,7 +2729,7 @@ "パスワード変更プロバイダーは次のとおりです:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2686,7 +2740,7 @@ "refentrytitle> <manvolnum>5</manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2697,7 +2751,7 @@ "<manvolnum>5</manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" @@ -2705,12 +2759,12 @@ "します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "<quote>none</quote> は明示的にパスワードの変更を無効化します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." @@ -2719,19 +2773,19 @@ "うことができるならば、それが使用されます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "sudo_provider (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" "ドメインに使用される SUDO プロバイダーです。サポートされる SUDO プロバイダー" "は次のとおりです:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2742,33 +2796,33 @@ "<manvolnum>5</manvolnum> </citerefentry> を参照します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "<quote>none</quote> は SUDO を明示的に無効化します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" "初期値: <quote>id_provider</quote> の値が設定されていると使用されます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2779,12 +2833,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "selinux_provider (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2792,7 +2846,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2800,31 +2854,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "subdomains_provider (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2832,7 +2886,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2841,17 +2895,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "<quote>none</quote> はサブドメインの取り出しを明示的に無効化します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "autofs_provider (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" @@ -2859,7 +2913,7 @@ "プロバイダーは次のとおりです:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2870,7 +2924,7 @@ "<manvolnum>5</manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2881,7 +2935,7 @@ "<manvolnum>5</manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 #, fuzzy #| msgid "" #| "<quote>ipa</quote> to load maps stored in an IPA server. See " @@ -2897,17 +2951,17 @@ "<manvolnum>5</manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "<quote>none</quote> は明示的に autofs を無効にします。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "hostid_provider (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" @@ -2916,7 +2970,7 @@ "hostid プロバイダーは次のとおりです:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2927,12 +2981,12 @@ "refentrytitle> <manvolnum>5</manvolnum> </citerefentry> を参照してください。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "<quote>none</quote> は明示的に hostid を無効にします。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2942,7 +2996,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2951,29 +3005,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "username" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "username@domain.name" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "domain\\username" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2984,7 +3038,7 @@ "everything after that\" に解釈されます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2992,7 +3046,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." @@ -3001,17 +3055,17 @@ "Python 構文 (?P<name>) のみをサポートします。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "初期値: <quote>%1$s@%2$s</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "lookup_family_order (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." @@ -3020,46 +3074,46 @@ "します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "サポートする値:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" "ipv4_first: IPv4 アドレスの検索を試行します。失敗すると IPv6 を試行します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" "ipv4_only: ホスト名を IPv4 アドレスに名前解決することのみを試行します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" "ipv6_first: IPv6 アドレスの検索を試行します。失敗すると IPv4 を試行します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" "ipv6_only: ホスト名を IPv6 アドレスに名前解決することのみを試行します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "初期値: ipv4_first" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "dns_resolver_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -3070,18 +3124,18 @@ "ドにて操作を継続します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "初期値: 6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "dns_discovery_domain (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." @@ -3090,52 +3144,52 @@ "イン部分を指定します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "初期値: マシンのホスト名のドメイン部分を使用します" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "override_gid (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "プライマリー GID の値を指定されたもので上書きします。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -3143,7 +3197,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -3151,17 +3205,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -3169,34 +3223,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -3204,34 +3258,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 #, fuzzy #| msgid "This option is not available in IPA provider." msgid "Note: This option only works with the IPA and AD provider." msgstr "このオプションは IPA プロバイダーにおいて利用可能ではありません。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "subdomain_homedir (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "%F" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "サブドメインのフラット (NetBIOS) 名。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -3241,37 +3295,37 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" "値は <emphasis>override_homedir</emphasis> オプションにより上書きできます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "初期値: <filename>/home/%d/%u</filename>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "realmd_tags (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 #, fuzzy #| msgid "memcache_timeout (int)" msgid "cached_auth_timeout (int)" msgstr "memcache_timeout (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -3279,12 +3333,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -3292,7 +3346,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -3303,17 +3357,17 @@ "\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "proxy_pam_target (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "中継するプロキシターゲット PAM です。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." @@ -3322,12 +3376,12 @@ "をここに追加する必要があります。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "proxy_lib_name (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3338,12 +3392,12 @@ "_nss_files_getpwent です。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "proxy_fast_alias (論理値)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3352,14 +3406,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 #, fuzzy #| msgid "min_id,max_id (integer)" msgid "proxy_max_children (integer)" msgstr "min_id,max_id (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3367,7 +3421,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" @@ -3376,12 +3430,12 @@ "\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "ローカルドメインのセクション" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3392,27 +3446,27 @@ "メインに対する設定を含みます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "default_shell (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "SSSD ユーザー空間ツールを用いて作成されたユーザーの初期シェルです。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "初期値: <filename>/bin/bash</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "base_directory (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." @@ -3421,17 +3475,17 @@ "ホームディレクトリーとして使用します。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "初期値: <filename>/home</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "create_homedir (論理値)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." @@ -3440,17 +3494,17 @@ "す。コマンドラインにおいて上書きできます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "初期値: TRUE" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "remove_homedir (論理値)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." @@ -3459,12 +3513,12 @@ "す。コマンドラインにおいて上書きできます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "homedir_umask (整数)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3475,17 +3529,17 @@ "manvolnum> </citerefentry> により使用されます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "初期値: 077" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "skel_dir (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3498,17 +3552,17 @@ "を含む、スケルトンディレクトリーです。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "初期値: <filename>/etc/skel</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "mail_dir (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3519,17 +3573,17 @@ "が使用されます。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "初期値: <filename>/var/mail</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "userdel_cmd (文字列)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3540,19 +3594,95 @@ "せん。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "初期値: なし、コマンドを実行しません" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +#, fuzzy +#| msgid "DOMAIN SECTIONS" +msgid "TRUSTED DOMAIN SECTION" +msgstr "ドメインセクション" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +#, fuzzy +#| msgid "ldap_search_base (string)" +msgid "ldap_search_base," +msgstr "ldap_search_base (文字列)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +#, fuzzy +#| msgid "ldap_user_search_base (string)" +msgid "ldap_user_search_base," +msgstr "ldap_user_search_base (文字列)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +#, fuzzy +#| msgid "ldap_group_search_base (string)" +msgid "ldap_group_search_base," +msgstr "ldap_group_search_base (文字列)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +#, fuzzy +#| msgid "ldap_netgroup_search_base (string)" +msgid "ldap_netgroup_search_base," +msgstr "ldap_netgroup_search_base (文字列)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +#, fuzzy +#| msgid "ldap_service_search_base (string)" +msgid "ldap_service_search_base," +msgstr "ldap_service_search_base (文字列)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +#, fuzzy +#| msgid "ad_server, ad_backup_server (string)" +msgid "ad_backup_server," +msgstr "ad_server, ad_backup_server (文字列)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "例" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3606,7 +3736,7 @@ "enumerate = False\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3668,7 +3798,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "設定オプション" @@ -4542,7 +4673,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "初期値: cn" @@ -5624,7 +5755,7 @@ "quote> を使用するよう設定ファイルを移行することが推奨されます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "krb5_realm (文字列)" @@ -6754,8 +6885,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "<placeholder type=\"programlisting\" id=\"0\"/>" @@ -6789,7 +6920,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "注記" @@ -6806,27 +6937,18 @@ "refentrytitle> <manvolnum>5</manvolnum> </citerefentry> マニュアルページに基" "づいています。" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "pam_sss" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "SSSD の PAM モジュール" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6836,11 +6958,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6851,22 +6974,22 @@ "て LOG_AUTHPRIV ファシリティでログ記録されます。" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "<option>quiet</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "不明なユーザーのログメッセージを抑制します。" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." @@ -6875,12 +6998,12 @@ "るために、入力されたパスワードがスタックに置かれます。" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "<option>use_first_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6891,12 +7014,12 @@ "い、またはパスワードが適切でなければ、ユーザーがアクセスを拒否されます。" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "<option>use_authtok</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." @@ -6905,12 +7028,12 @@ "クされたパスワードモジュールに設定します。" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "<option>retry=N</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." @@ -6919,7 +7042,7 @@ "せます。初期値は 0 です。" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6931,36 +7054,36 @@ "す。" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6968,7 +7091,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6978,21 +7101,21 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 #, fuzzy #| msgid "<option>forward_pass</option>" msgid "<option>allow_missing_name</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -7000,7 +7123,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -7010,13 +7133,30 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +#, fuzzy +#| msgid "<option>retry=N</option>" +msgid "<option>prompt_always</option>" +msgstr "<option>retry=N</option>" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "提供されるモジュール形式" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." @@ -7025,12 +7165,12 @@ "<option>password</option> および <option>session</option>) が提供されます。" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "ファイル" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -7041,7 +7181,7 @@ "ば、このメッセージはパスワードをリセットする方法に関する説明があります。" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -7053,7 +7193,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -7544,17 +7684,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +#, fuzzy +#| msgid "dyndns_iface (string)" +msgid "dyndns_auth (string)" +msgstr "dyndns_iface (文字列)" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "初期値: 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "ipa_enable_dns_sites (論理値)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "DNS サイトの有効化 - 位置情報に基づいたサービス探索。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -7566,12 +7728,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "dyndns_refresh_interval (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -7579,36 +7741,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "dyndns_update_ptr (論理値)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "初期値: False (無効)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "dyndns_force_tcp (論理値)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." @@ -7617,75 +7779,75 @@ "どうか。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 #, fuzzy #| msgid "dyndns_iface (string)" msgid "dyndns_server (string)" msgstr "dyndns_iface (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "ipa_hbac_search_base (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" "オプションです。与えられた文字列を HBAC 関連オブジェクトに対する検索ベースと" "して使用します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "初期値: ベース DN を使用します" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "ipa_host_search_base (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" "オプションです。ホストオブジェクトの検索ベースとして与えられた文字列を使用し" "ます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." @@ -7694,71 +7856,71 @@ "してください。" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "初期値: <emphasis>ldap_search_base</emphasis> の値" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "ipa_selinux_search_base (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" "オプションです。与えられた文字列を SELinux ユーザーマップに対する検索ベースと" "して使用します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "ipa_subdomains_search_base (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" "オプションです。信頼されたドメインに対する検索ベースとして、与えられた文字列" "を使用します。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "初期値: <emphasis>cn=trusts,%basedn</emphasis> の値" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "ipa_master_domain_search_base (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "初期値: <emphasis>cn=ad,cn=etc,%basedn</emphasis> の値" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." @@ -7767,7 +7929,7 @@ "quote> の値です。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." @@ -7776,37 +7938,37 @@ "めに使用するベース DN に変換されます。" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "ipa_hbac_refresh (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7814,17 +7976,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "初期値: 5 (秒)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "ipa_hbac_selinux (整数)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7832,190 +7994,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "ipa_server_mode (論理値)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "ipa_automount_location (文字列)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "この IPA クライアントが使用する automounter の場所です" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "初期値: \"default\" という名前の場所" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -8025,19 +8187,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -8048,7 +8210,7 @@ "メインのリクエストが必要に応じて IPA サーバーに送られます。" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -8060,7 +8222,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8071,7 +8233,7 @@ "例は IPA プロバイダー固有のオプションのみを示しています。" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -9061,7 +9223,7 @@ msgstr "初期値: True" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -9072,7 +9234,7 @@ "AD プロバイダー固有のオプションのみ示してします。" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -9096,7 +9258,7 @@ "ad_domain = example.com\n" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -9108,7 +9270,7 @@ "ldap_account_expire_policy = ad\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -9116,7 +9278,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -9126,7 +9288,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -10408,7 +10570,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "%P" @@ -10418,12 +10580,12 @@ msgstr "SSSD クライアントのプロセス ID" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "%%" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "文字 '%'" @@ -12190,6 +12352,110 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +#, fuzzy +#| msgid "sssd-simple" +msgid "sssd-files" +msgstr "sssd-simple" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +#, fuzzy +#| msgid "" +#| "This manual page describes the configuration of the IPA provider for " +#| "<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +#| "manvolnum> </citerefentry>. For a detailed syntax reference, refer to " +#| "the <quote>FILE FORMAT</quote> section of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page." +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" +"このマニュアルページは <citerefentry> <refentrytitle>sssd</refentrytitle> " +"<manvolnum>8</manvolnum> </citerefentry> に対する IPA プロバイダーの設定を説" +"明しています。詳細な構文の参考資料は <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> マニュアルペー" +"ジの <quote>ファイル形式</quote> を参照してください。" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +#, fuzzy +#| msgid "" +#| "Specifies the timeout (in seconds) after which the <citerefentry> " +#| "<refentrytitle>poll</refentrytitle> <manvolnum>2</manvolnum> </" +#| "citerefentry>/<citerefentry> <refentrytitle>select</refentrytitle> " +#| "<manvolnum>2</manvolnum> </citerefentry> following a <citerefentry> " +#| "<refentrytitle>connect</refentrytitle> <manvolnum>2</manvolnum> </" +#| "citerefentry> returns in case of no activity." +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" +"<citerefentry> <refentrytitle>connect</refentrytitle> <manvolnum>2</" +"manvolnum> </citerefentry> に続けて <citerefentry> <refentrytitle>poll</" +"refentrytitle> <manvolnum>2</manvolnum> </citerefentry>/<citerefentry> " +"<refentrytitle>select</refentrytitle> <manvolnum>2</manvolnum> </" +"citerefentry> が未使用を返した後のタイムアウト(秒単位)を指定します。" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +#, fuzzy +#| msgid "" +#| "Refer to the section <quote>DOMAIN SECTIONS</quote> of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page for details on the configuration of an SSSD " +#| "domain. <placeholder type=\"variablelist\" id=\"0\"/>" +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" +"SSSD ドメインの設定に関する詳細は <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> マニュアルページの " +"<quote>ドメインセクション</quote> のセクションを参照してください。 " +"<placeholder type=\"variablelist\" id=\"0\"/>" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +#, fuzzy +#| msgid "" +#| "The following example assumes that SSSD is correctly configured and LDAP " +#| "is set to one of the domains in the <replaceable>[domains]</replaceable> " +#| "section." +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" +"以下の例は、SSSD が正しく設定され、LDAP が <replaceable>[domains]</" +"replaceable> セクションにあるドメインのどれかに設定されていると仮定していま" +"す。" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 #, fuzzy #| msgid "sssd-simple" @@ -12934,6 +13200,19 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "サービス検索メカニズムに関する詳細は RFC 2782 を参照してください。" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +#, fuzzy +#| msgid "" +#| "<productname>SSSD</productname> <orgname>The SSSD upstream - http://" +#| "fedorahosted.org/sssd</orgname>" +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" +"fedorahosted.org/sssd</orgname>" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -13569,9 +13848,13 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 +#, fuzzy +#| msgid "" +#| "<emphasis> This is an experimental feature, please use http://" +#| "fedorahosted.org/sssd to report any issues. </emphasis>" msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" "<emphasis> これは実験的な機能です、何らかの問題を報告するには http://" "fedorahosted.org/sssd を使用してください。 </emphasis>" @@ -13721,28 +14004,38 @@ msgid "fully qualified user name (user@domain)" msgstr "完全修飾ユーザー名 (user@domain)" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "%o" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -13757,13 +14050,8 @@ "供できます。テンプレートでは、以下のシーケンスが置換されます: <placeholder " "type=\"variablelist\" id=\"0\"/>" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "このオプションはドメインごとに設定できます。" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -13773,7 +14061,7 @@ " " #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "初期値: 設定なし (SSSD は LDAP から取得された値を使用します)" diff -Nru sssd-1.15.0/src/man/po/lv.po sssd-1.15.2/src/man/po/lv.po --- sssd-1.15.0/src/man/po/lv.po 2017-01-25 15:44:05.926440304 +0000 +++ sssd-1.15.2/src/man/po/lv.po 2017-03-15 16:58:45.350938157 +0000 @@ -9,7 +9,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-15 12:00-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: Latvian (http://www.transifex.com/projects/p/sssd/language/" @@ -32,7 +32,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "" @@ -42,7 +42,7 @@ msgstr "" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -65,7 +65,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -73,7 +73,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "APRAKSTS" @@ -85,7 +85,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -130,14 +130,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "" @@ -290,10 +290,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "" @@ -310,11 +311,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "" @@ -341,7 +343,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "Noklusējuma: 10" @@ -357,7 +359,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "" @@ -405,19 +407,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "" @@ -437,7 +439,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "" @@ -457,12 +459,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -470,39 +472,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -626,7 +628,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -772,6 +774,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -784,12 +798,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -798,22 +812,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -823,17 +837,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -841,18 +855,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "Noklusējuma: 60" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -860,24 +874,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -885,12 +899,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -902,46 +916,58 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "Noklusējuma: 300" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -949,7 +975,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -959,7 +985,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -968,17 +994,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -986,36 +1012,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "Noklusējuma: 15" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 #, fuzzy #| msgid "timeout (integer)" msgid "local_negative_timeout (integer)" msgstr "noildze (vesels skaitlis)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1024,7 +1050,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1033,41 +1059,41 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1075,23 +1101,23 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1099,47 +1125,47 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1147,105 +1173,105 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1256,72 +1282,96 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +msgid "pwfield (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "Noklusējuma: 0 (bez ierobežojuma)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1329,61 +1379,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "Noklusējuma: 1" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 #, fuzzy #| msgid "timeout (integer)" msgid "pam_response_filter (integer)" msgstr "noildze (vesels skaitlis)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1392,61 +1442,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder type=" "\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1454,7 +1504,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1463,17 +1513,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1481,26 +1531,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1510,74 +1560,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1585,19 +1635,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1605,12 +1655,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 msgid "pam_cert_auth (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1618,48 +1668,48 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 msgid "pam_cert_db_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 #, fuzzy #| msgid "timeout (integer)" msgid "p11_child_timeout (integer)" msgstr "noildze (vesels skaitlis)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1670,34 +1720,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1705,70 +1755,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 msgid "ca_db (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 #, fuzzy #| msgid "Default: /etc/krb5.keytab" msgid "Default: /etc/pki/nssdb" msgstr "Noklusējuma: /etc/krb5.keytab" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1780,7 +1830,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1791,24 +1841,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1816,12 +1866,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1830,38 +1880,38 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 #, fuzzy #| msgid "timeout (integer)" msgid "pac_lifetime (integer)" msgstr "noildze (vesels skaitlis)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -1870,46 +1920,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1921,14 +1971,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1937,39 +1987,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -1978,19 +2028,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -2001,151 +2051,151 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2153,24 +2203,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2179,17 +2229,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "Noklusējuma: 0 (neierobežots)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2198,33 +2248,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2232,8 +2282,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2242,8 +2292,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2251,19 +2301,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2272,7 +2322,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2280,22 +2330,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2307,7 +2357,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2315,19 +2365,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2335,7 +2385,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2343,30 +2393,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2374,19 +2424,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2395,7 +2445,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum></" @@ -2403,29 +2453,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "Noklusējuma: <quote>atļaut</quote>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2433,7 +2483,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2441,35 +2491,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2477,32 +2527,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2513,12 +2563,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2526,7 +2576,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2534,31 +2584,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2566,7 +2616,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2575,23 +2625,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2599,7 +2649,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2607,7 +2657,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2615,24 +2665,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2640,12 +2690,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2655,7 +2705,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2664,29 +2714,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2694,7 +2744,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2702,66 +2752,66 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "Noklusējuma: <quote>%1$s@%2$s</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "Atbalstītās vērtības:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2769,70 +2819,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "Noklusējuma: 6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2840,7 +2890,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2848,17 +2898,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2866,34 +2916,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2901,32 +2951,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2936,36 +2986,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 #, fuzzy #| msgid "timeout (integer)" msgid "cached_auth_timeout (int)" msgstr "noildze (vesels skaitlis)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -2973,12 +3023,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -2986,7 +3036,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -2994,29 +3044,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3024,12 +3074,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3038,12 +3088,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 msgid "proxy_max_children (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3051,19 +3101,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3071,73 +3121,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "Noklusējuma: <filename>/bin/bash</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3145,17 +3195,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "Noklusējuma: 077" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3164,17 +3214,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "Noklusējuma: <filename>/etc/skel</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3182,17 +3232,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "Noklusējuma: <filename>/var/mail</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3200,19 +3250,81 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +msgid "TRUSTED DOMAIN SECTION" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +msgid "ldap_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +msgid "ldap_user_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +msgid "ldap_group_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +msgid "ldap_netgroup_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +msgid "ldap_service_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "PIEMĒRS" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3242,7 +3354,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3289,7 +3401,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "KONFIGURĒŠANAS IESPĒJAS" @@ -4099,7 +4212,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "" @@ -5099,7 +5212,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "" @@ -6142,8 +6255,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" @@ -6177,7 +6290,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "PIEZĪMES" @@ -6190,25 +6303,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6218,11 +6324,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6230,34 +6337,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "<option>use_first_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6265,31 +6372,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "<option>use_authtok</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "<option>retry=N</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6297,36 +6404,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6334,7 +6441,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6344,21 +6451,21 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 #, fuzzy #| msgid "<option>forward_pass</option>" msgid "<option>allow_missing_name</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6366,7 +6473,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6376,25 +6483,42 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +#, fuzzy +#| msgid "<option>retry=N</option>" +msgid "<option>prompt_always</option>" +msgstr "<option>retry=N</option>" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -6402,7 +6526,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -6414,7 +6538,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -6819,17 +6943,37 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +msgid "dyndns_auth (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 1" +msgid "Default: GSS-TSIG" +msgstr "Noklusējuma: 1" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6841,12 +6985,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6854,216 +6998,216 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 msgid "dyndns_server (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7071,17 +7215,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7089,190 +7233,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7282,19 +7426,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7302,7 +7446,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7314,7 +7458,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -7322,7 +7466,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8267,7 +8411,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8275,7 +8419,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8290,7 +8434,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8299,7 +8443,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8307,7 +8451,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8317,7 +8461,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9442,7 +9586,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -9452,12 +9596,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -11010,6 +11154,66 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +#, fuzzy +#| msgid "sssd-simple" +msgid "sssd-files" +msgstr "sssd-simple" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 #, fuzzy #| msgid "sssd-simple" @@ -11689,6 +11893,13 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12299,8 +12510,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12446,28 +12657,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12479,13 +12700,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12493,7 +12709,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/po/nl.po sssd-1.15.2/src/man/po/nl.po --- sssd-1.15.0/src/man/po/nl.po 2017-01-25 15:44:05.931440325 +0000 +++ sssd-1.15.2/src/man/po/nl.po 2017-03-15 16:58:45.353938169 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-15 12:02-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: Dutch (http://www.transifex.com/projects/p/sssd/language/" @@ -30,7 +30,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "SSSD handleiding" @@ -40,7 +40,7 @@ msgstr "sss_groupmod" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -66,7 +66,7 @@ "arg>" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -74,7 +74,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "OMSCHRIJVING" @@ -88,7 +88,7 @@ "die via de opdrachtregel ingegeven zijn." #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -142,14 +142,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "Bestandsformaten en conventies" @@ -313,10 +313,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "Standaard: true" @@ -333,11 +334,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "" @@ -364,7 +366,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "" @@ -380,7 +382,7 @@ msgstr "De [sssd] sectie" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "Sectie parameters" @@ -430,12 +432,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "reconnection_retries (numeriek)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" @@ -444,7 +446,7 @@ "Data Aanbieder crashed of opnieuw start voordat dit opgegeven wordt" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "Standaard: 3" @@ -464,7 +466,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "re_expression (tekst)" @@ -484,12 +486,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "full_name_format (tekst)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -497,39 +499,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -667,7 +669,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -817,6 +819,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -829,12 +843,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "SERVICES SECTIE" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -843,22 +857,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "Algemene service configuratie-opties" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "Deze opties kunnen gebruikt worden om services te configureren." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -868,17 +882,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -886,18 +900,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -905,24 +919,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -930,12 +944,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -947,18 +961,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "NSS configuratie-opties" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" @@ -966,12 +992,12 @@ "configurere." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "enum_cache_timeout (numeriek)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" @@ -980,17 +1006,17 @@ "over alle gebruikers)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "Standaard: 120" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "entry_cache_nowait_percentage (numeriek)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -998,7 +1024,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -1008,7 +1034,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -1017,17 +1043,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "entry_negative_timeout (numeriek)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -1035,36 +1061,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 #, fuzzy #| msgid "entry_negative_timeout (integer)" msgid "local_negative_timeout (integer)" msgstr "entry_negative_timeout (numeriek)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "Standaard: 0" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1073,7 +1099,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1082,41 +1108,41 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1124,23 +1150,23 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1148,47 +1174,47 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1196,105 +1222,105 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1305,72 +1331,96 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +msgid "pwfield (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1378,61 +1428,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 #, fuzzy #| msgid "config_file_version (integer)" msgid "pam_response_filter (integer)" msgstr "config_file_version (numeriek)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1441,61 +1491,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder type=" "\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1503,7 +1553,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1512,17 +1562,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1530,26 +1580,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1559,74 +1609,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1634,19 +1684,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1654,12 +1704,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 msgid "pam_cert_auth (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1667,50 +1717,50 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 #, fuzzy #| msgid "full_name_format (string)" msgid "pam_cert_db_path (string)" msgstr "full_name_format (tekst)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 #, fuzzy #| msgid "enum_cache_timeout (integer)" msgid "p11_child_timeout (integer)" msgstr "enum_cache_timeout (numeriek)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1721,34 +1771,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1756,68 +1806,68 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 msgid "ca_db (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 msgid "Default: /etc/pki/nssdb" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1829,7 +1879,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1840,24 +1890,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1865,12 +1915,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1879,38 +1929,38 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 #, fuzzy #| msgid "enum_cache_timeout (integer)" msgid "pac_lifetime (integer)" msgstr "enum_cache_timeout (numeriek)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -1919,46 +1969,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1970,14 +2020,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1986,39 +2036,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -2027,19 +2077,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -2050,151 +2100,151 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2202,24 +2252,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2228,17 +2278,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2247,33 +2297,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2281,8 +2331,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2291,8 +2341,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2300,19 +2350,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2321,7 +2371,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2329,22 +2379,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2356,7 +2406,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2364,19 +2414,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2384,7 +2434,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2392,30 +2442,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2423,19 +2473,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2444,7 +2494,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum></" @@ -2452,29 +2502,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2482,7 +2532,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2490,35 +2540,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2526,32 +2576,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2562,12 +2612,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2575,7 +2625,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2583,31 +2633,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2615,7 +2665,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2624,23 +2674,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2648,7 +2698,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2656,7 +2706,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2664,24 +2714,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2689,12 +2739,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2704,7 +2754,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2713,29 +2763,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2746,7 +2796,7 @@ "het domein alles daarna\"" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2754,7 +2804,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." @@ -2763,59 +2813,59 @@ "(?P<name>) om subpatronen aan te geven." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "Standaard: <quote>%1$s@%2$s</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2823,70 +2873,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2894,7 +2944,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2902,17 +2952,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2920,34 +2970,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2955,32 +3005,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2990,36 +3040,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 #, fuzzy #| msgid "enum_cache_timeout (integer)" msgid "cached_auth_timeout (int)" msgstr "enum_cache_timeout (numeriek)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -3027,12 +3077,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -3040,7 +3090,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -3048,29 +3098,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3078,12 +3128,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3092,12 +3142,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 msgid "proxy_max_children (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3105,19 +3155,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3125,73 +3175,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3199,17 +3249,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3218,17 +3268,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3236,17 +3286,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3254,19 +3304,81 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +msgid "TRUSTED DOMAIN SECTION" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +msgid "ldap_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +msgid "ldap_user_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +msgid "ldap_group_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +msgid "ldap_netgroup_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +msgid "ldap_service_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3296,7 +3408,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3343,7 +3455,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "" @@ -4153,7 +4266,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "" @@ -5155,7 +5268,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "" @@ -6198,8 +6311,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" @@ -6233,7 +6346,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "" @@ -6246,25 +6359,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6274,11 +6380,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6286,34 +6393,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6321,31 +6428,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6353,36 +6460,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6390,7 +6497,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6400,19 +6507,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 msgid "<option>allow_missing_name</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6420,7 +6527,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6430,25 +6537,40 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +msgid "<option>prompt_always</option>" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -6456,7 +6578,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -6468,7 +6590,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -6873,17 +6995,37 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +msgid "dyndns_auth (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "Standaard: 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6895,12 +7037,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6908,216 +7050,216 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 msgid "dyndns_server (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7125,17 +7267,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7143,190 +7285,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7336,19 +7478,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7356,7 +7498,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7368,7 +7510,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -7376,7 +7518,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8321,7 +8463,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8329,7 +8471,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8344,7 +8486,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8353,7 +8495,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8361,7 +8503,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8371,7 +8513,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9508,7 +9650,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -9518,12 +9660,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -11094,6 +11236,64 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +msgid "sssd-files" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 msgid "sssd-secrets" msgstr "" @@ -11777,6 +11977,13 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12387,8 +12594,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12534,28 +12741,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12567,13 +12784,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12581,7 +12793,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/po/po4a.cfg sssd-1.15.2/src/man/po/po4a.cfg --- sssd-1.15.0/src/man/po/po4a.cfg 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/man/po/po4a.cfg 2017-03-15 16:53:24.000000000 +0000 @@ -28,6 +28,7 @@ [type:docbook] sss_ssh_knownhostsproxy.1.xml $lang:$(builddir)/$lang/sss_ssh_knownhostsproxy.1.xml [type:docbook] idmap_sss.8.xml $lang:$(builddir)/$lang/idmap_sss.8.xml [type:docbook] sssctl.8.xml $lang:$(builddir)/$lang/sssctl.8.xml +[type:docbook] sssd-files.5.xml $lang:$(builddir)/$lang/sssd-files.5.xml [type:docbook] sssd-secrets.5.xml $lang:$(builddir)/$lang/sssd-secrets.5.xml [type:docbook] include/service_discovery.xml $lang:$(builddir)/$lang/include/service_discovery.xml opt:"-k 0" [type:docbook] include/upstream.xml $lang:$(builddir)/$lang/include/upstream.xml opt:"-k 0" diff -Nru sssd-1.15.0/src/man/po/pt_BR.po sssd-1.15.2/src/man/po/pt_BR.po --- sssd-1.15.0/src/man/po/pt_BR.po 2017-01-25 15:44:05.940440361 +0000 +++ sssd-1.15.2/src/man/po/pt_BR.po 2017-03-15 16:58:45.361938201 +0000 @@ -1,11 +1,13 @@ # Marco Aurélio Krause <ouesten@me.com>, 2015. #zanata +# Rodrigo de Araujo Sousa Fonseca <rodrigodearaujo@fedoraproject.org>, 2017. #zanata msgid "" msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" -"PO-Revision-Date: 2015-10-27 08:16-0400\n" -"Last-Translator: Marco Aurélio Krause <ouesten@me.com>\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" +"PO-Revision-Date: 2017-01-29 10:11-0500\n" +"Last-Translator: Rodrigo de Araujo Sousa Fonseca " +"<rodrigodearaujo@fedoraproject.org>\n" "Language-Team: Portuguese (Brazil)\n" "Language: pt-BR\n" "MIME-Version: 1.0\n" @@ -24,17 +26,17 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> #: sss_groupmod.8.xml:10 sss_groupmod.8.xml:15 msgid "sss_groupmod" -msgstr "" +msgstr "sss_groupmod " #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -57,7 +59,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -65,7 +67,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "DESCRIÇÃO" @@ -77,7 +79,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -117,31 +119,31 @@ #. type: Content of: <reference><refentry><refnamediv><refname> #: sssd.conf.5.xml:10 sssd.conf.5.xml:16 msgid "sssd.conf" -msgstr "" +msgstr "ssd.conf " #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" -msgstr "" +msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> #: sssd.conf.5.xml:17 msgid "the configuration file for SSSD" -msgstr "" +msgstr "O arquivo de configuração para SSSD" #. type: Content of: <reference><refentry><refsect1><title> #: sssd.conf.5.xml:21 msgid "FILE FORMAT" -msgstr "" +msgstr "FORMATO DE ARQUIVO " #. type: Content of: <reference><refentry><refsect1><para><programlisting> #: sssd.conf.5.xml:29 @@ -236,7 +238,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd.conf.5.xml:98 msgid "GENERAL OPTIONS" -msgstr "" +msgstr "OPÇÕES GERAIS " #. type: Content of: <reference><refentry><refsect1><para> #: sssd.conf.5.xml:100 @@ -280,10 +282,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "" @@ -300,11 +303,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "" @@ -331,7 +335,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "" @@ -347,7 +351,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "" @@ -395,19 +399,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "" @@ -427,7 +431,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "" @@ -447,12 +451,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -460,39 +464,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -616,7 +620,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -762,6 +766,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -774,12 +790,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -788,22 +804,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -813,17 +829,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -831,18 +847,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -850,24 +866,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -875,12 +891,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -892,46 +908,58 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -939,7 +967,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -949,7 +977,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -958,17 +986,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -976,34 +1004,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 msgid "local_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1012,7 +1040,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1021,41 +1049,41 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1063,23 +1091,23 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1087,47 +1115,47 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1135,105 +1163,105 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1244,72 +1272,96 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +msgid "pwfield (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1317,59 +1369,59 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 msgid "pam_response_filter (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1378,61 +1430,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder type=" "\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1440,7 +1492,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1449,17 +1501,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1467,26 +1519,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1496,74 +1548,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1571,19 +1623,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1591,12 +1643,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 msgid "pam_cert_auth (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1604,46 +1656,46 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 msgid "pam_cert_db_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 msgid "p11_child_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1654,34 +1706,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1689,68 +1741,68 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 msgid "ca_db (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 msgid "Default: /etc/pki/nssdb" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1762,7 +1814,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1773,24 +1825,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1798,12 +1850,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1812,36 +1864,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 msgid "pac_lifetime (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -1850,46 +1902,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1901,14 +1953,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1917,39 +1969,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -1958,19 +2010,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -1981,151 +2033,151 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2133,24 +2185,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2159,17 +2211,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2178,33 +2230,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2212,8 +2264,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2222,8 +2274,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2231,19 +2283,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2252,7 +2304,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2260,22 +2312,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2287,7 +2339,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2295,19 +2347,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2315,7 +2367,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2323,30 +2375,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2354,19 +2406,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2375,7 +2427,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum></" @@ -2383,29 +2435,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2413,7 +2465,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2421,35 +2473,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2457,32 +2509,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2493,12 +2545,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2506,7 +2558,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2514,31 +2566,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2546,7 +2598,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2555,23 +2607,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2579,7 +2631,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2587,7 +2639,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2595,24 +2647,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2620,12 +2672,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2635,7 +2687,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2644,29 +2696,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2674,7 +2726,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2682,66 +2734,66 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2749,70 +2801,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2820,7 +2872,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2828,17 +2880,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2846,34 +2898,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2881,32 +2933,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2916,34 +2968,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 msgid "cached_auth_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -2951,12 +3003,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -2964,7 +3016,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -2972,29 +3024,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3002,12 +3054,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3016,12 +3068,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 msgid "proxy_max_children (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3029,19 +3081,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3049,73 +3101,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3123,17 +3175,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3142,17 +3194,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3160,17 +3212,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3178,19 +3230,81 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +msgid "TRUSTED DOMAIN SECTION" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +msgid "ldap_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +msgid "ldap_user_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +msgid "ldap_group_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +msgid "ldap_netgroup_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +msgid "ldap_service_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3220,7 +3334,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3267,7 +3381,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "" @@ -4077,7 +4192,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "" @@ -5075,7 +5190,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "" @@ -6116,8 +6231,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" @@ -6151,7 +6266,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "" @@ -6164,25 +6279,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6192,11 +6300,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6204,34 +6313,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6239,31 +6348,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6271,36 +6380,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6308,7 +6417,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6318,19 +6427,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 msgid "<option>allow_missing_name</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6338,7 +6447,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6348,25 +6457,40 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +msgid "<option>prompt_always</option>" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -6374,7 +6498,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -6386,7 +6510,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -6791,17 +6915,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +msgid "dyndns_auth (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +msgid "Default: GSS-TSIG" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6813,12 +6955,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6826,216 +6968,216 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 msgid "dyndns_server (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7043,17 +7185,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7061,190 +7203,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7254,19 +7396,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7274,7 +7416,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7286,7 +7428,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -7294,7 +7436,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8235,7 +8377,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8243,7 +8385,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8258,7 +8400,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8267,7 +8409,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8275,7 +8417,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8285,7 +8427,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9408,7 +9550,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -9418,12 +9560,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -10974,6 +11116,64 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +msgid "sssd-files" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 msgid "sssd-secrets" msgstr "" @@ -11637,6 +11837,13 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12247,8 +12454,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12394,28 +12601,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12427,13 +12644,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12441,7 +12653,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" @@ -12469,8 +12681,10 @@ #. type: Content of: <refsect1><title> #: include/ad_modified_defaults.xml:2 include/ipa_modified_defaults.xml:2 +#, fuzzy +#| msgid "GENERAL OPTIONS" msgid "MODIFIED DEFAULT OPTIONS" -msgstr "" +msgstr "OPÇÕES GERAIS " #. type: Content of: <refsect1><para> #: include/ad_modified_defaults.xml:4 diff -Nru sssd-1.15.0/src/man/po/pt.po sssd-1.15.2/src/man/po/pt.po --- sssd-1.15.0/src/man/po/pt.po 2017-01-25 15:44:05.935440341 +0000 +++ sssd-1.15.2/src/man/po/pt.po 2017-03-15 16:58:45.357938185 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-15 12:05-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: Portuguese (http://www.transifex.com/projects/p/sssd/language/" @@ -30,7 +30,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "Páginas de Manual de SSSD" @@ -40,7 +40,7 @@ msgstr "sss_groupmod" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -66,7 +66,7 @@ "arg>" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -74,7 +74,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "DESCRIÇÃO" @@ -88,7 +88,7 @@ "que são especificadas na linha de comando." #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -142,14 +142,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "Formatos de ficheiros e convenções" @@ -308,10 +308,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "" @@ -328,11 +329,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "Padrão: false" @@ -359,7 +361,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "Padrão: 10" @@ -375,7 +377,7 @@ msgstr "A seção [SSSD]" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "Parâmetros de secção" @@ -425,12 +427,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "reconnection_retries (integer)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" @@ -439,7 +441,7 @@ "falha do provedor de dados ou reiniciar antes de eles desistirem" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "Padrão: 3" @@ -459,7 +461,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "re_expression (string)" @@ -479,12 +481,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "full_name_format (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -492,39 +494,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -648,7 +650,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -800,6 +802,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -812,12 +826,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -826,22 +840,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -851,17 +865,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -869,18 +883,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "Padrão: 60" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -888,24 +902,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -913,12 +927,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -930,46 +944,58 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "Padrão: 300" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -977,7 +1003,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -987,7 +1013,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -996,17 +1022,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "Padrão: 50" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -1014,36 +1040,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 #, fuzzy #| msgid "ldap_network_timeout (integer)" msgid "local_negative_timeout (integer)" msgstr "ldap_network_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1052,7 +1078,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1061,41 +1087,41 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1103,23 +1129,23 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1127,47 +1153,47 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "allowed_shells (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1175,105 +1201,105 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "vetoed_shells (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "shell_fallback (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "Padrão: /bin/sh" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1284,72 +1310,98 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +#, fuzzy +#| msgid "skel_dir (string)" +msgid "pwfield (string)" +msgstr "skel_dir (string)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1357,61 +1409,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "Padrão: 1" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 #, fuzzy #| msgid "dns_resolver_timeout (integer)" msgid "pam_response_filter (integer)" msgstr "dns_resolver_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1420,61 +1472,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder type=" "\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "pam_id_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1482,7 +1534,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1491,17 +1543,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "pam_pwd_expiration_warning (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1509,26 +1561,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1538,74 +1590,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "Padrão: none" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1613,19 +1665,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1633,14 +1685,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 #, fuzzy #| msgid "enumerate (bool)" msgid "pam_cert_auth (bool)" msgstr "enumerate (bool)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1648,50 +1700,50 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 #, fuzzy #| msgid "ipa_hbac_search_base (string)" msgid "pam_cert_db_path (string)" msgstr "ipa_hbac_search_base (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "p11_child_timeout (integer)" msgstr "pam_id_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1702,34 +1754,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1737,72 +1789,72 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 #, fuzzy #| msgid "mail_dir (string)" msgid "ca_db (string)" msgstr "mail_dir (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 #, fuzzy #| msgid "Default: /etc/krb5.keytab" msgid "Default: /etc/pki/nssdb" msgstr "Padrão: /etc/krb5.keytab" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1814,7 +1866,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1825,24 +1877,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1850,12 +1902,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1864,38 +1916,38 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "pac_lifetime (integer)" msgstr "pam_id_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "SECÇÕES DE DOMÍNIO" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "min_id,max_id (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -1904,46 +1956,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "Padrão: 1 para min_id, 0 (sem limite) para max_id" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "enumerate (bool)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "Padrão: FALSE" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1955,14 +2007,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1971,39 +2023,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -2012,19 +2064,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "entry_cache_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -2035,151 +2087,151 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "Padrão: 5400" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "cache_credentials (bool)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2187,24 +2239,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "account_cache_expiration (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2213,17 +2265,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "Padrão: 0 (ilimitado)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2232,33 +2284,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "id_provider (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2266,8 +2318,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2276,8 +2328,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2285,19 +2337,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "use_fully_qualified_names (bool)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2306,7 +2358,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2314,22 +2366,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2341,7 +2393,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2349,19 +2401,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "auth_provider (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2369,7 +2421,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2377,30 +2429,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "access_provider (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2408,19 +2460,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2429,7 +2481,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum></" @@ -2437,29 +2489,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2467,7 +2519,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2475,35 +2527,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2511,32 +2563,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2547,12 +2599,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2560,7 +2612,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2568,31 +2620,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2600,7 +2652,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2609,23 +2661,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2633,7 +2685,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2641,7 +2693,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2649,24 +2701,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2674,12 +2726,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2689,7 +2741,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2698,29 +2750,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2728,7 +2780,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2736,66 +2788,66 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "Default: <quote>%1$s@%2$s</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "Default: ipv4_first" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "dns_resolver_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2803,70 +2855,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "Padrão: 6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "dns_discovery_domain (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "override_gid (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2874,7 +2926,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2882,17 +2934,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2900,34 +2952,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2935,32 +2987,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2970,36 +3022,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 #, fuzzy #| msgid "krb5_auth_timeout (integer)" msgid "cached_auth_timeout (int)" msgstr "krb5_auth_timeout (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -3007,12 +3059,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -3020,7 +3072,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -3028,29 +3080,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "proxy_pam_target (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "proxy_lib_name (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3058,12 +3110,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3072,14 +3124,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 #, fuzzy #| msgid "min_id,max_id (integer)" msgid "proxy_max_children (integer)" msgstr "min_id,max_id (integer)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3087,19 +3139,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "A secção de domínio local" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3107,73 +3159,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "default_shell (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "Padrão: <filename>bash/bin/bash</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "base_directory (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "Padrão: <filename>/ home</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "create_homedir (bool)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "Padrão: TRUE" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "remove_homedir (bool)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "homedir_umask (integer)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3181,17 +3233,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "Padrão: 077" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "skel_dir (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3200,17 +3252,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "Padrão: <filename>skel/etc/skel</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "mail_dir (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3218,17 +3270,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "Padrão: <filename>mail/var/mail</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "userdel_cmd (string)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3236,19 +3288,93 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "Padrão: None, nenhum comando é executado" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +#, fuzzy +#| msgid "DOMAIN SECTIONS" +msgid "TRUSTED DOMAIN SECTION" +msgstr "SECÇÕES DE DOMÍNIO" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +#, fuzzy +#| msgid "ldap_search_base (string)" +msgid "ldap_search_base," +msgstr "ldap_search_base (string)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +#, fuzzy +#| msgid "ldap_user_search_base (string)" +msgid "ldap_user_search_base," +msgstr "ldap_user_search_base (string)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +#, fuzzy +#| msgid "ldap_group_search_base (string)" +msgid "ldap_group_search_base," +msgstr "ldap_group_search_base (string)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +#, fuzzy +#| msgid "ldap_netgroup_search_base (string)" +msgid "ldap_netgroup_search_base," +msgstr "ldap_netgroup_search_base (string)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +#, fuzzy +#| msgid "ldap_user_search_base (string)" +msgid "ldap_service_search_base," +msgstr "ldap_user_search_base (string)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "EXEMPLO" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3302,7 +3428,7 @@ "enumerate = False\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3349,7 +3475,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "OPÇÕES DE CONFIGURAÇÃO" @@ -4165,7 +4292,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "Padrão: NC" @@ -5172,7 +5299,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "krb5_realm (string)" @@ -6215,8 +6342,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "<placeholder type=\"programlisting\" id=\"0\"/>" @@ -6250,7 +6377,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "NOTAS" @@ -6263,25 +6390,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "pam_sss" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "Módulo PAM para SSSD" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6291,11 +6411,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6303,34 +6424,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "<option>quiet</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "<option>use_first_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6338,31 +6459,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "<option>use_authtok</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "<option>retry=N</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6370,36 +6491,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6407,7 +6528,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6417,21 +6538,21 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 #, fuzzy #| msgid "<option>forward_pass</option>" msgid "<option>allow_missing_name</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6439,7 +6560,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6449,25 +6570,42 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +#, fuzzy +#| msgid "<option>retry=N</option>" +msgid "<option>prompt_always</option>" +msgstr "<option>retry=N</option>" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "MÓDULOS TIPO FORNECIDOS" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "FICHEIROS" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -6475,7 +6613,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -6487,7 +6625,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -6892,17 +7030,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +#, fuzzy +#| msgid "ldap_sasl_authid (string)" +msgid "dyndns_auth (string)" +msgstr "ldap_sasl_authid (string)" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "Padrão: 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6914,12 +7074,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6927,218 +7087,218 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 #, fuzzy #| msgid "id_provider (string)" msgid "dyndns_server (string)" msgstr "id_provider (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "ipa_hbac_search_base (string)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "Default: Use base DN" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7146,17 +7306,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7164,190 +7324,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7357,19 +7517,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7377,7 +7537,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7389,7 +7549,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -7397,7 +7557,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8344,7 +8504,7 @@ msgstr "Padrão: TRUE" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8352,7 +8512,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8367,7 +8527,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8376,7 +8536,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8384,7 +8544,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8394,7 +8554,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9551,7 +9711,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "%P" @@ -9561,12 +9721,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "%%" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "um literal '%'" @@ -11146,6 +11306,66 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +#, fuzzy +#| msgid "sssd-simple" +msgid "sssd-files" +msgstr "sssd-simple" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 #, fuzzy #| msgid "sssd-simple" @@ -11845,6 +12065,13 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12457,8 +12684,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12604,28 +12831,38 @@ msgid "fully qualified user name (user@domain)" msgstr "nome totalmente qualificado do utilizador (utilizador@domínio)" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12637,13 +12874,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12651,7 +12883,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/po/ru.po sssd-1.15.2/src/man/po/ru.po --- sssd-1.15.0/src/man/po/ru.po 2017-01-25 15:44:05.946440386 +0000 +++ sssd-1.15.2/src/man/po/ru.po 2017-03-15 16:58:45.365938217 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-15 12:07-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: Russian (http://www.transifex.com/projects/p/sssd/language/" @@ -31,7 +31,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "Справка по SSSD" @@ -41,7 +41,7 @@ msgstr "" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -64,7 +64,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -72,7 +72,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "ОПИСАНИЕ" @@ -84,7 +84,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -129,14 +129,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "" @@ -287,10 +287,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "" @@ -307,11 +308,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "По умолчанию: false" @@ -338,7 +340,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "По умолчанию: 10" @@ -354,7 +356,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "" @@ -402,19 +404,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "попыток_соединения (целое число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "По умолчанию: 3" @@ -434,7 +436,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "" @@ -454,12 +456,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -467,39 +469,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -623,7 +625,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -769,6 +771,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -781,12 +795,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -795,22 +809,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -820,17 +834,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -838,18 +852,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -857,24 +871,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -882,12 +896,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -899,46 +913,58 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "По умолчанию: 120" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -946,7 +972,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -956,7 +982,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -965,17 +991,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -983,36 +1009,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "По умолчанию: 15" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 #, fuzzy #| msgid "reconnection_retries (integer)" msgid "local_negative_timeout (integer)" msgstr "попыток_соединения (целое число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1021,7 +1047,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1030,41 +1056,41 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "По умолчанию: root" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1072,23 +1098,23 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1096,47 +1122,47 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1144,105 +1170,105 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1253,72 +1279,96 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +msgid "pwfield (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "По умолчанию: 0 (неограничено)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1326,61 +1376,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "По умолчанию: 5" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "В настоящее время sssd поддерживает следующие значения:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "По умолчанию: 1" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 #, fuzzy #| msgid "reconnection_retries (integer)" msgid "pam_response_filter (integer)" msgstr "попыток_соединения (целое число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1389,61 +1439,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder type=" "\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1451,7 +1501,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1460,17 +1510,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1478,26 +1528,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1507,74 +1557,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1582,19 +1632,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1602,12 +1652,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 msgid "pam_cert_auth (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1615,46 +1665,46 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 msgid "pam_cert_db_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 msgid "p11_child_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1665,34 +1715,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1700,70 +1750,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 msgid "ca_db (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 #, fuzzy #| msgid "Default: gecos" msgid "Default: /etc/pki/nssdb" msgstr "По умолчанию: gecos" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1775,7 +1825,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1786,24 +1836,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1811,12 +1861,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1825,38 +1875,38 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 #, fuzzy #| msgid "reconnection_retries (integer)" msgid "pac_lifetime (integer)" msgstr "попыток_соединения (целое число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -1865,46 +1915,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "По умолчанию: FALSE" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1916,14 +1966,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1932,39 +1982,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -1973,19 +2023,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -1996,151 +2046,151 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2148,24 +2198,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2174,17 +2224,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2193,33 +2243,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2227,8 +2277,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2237,8 +2287,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2246,19 +2296,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2267,7 +2317,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2275,22 +2325,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2302,7 +2352,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2310,19 +2360,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2330,7 +2380,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2338,30 +2388,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2369,19 +2419,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2390,7 +2440,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum></" @@ -2398,29 +2448,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2428,7 +2478,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2436,35 +2486,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2472,32 +2522,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2508,12 +2558,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2521,7 +2571,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2529,31 +2579,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2561,7 +2611,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2570,23 +2620,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2594,7 +2644,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2602,7 +2652,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2610,24 +2660,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2635,12 +2685,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2650,7 +2700,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2659,29 +2709,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2689,7 +2739,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2697,66 +2747,66 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "По умолчанию: <quote>%1$s@%2$s</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "Поддерживаемые значения:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2764,70 +2814,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "По умолчанию: использовать доменное имя из hostname" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2835,7 +2885,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2843,17 +2893,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2861,34 +2911,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2896,32 +2946,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2931,34 +2981,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 msgid "cached_auth_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -2966,12 +3016,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -2979,7 +3029,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -2987,29 +3037,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3017,12 +3067,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3031,12 +3081,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 msgid "proxy_max_children (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3044,19 +3094,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3064,73 +3114,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "По умолчанию: <filename>/home</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "По умолчанию: TRUE" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3138,17 +3188,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "По умолчанию: 077" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3157,17 +3207,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "По умолчанию: <filename>/etc/skel</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3175,17 +3225,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "По умолчанию: <filename>/var/mail</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3193,19 +3243,81 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +msgid "TRUSTED DOMAIN SECTION" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +msgid "ldap_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +msgid "ldap_user_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +msgid "ldap_group_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +msgid "ldap_netgroup_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +msgid "ldap_service_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "ПРИМЕР" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3235,7 +3347,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3282,7 +3394,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "ПАРАМЕТРЫ КОНФИГУРАЦИИ" @@ -4092,7 +4205,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "" @@ -5092,7 +5205,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "" @@ -6133,8 +6246,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" @@ -6168,7 +6281,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "" @@ -6181,25 +6294,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6209,11 +6315,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6221,34 +6328,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6256,31 +6363,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6288,36 +6395,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6325,7 +6432,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6335,19 +6442,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 msgid "<option>allow_missing_name</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6355,7 +6462,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6365,25 +6472,40 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +msgid "<option>prompt_always</option>" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -6391,7 +6513,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -6403,7 +6525,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -6808,17 +6930,37 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +msgid "dyndns_auth (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "По умолчанию: 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6830,12 +6972,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6843,216 +6985,216 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 msgid "dyndns_server (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7060,17 +7202,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7078,190 +7220,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7271,19 +7413,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7291,7 +7433,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7303,7 +7445,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -7311,7 +7453,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8254,7 +8396,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8262,7 +8404,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8277,7 +8419,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8286,7 +8428,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8294,7 +8436,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8304,7 +8446,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9427,7 +9569,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -9437,12 +9579,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -10995,6 +11137,64 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +msgid "sssd-files" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 msgid "sssd-secrets" msgstr "" @@ -11670,6 +11870,13 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12280,8 +12487,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12427,28 +12634,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12460,13 +12677,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12474,7 +12686,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/po/sssd-docs.pot sssd-1.15.2/src/man/po/sssd-docs.pot --- sssd-1.15.0/src/man/po/sssd-docs.pot 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/man/po/sssd-docs.pot 2017-03-15 16:53:24.000000000 +0000 @@ -6,9 +6,9 @@ #, fuzzy msgid "" msgstr "" -"Project-Id-Version: sssd-docs 1.14.90\n" +"Project-Id-Version: sssd-docs 1.15.2\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:21+0100\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME <EMAIL@ADDRESS>\n" "Language-Team: LANGUAGE <LL@li.org>\n" @@ -18,7 +18,7 @@ "Content-Transfer-Encoding: 8bit\n" #. type: Content of: <reference><title> -#: sss_groupmod.8.xml:5 sssd.conf.5.xml:5 sssd-ldap.5.xml:5 pam_sss.8.xml:5 sssd_krb5_locator_plugin.8.xml:5 sssd-simple.5.xml:5 sssd-ipa.5.xml:5 sssd-ad.5.xml:5 sssd-sudo.5.xml:5 sssd.8.xml:5 sss_obfuscate.8.xml:5 sss_override.8.xml:5 sss_useradd.8.xml:5 sssd-krb5.5.xml:5 sss_groupadd.8.xml:5 sss_userdel.8.xml:5 sss_groupdel.8.xml:5 sss_groupshow.8.xml:5 sss_usermod.8.xml:5 sss_cache.8.xml:5 sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 sssd-secrets.5.xml:5 +#: sss_groupmod.8.xml:5 sssd.conf.5.xml:5 sssd-ldap.5.xml:5 pam_sss.8.xml:5 sssd_krb5_locator_plugin.8.xml:5 sssd-simple.5.xml:5 sssd-ipa.5.xml:5 sssd-ad.5.xml:5 sssd-sudo.5.xml:5 sssd.8.xml:5 sss_obfuscate.8.xml:5 sss_override.8.xml:5 sss_useradd.8.xml:5 sssd-krb5.5.xml:5 sss_groupadd.8.xml:5 sss_userdel.8.xml:5 sss_groupdel.8.xml:5 sss_groupshow.8.xml:5 sss_usermod.8.xml:5 sss_cache.8.xml:5 sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "" @@ -28,7 +28,7 @@ msgstr "" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 sss_cache.8.xml:11 sss_debuglevel.8.xml:11 sss_seed.8.xml:11 idmap_sss.8.xml:11 sssctl.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 sss_cache.8.xml:11 sss_debuglevel.8.xml:11 sss_seed.8.xml:11 idmap_sss.8.xml:11 sssctl.8.xml:11 msgid "8" msgstr "" @@ -46,7 +46,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 sss_groupadd.8.xml:30 sss_userdel.8.xml:30 sss_groupdel.8.xml:30 sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 sss_groupadd.8.xml:30 sss_userdel.8.xml:30 sss_groupdel.8.xml:30 sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "" @@ -58,7 +58,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 sss_ssh_authorizedkeys.1.xml:66 sss_ssh_knownhostsproxy.1.xml:62 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 sss_ssh_authorizedkeys.1.xml:66 sss_ssh_knownhostsproxy.1.xml:62 msgid "OPTIONS" msgstr "" @@ -98,12 +98,12 @@ msgstr "" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> -#: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "" @@ -254,7 +254,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 msgid "Default: true" msgstr "" @@ -271,7 +271,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 msgid "Default: false" msgstr "" @@ -298,7 +298,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "" @@ -313,7 +313,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "" @@ -362,19 +362,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "" @@ -394,7 +394,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "" @@ -414,12 +414,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> " "<manvolnum>3</manvolnum> </citerefentry>-compatible format that describes " @@ -428,39 +428,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -584,7 +584,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 include/ldap_id_mapping.xml:216 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 include/ldap_id_mapping.xml:216 msgid "Default: not set" msgstr "" @@ -725,6 +725,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -737,12 +749,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -751,22 +763,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -776,17 +788,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -794,17 +806,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -812,24 +824,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -837,12 +849,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -854,46 +866,58 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 sssd-ldap.5.xml:722 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) " "service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -901,7 +925,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -911,7 +935,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -920,17 +944,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -938,34 +962,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 msgid "local_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -974,7 +998,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -983,39 +1007,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1023,22 +1047,22 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1046,46 +1070,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in " "<quote>/etc/shells</quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in " "<quote>/etc/shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1093,56 +1117,56 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the " "machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during " "lookup. This option can be specified globally in the [nss] section or " @@ -1150,50 +1174,50 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1205,72 +1229,96 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +msgid "pwfield (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1278,59 +1326,59 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during " "authentication. The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 msgid "pam_response_filter (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1339,61 +1387,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder " "type=\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1401,7 +1449,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a " @@ -1411,17 +1459,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1429,7 +1477,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be " @@ -1437,19 +1485,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting " "<emphasis>pwd_expiration_warning</emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1459,72 +1507,72 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1532,19 +1580,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1552,12 +1600,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 msgid "pam_cert_auth (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1565,44 +1613,44 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 include/ldap_id_mapping.xml:244 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 msgid "pam_cert_db_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 msgid "p11_child_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> " @@ -1614,34 +1662,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1649,68 +1697,68 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 msgid "ca_db (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 msgid "Default: /etc/pki/nssdb" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1722,7 +1770,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1733,24 +1781,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1758,12 +1806,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1772,36 +1820,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 msgid "pac_lifetime (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For " @@ -1810,46 +1858,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1861,14 +1909,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1877,39 +1925,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -1918,19 +1966,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -1941,150 +1989,150 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the " "cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2092,24 +2140,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2118,17 +2166,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2137,34 +2185,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> " @@ -2172,7 +2220,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2181,7 +2229,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> " @@ -2189,19 +2237,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified " "names. For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2210,7 +2258,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2218,22 +2266,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2245,7 +2293,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2253,19 +2301,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> " @@ -2273,7 +2321,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> " @@ -2281,29 +2329,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2311,19 +2359,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> " @@ -2332,7 +2380,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> " @@ -2341,29 +2389,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> " @@ -2372,7 +2420,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> " @@ -2380,34 +2428,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> " @@ -2415,31 +2463,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2450,12 +2498,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2463,7 +2511,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2472,31 +2520,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2505,7 +2553,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2514,22 +2562,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> " @@ -2537,7 +2585,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> " @@ -2545,7 +2593,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> " @@ -2553,24 +2601,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2579,12 +2627,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2594,7 +2642,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: " "<quote>(((?P<domain>[^\\\\]+)\\\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?P<name>[^@\\\\]+)$))</quote> " @@ -2602,29 +2650,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2632,7 +2680,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2640,66 +2688,66 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax " "(?P<name>) to label subpatterns." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2707,69 +2755,69 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2777,7 +2825,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2785,17 +2833,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2803,34 +2851,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2838,32 +2886,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2873,32 +2921,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 msgid "cached_auth_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -2906,12 +2954,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -2919,7 +2967,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called " @@ -2928,29 +2976,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -2958,12 +3006,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -2972,12 +3020,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 msgid "proxy_max_children (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -2985,19 +3033,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" " "id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3005,73 +3053,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3079,17 +3127,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3098,17 +3146,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3116,17 +3164,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3134,17 +3182,78 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +msgid "TRUSTED DOMAIN SECTION" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called " +"<quote>[domain/<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</replaceable>]</quote>. " +"Currently supported options in the trusted domain section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +msgid "ldap_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +msgid "ldap_user_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +msgid "ldap_group_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +msgid "ldap_netgroup_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +msgid "ldap_service_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3174,7 +3283,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3221,7 +3330,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "" @@ -4031,7 +4140,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "" @@ -5029,7 +5138,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "" @@ -6073,7 +6182,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><para> -#: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 include/ldap_id_mapping.xml:105 +#: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" @@ -6106,7 +6215,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "" @@ -6119,25 +6228,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - " -"http://fedorahosted.org/sssd</orgname>" -msgstr "" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> " "<replaceable>quiet</replaceable> </arg> <arg choice='opt'> " @@ -6148,11 +6250,12 @@ "<replaceable>ignore_unknown_user</replaceable> </arg> <arg choice='opt'> " "<replaceable>ignore_authinfo_unavail</replaceable> </arg> <arg choice='opt'> " "<replaceable>domains=X</replaceable> </arg> <arg choice='opt'> " -"<replaceable>allow_missing_name</replaceable> </arg>" +"<replaceable>allow_missing_name</replaceable> </arg> <arg choice='opt'> " +"<replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6160,34 +6263,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6196,31 +6299,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6228,36 +6331,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6265,7 +6368,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6275,19 +6378,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 msgid "<option>allow_missing_name</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6295,7 +6398,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6305,25 +6408,40 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +msgid "<option>prompt_always</option>" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be " @@ -6332,7 +6450,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file " "<filename>pam_sss_pw_reset_message.LOC</filename> where LOC stands for a " @@ -6345,7 +6463,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory " "<filename>/etc/sssd/customize/DOMAIN_NAME/</filename>. If no matching file " @@ -6753,17 +6871,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +msgid "dyndns_auth (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +msgid "Default: GSS-TSIG" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6776,12 +6912,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6789,214 +6925,214 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 msgid "dyndns_server (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7004,17 +7140,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7022,190 +7158,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7215,19 +7351,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7235,7 +7371,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of " "sssd.conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7247,7 +7383,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and " "example.com is one of the domains in the <replaceable>[sssd]</replaceable> " @@ -7255,7 +7391,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8195,7 +8331,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and " "example.com is one of the domains in the <replaceable>[sssd]</replaceable> " @@ -8203,7 +8339,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8218,7 +8354,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8227,7 +8363,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8235,7 +8371,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8245,7 +8381,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9370,7 +9506,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -9380,12 +9516,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -10944,6 +11080,66 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +msgid "sssd-files" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> " +"</citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> " +"<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> " +"</citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> " +"</citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> " +"<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> " +"</citerefentry> manual page for details on the configuration of an SSSD " +"domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 msgid "sssd-secrets" msgstr "" @@ -11607,6 +11803,13 @@ msgid "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - " +"https://pagure.io/SSSD/sssd/</orgname>" +msgstr "" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12219,7 +12422,7 @@ #: include/experimental.xml:1 msgid "" "<emphasis> This is an experimental feature, please use " -"http://fedorahosted.org/sssd to report any issues. </emphasis>" +"https://pagure.io/SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12377,28 +12580,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12410,13 +12623,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12424,7 +12632,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/po/tg.po sssd-1.15.2/src/man/po/tg.po --- sssd-1.15.0/src/man/po/tg.po 2017-01-25 15:44:05.950440402 +0000 +++ sssd-1.15.2/src/man/po/tg.po 2017-03-15 16:58:45.369938233 +0000 @@ -7,7 +7,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-15 12:10-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: Tajik (http://www.transifex.com/projects/p/sssd/language/" @@ -29,7 +29,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "" @@ -39,7 +39,7 @@ msgstr "" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -62,7 +62,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -70,7 +70,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "ШАРҲ" @@ -82,7 +82,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -127,14 +127,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "" @@ -285,10 +285,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "Пешфарз: true" @@ -305,11 +306,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "Пешфарз: false" @@ -336,7 +338,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "Пешфарз: 10" @@ -352,7 +354,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "" @@ -400,19 +402,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "Пешфарз: 3" @@ -432,7 +434,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "" @@ -452,12 +454,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -465,39 +467,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -621,7 +623,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -767,6 +769,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -779,12 +793,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -793,22 +807,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -818,17 +832,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -836,18 +850,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -855,24 +869,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -880,12 +894,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -897,46 +911,58 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "Пешфарз: 120" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -944,7 +970,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -954,7 +980,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -963,17 +989,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "Пешфарз: 50" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -981,34 +1007,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "Пешфарз: 15" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 msgid "local_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "Пешфарз: 0" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1017,7 +1043,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1026,41 +1052,41 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "Пешфарз: root" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1068,23 +1094,23 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1092,47 +1118,47 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1140,105 +1166,105 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "Пешфарз: /bin/sh" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1249,72 +1275,96 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +msgid "pwfield (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "Пешфарз: 0 (Номаҳдуд)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1322,59 +1372,59 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "Пешфарз: 5" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "Пешфарз: 1" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 msgid "pam_response_filter (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1383,61 +1433,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder type=" "\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1445,7 +1495,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1454,17 +1504,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1472,26 +1522,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1501,74 +1551,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1576,19 +1626,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1596,12 +1646,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 msgid "pam_cert_auth (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1609,46 +1659,46 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 msgid "pam_cert_db_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 msgid "p11_child_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1659,34 +1709,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1694,70 +1744,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 msgid "ca_db (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 #, fuzzy #| msgid "Default: /bin/sh" msgid "Default: /etc/pki/nssdb" msgstr "Пешфарз: /bin/sh" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1769,7 +1819,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1780,24 +1830,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1805,12 +1855,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1819,36 +1869,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 msgid "pac_lifetime (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -1857,46 +1907,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "Пешфарз: FALSE" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1908,14 +1958,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1924,39 +1974,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -1965,19 +2015,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -1988,151 +2038,151 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "Пешфарз: 5400" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2140,24 +2190,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2166,17 +2216,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "Пешфарз: 0 (номаҳдуд)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2185,33 +2235,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2219,8 +2269,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2229,8 +2279,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2238,19 +2288,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2259,7 +2309,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2267,22 +2317,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2294,7 +2344,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2302,19 +2352,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2322,7 +2372,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2330,30 +2380,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2361,19 +2411,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2382,7 +2432,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum></" @@ -2390,29 +2440,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2420,7 +2470,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2428,35 +2478,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2464,32 +2514,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2500,12 +2550,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2513,7 +2563,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2521,31 +2571,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2553,7 +2603,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2562,23 +2612,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2586,7 +2636,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2594,7 +2644,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2602,24 +2652,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2627,12 +2677,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2642,7 +2692,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2651,29 +2701,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2681,7 +2731,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2689,66 +2739,66 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2756,70 +2806,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "Пешфарз: 6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2827,7 +2877,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2835,17 +2885,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2853,34 +2903,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2888,32 +2938,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2923,34 +2973,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 msgid "cached_auth_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -2958,12 +3008,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -2971,7 +3021,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -2979,29 +3029,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3009,12 +3059,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3023,12 +3073,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 msgid "proxy_max_children (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3036,19 +3086,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3056,73 +3106,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "Пешфарз: TRUE" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3130,17 +3180,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3149,17 +3199,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3167,17 +3217,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3185,19 +3235,81 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +msgid "TRUSTED DOMAIN SECTION" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +msgid "ldap_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +msgid "ldap_user_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +msgid "ldap_group_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +msgid "ldap_netgroup_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +msgid "ldap_service_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "НАМУНА" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3227,7 +3339,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3274,7 +3386,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "" @@ -4084,7 +4197,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "" @@ -5084,7 +5197,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "" @@ -6125,8 +6238,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" @@ -6160,7 +6273,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "ЭЗОҲҲО" @@ -6173,25 +6286,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6201,11 +6307,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6213,34 +6320,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6248,31 +6355,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6280,36 +6387,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6317,7 +6424,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6327,19 +6434,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 msgid "<option>allow_missing_name</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6347,7 +6454,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6357,25 +6464,40 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +msgid "<option>prompt_always</option>" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "ФАЙЛҲО" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -6383,7 +6505,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -6395,7 +6517,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -6800,17 +6922,37 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +msgid "dyndns_auth (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "Пешфарз: 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6822,12 +6964,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6835,216 +6977,216 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 msgid "dyndns_server (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7052,17 +7194,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7070,190 +7212,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7263,19 +7405,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7283,7 +7425,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7295,7 +7437,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -7303,7 +7445,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8246,7 +8388,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8254,7 +8396,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8269,7 +8411,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8278,7 +8420,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8286,7 +8428,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8296,7 +8438,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9419,7 +9561,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -9429,12 +9571,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -10987,6 +11129,64 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +msgid "sssd-files" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 msgid "sssd-secrets" msgstr "" @@ -11660,6 +11860,13 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12270,8 +12477,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12417,28 +12624,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12450,13 +12667,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12464,7 +12676,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/po/uk.po sssd-1.15.2/src/man/po/uk.po --- sssd-1.15.0/src/man/po/uk.po 2017-01-25 15:44:05.954440418 +0000 +++ sssd-1.15.2/src/man/po/uk.po 2017-03-15 16:58:45.373938249 +0000 @@ -11,7 +11,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2015-06-26 04:33-0400\n" "Last-Translator: Yuri Chornoivan <yurchor@ukr.net>\n" "Language-Team: Ukrainian (http://www.transifex.com/projects/p/sssd/language/" @@ -34,7 +34,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "Сторінки підручника SSSD" @@ -44,7 +44,7 @@ msgstr "sss_groupmod" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -70,7 +70,7 @@ "arg>" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -78,7 +78,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "ОПИС" @@ -92,7 +92,7 @@ "внесених за допомогою командного рядка." #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -146,14 +146,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "Формати файлів та правила" @@ -329,10 +329,11 @@ "проігноровано." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "Типове значення: true" @@ -352,11 +353,12 @@ "journald, цей параметр буде проігноровано." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "Типове значення: false" @@ -385,7 +387,7 @@ "перевірки працездатності процесу та його змоги відповідати на запити." #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "Типове значення: 10" @@ -401,7 +403,7 @@ msgstr "Розділ [sssd]" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "Параметри розділу" @@ -455,12 +457,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "reconnection_retries (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" @@ -470,7 +472,7 @@ "визнання подальших спроб безнадійними." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "Типове значення: 3" @@ -496,7 +498,7 @@ "ASCII, дефісів, крапок та знаків підкреслювання." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "re_expression (рядок)" @@ -522,12 +524,12 @@ "ДОМЕНІВ." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "full_name_format (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -539,32 +541,32 @@ "домену." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "%1$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "ім’я користувача" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "%2$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "назва домену у форматі, вказаному у файлі налаштувань SSSD." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "%3$s" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." @@ -573,7 +575,7 @@ "Directory, налаштованих та автоматично виявлених за зв’язками довіри IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -731,7 +733,7 @@ "use_fully_qualified_names рівним False." #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -905,6 +907,20 @@ msgid "Default: false (netlink changes are detected)" msgstr "Типове значення: False (вимкнено)" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +#, fuzzy +#| msgid "ad_enable_dns_sites (boolean)" +msgid "enable_files_domain (boolean)" +msgstr "ad_enable_dns_sites (булеве значення)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -922,12 +938,12 @@ "профілів. <placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "РОЗДІЛИ СЛУЖБ" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -940,22 +956,22 @@ "у розділі <quote>[nss]</quote>" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "Загальні параметри налаштування служб" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "Цими параметрами можна скористатися для налаштування будь-яких служб." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "fd_limit" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -971,17 +987,17 @@ "цього параметра і обмеженням \"hard\" у limits.conf." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "Типове значення: 8192 (або обмеження у limits.conf \"hard\")" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -993,18 +1009,18 @@ "вичерпання ресурсів системи." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "Типове значення: 60" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "offline_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -1016,12 +1032,12 @@ "значення вказується у секундах і обчислюється за такою формулою:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "час_очікування_для_переходу_у_автономний_режим + випадковий_зсув" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" @@ -1031,12 +1047,12 @@ "таким чином:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "новий_інтервал = старий_інтервал*2 + випадковий_зсув" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -1047,14 +1063,14 @@ "перевищує годину, буде встановлено інтервал у одну годину." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 #, fuzzy #| msgid "client_idle_timeout" msgid "responder_idle_timeout" msgstr "client_idle_timeout" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -1066,18 +1082,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "Типове значення: 300" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "Параметри налаштування NSS" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" @@ -1085,12 +1113,12 @@ "Switch (NSS або перемикання служби визначення назв)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "enum_cache_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" @@ -1099,17 +1127,17 @@ "кеші nss_sss у секундах" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "Типове значення: 120" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "entry_cache_nowait_percentage (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -1120,7 +1148,7 @@ "entry_cache_timeout для домену період часу." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -1135,7 +1163,7 @@ "розблокування після оновлення кешу." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -1149,17 +1177,17 @@ "можливість." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "Типове значення: 50" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "entry_negative_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -1170,19 +1198,19 @@ "даних, зокрема неіснуючих) перед повторним запитом до сервера обробки." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "Типове значення: 15" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 #, fuzzy #| msgid "autofs_negative_timeout (integer)" msgid "local_negative_timeout (integer)" msgstr "autofs_negative_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 #, fuzzy #| msgid "" #| "Specifies for how many seconds nss_sss should cache negative cache hits " @@ -1197,17 +1225,17 @@ "даних, зокрема неіснуючих) перед повторним запитом до сервера обробки." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "Типове значення: 0" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "filter_users, filter_groups (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 #, fuzzy #| msgid "" #| "Exclude certain users from being fetched from the sss NSS database. This " @@ -1227,7 +1255,7 @@ "списку користувачами лише з певного домену." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1236,17 +1264,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "Типове значення: root" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "filter_users_in_groups (булеве значення)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" @@ -1254,12 +1282,12 @@ "встановіть для цього параметра значення «false»." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "fallback_homedir (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." @@ -1268,7 +1296,7 @@ "каталог не вказано явним чином засобом надання даних домену." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" @@ -1276,7 +1304,7 @@ "для параметра override_homedir." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1286,25 +1314,25 @@ " " #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "приклад: <placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" "Типове значення: не встановлено (без замін для невстановлених домашніх " "каталогів)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "override_shell (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1316,19 +1344,19 @@ "або для кожного з доменів окремо." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" "Типове значення: не встановлено (SSSD використовуватиме значення, отримане " "від LDAP)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "allowed_shells (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" @@ -1336,13 +1364,13 @@ "визначення оболонки є таким:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" "1. Якщо оболонку вказано у <quote>/etc/shells</quote>, її буде використано." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." @@ -1352,7 +1380,7 @@ "shell_fallback." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." @@ -1361,14 +1389,14 @@ "<quote>/etc/shells</quote>, буде використано оболонку nologin." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" "Для визначення будь-якої командної оболонки можна скористатися шаблоном " "заміни (*)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1380,12 +1408,12 @@ "справою." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "Порожній рядок оболонки буде передано без обробки до libc." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." @@ -1394,29 +1422,29 @@ "тобто у разі встановлення нової оболонки слід перезапустити SSSD." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" "Типове значення: не встановлено. Автоматично використовується оболонка " "користувача." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "vetoed_shells (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "Замінити всі записи цих оболонок на shell_fallback" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "shell_fallback (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" @@ -1424,17 +1452,17 @@ "системі не встановлено." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "Типове значення: /bin/sh" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "default_shell" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." @@ -1444,7 +1472,7 @@ "або на загальному рівні у розділі [nss], або окремо для кожного з доменів." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" @@ -1454,12 +1482,12 @@ "зазвичай /bin/sh)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "get_domains_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." @@ -1468,12 +1496,12 @@ "чинним." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "memcache_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 #, fuzzy #| msgid "" #| "Specifies time in seconds for which records in the in-memory cache will " @@ -1486,7 +1514,7 @@ "чинним." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 #, fuzzy #| msgid "" #| "If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", client " @@ -1499,12 +1527,12 @@ "клієнтські програми не використовуватимуть fast у кеші у пам’яті." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "user_attributes (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 #, fuzzy #| msgid "" #| "Some of the additional NSS responder requests can return more attributes " @@ -1529,7 +1557,7 @@ "manvolnum> </citerefentry>, щоб дізнатися більше), але без типових значень." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." @@ -1538,19 +1566,46 @@ "на те, чи не встановлено його для відповідача NSS." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" "Типове значення: не встановлено, резервне значення визначається за " "параметром InfoPipe" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +#, fuzzy +#| msgid "skel_dir (string)" +msgid "pwfield (string)" +msgstr "skel_dir (рядок)" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" +"Значення цього параметра можна встановлювати для кожного з доменів окремо." + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "Параметри налаштування PAM" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." @@ -1559,12 +1614,12 @@ "Authentication Module (PAM або блокового модуля розпізнавання)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "offline_credentials_expiration (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." @@ -1574,17 +1629,17 @@ "входу до системи)." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "Типове значення: 0 (без обмежень)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "offline_failed_login_attempts (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." @@ -1593,12 +1648,12 @@ "дозволену кількість спроб входу з визначенням помилкового пароля." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "offline_failed_login_delay (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." @@ -1608,7 +1663,7 @@ "системи." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1620,17 +1675,17 @@ "увімкнути можливість автономного розпізнавання." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "Типове значення: 5" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "pam_verbosity (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." @@ -1639,45 +1694,45 @@ "розпізнавання. Чим більшим є значення, тим більше повідомлень буде показано." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "У поточній версії sssd передбачено підтримку таких значень:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "<emphasis>0</emphasis>: не показувати жодних повідомлень" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "<emphasis>1</emphasis>: показувати лише важливі повідомлення" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "<emphasis>2</emphasis>: показувати всі інформаційні повідомлення" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" "<emphasis>3</emphasis>: показувати всі повідомлення та діагностичні дані" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "Типове значення: 1" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 #, fuzzy #| msgid "pam_verbosity (integer)" msgid "pam_response_filter (integer)" msgstr "pam_verbosity (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1686,44 +1741,44 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 #, fuzzy #| msgid "" #| "The following expansions are supported: <placeholder type=\"variablelist" @@ -1736,17 +1791,17 @@ "\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "pam_id_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1757,7 +1812,7 @@ "що розпізнавання виконується на основі найсвіжіших даних." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1771,18 +1826,18 @@ "надання даних профілів." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "pam_pwd_expiration_warning (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" "Показати попередження за вказану кількість днів перед завершенням дії пароля." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1793,7 +1848,7 @@ "попередження." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." @@ -1803,7 +1858,7 @@ "буде автоматично показано." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." @@ -1812,12 +1867,12 @@ "<emphasis>pwd_expiration_warning</emphasis> для окремого домену." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "pam_trusted_users (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 #, fuzzy #| msgid "" #| "Specifies the comma-separated list of UID values or user names that are " @@ -1835,7 +1890,7 @@ "UID за іменами користувачів визначатимуться під час запуску." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 #, fuzzy #| msgid "Default: all (All users are allowed to access the PAM responder)" msgid "Default: All users are considered trusted by default" @@ -1843,7 +1898,7 @@ "Типове значення: all (Доступ до відповідача PAM отримують усі користувачі)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." @@ -1852,12 +1907,12 @@ "відповідача PAM, навіть якщо користувача немає у списку pam_trusted_users." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "pam_public_domains (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." @@ -1866,12 +1921,12 @@ "отримувати навіть ненадійні користувачі." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "Визначено два спеціальних значення параметра pam_public_domains:" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" @@ -1879,7 +1934,7 @@ "PAM.)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" @@ -1888,32 +1943,32 @@ "відповідачі.)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "Типове значення: none" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "pam_account_expired_message (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, fuzzy, no-wrap #| msgid "" #| "pam_account_expired_message = Account expired, please call help desk.\n" @@ -1926,21 +1981,21 @@ " " #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 #, fuzzy #| msgid "pam_account_expired_message (string)" msgid "pam_account_locked_message (string)" msgstr "pam_account_expired_message (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, fuzzy, no-wrap #| msgid "" #| "pam_account_expired_message = Account expired, please call help desk.\n" @@ -1953,14 +2008,14 @@ " " #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 #, fuzzy #| msgid "enumerate (bool)" msgid "pam_cert_auth (bool)" msgstr "enumerate (булеве значення)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1968,50 +2023,50 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "Типове значення: False" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 #, fuzzy #| msgid "krb5_confd_path (string)" msgid "pam_cert_db_path (string)" msgstr "krb5_confd_path (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "p11_child_timeout (integer)" msgstr "pam_id_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "Параметри налаштування SUDO" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -2029,12 +2084,12 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "sudo_timed (булеве значення)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." @@ -2043,22 +2098,22 @@ "призначені для визначення часових обмежень для записів sudoers." #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "Параметри налаштування AUTOFS" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "Цими параметрами можна скористатися для налаштування служби autofs." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "autofs_negative_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -2069,22 +2124,22 @@ "базі даних, зокрема неіснуючих) перед повторним запитом до сервера обробки." #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "Параметри налаштувань SSH" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "Цими параметрами можна скористатися для налаштування служби SSH." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "ssh_hash_known_hosts (булеве значення)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." @@ -2092,12 +2147,12 @@ "Чи слід хешувати назви та адреси вузлів у керованому файлі known_hosts." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "ssh_known_hosts_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." @@ -2106,38 +2161,38 @@ "файлі known_hosts після надсилання запиту щодо ключів вузла." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "Типове значення: 180" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 #, fuzzy #| msgid "mail_dir (string)" msgid "ca_db (string)" msgstr "mail_dir (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 #, fuzzy #| msgid "Default: /etc/krb5.keytab" msgid "Default: /etc/pki/nssdb" msgstr "Типове значення: /etc/krb5.keytab" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "Параметри налаштування відповідача PAC" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -2156,7 +2211,7 @@ "декодовано і визначено, виконуються деякі з таких дій:" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -2174,7 +2229,7 @@ "параметра default_shell." #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." @@ -2183,18 +2238,18 @@ "додано до цих груп." #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" "Цими параметрами можна скористатися для налаштовування відповідача PAC." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "allowed_uids (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -2205,14 +2260,14 @@ "іменами користувачів визначатимуться під час запуску." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" "Типове значення: 0 (доступ до відповідача PAC має лише адміністративний " "користувач (root))" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -2226,31 +2281,31 @@ "запис 0." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 #, fuzzy #| msgid "pam_id_timeout (integer)" msgid "pac_lifetime (integer)" msgstr "pam_id_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "РОЗДІЛИ ДОМЕНІВ" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "min_id,max_id (ціле значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." @@ -2259,7 +2314,7 @@ "відповідає цим обмеженням, його буде проігноровано." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -2272,7 +2327,7 @@ "основної групи і належать діапазону, буде виведено у звичайному режимі." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." @@ -2281,17 +2336,17 @@ "лише повернення записів за назвою або ідентифікатором." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "Типові значення: 1 для min_id, 0 (без обмежень) для max_id" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "enumerate (булеве значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" @@ -2300,22 +2355,22 @@ "значень:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "TRUE = користувачі і групи нумеруються" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "FALSE = не використовувати нумерацію для цього домену" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "Типове значення: FALSE" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -2334,7 +2389,7 @@ "повторне визначення параметрів участі також іноді є складним завданням." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." @@ -2344,7 +2399,7 @@ "завершено." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -2358,7 +2413,7 @@ "відповідного використаного засобу обробки ідентифікаторів (id_provider)." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." @@ -2367,32 +2422,32 @@ "об’ємних середовищах." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "subdomain_enumerate (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "all" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "Усі виявлені надійні домени буде пронумеровано" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "none" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "Нумерація виявлених надійних доменів не виконуватиметься" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -2405,12 +2460,12 @@ "доменів, для яких буде увімкнено нумерацію." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "entry_cache_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" @@ -2419,7 +2474,7 @@ "надсилати повторний запит до сервера" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -2436,17 +2491,17 @@ "<manvolnum>8</manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "Типове значення: 5400" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "entry_cache_user_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" @@ -2455,19 +2510,19 @@ "чинними, перш ніж надсилати повторний запит до сервера" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "Типове значення: entry_cache_timeout" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "entry_cache_group_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" @@ -2476,12 +2531,12 @@ "ніж надсилати повторний запит до сервера" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "entry_cache_netgroup_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" @@ -2490,12 +2545,12 @@ "чинними, перш ніж надсилати повторний запит до сервера" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "entry_cache_service_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" @@ -2504,12 +2559,12 @@ "ніж надсилати повторний запит до сервера" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "entry_cache_sudo_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" @@ -2518,12 +2573,12 @@ "надсилати повторний запит до сервера" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "entry_cache_autofs_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" @@ -2532,12 +2587,12 @@ "чинними, перш ніж надсилати повторний запит до сервера" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "entry_cache_ssh_host_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." @@ -2547,12 +2602,12 @@ "вузла у кеші." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "refresh_expired_interval (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." @@ -2562,7 +2617,7 @@ "вичерпано або майже вичерпано." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" @@ -2570,42 +2625,42 @@ "груп та мережевих груп у кеші." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" "Варто визначити для цього параметра значення 3/4 * entry_cache_timeout." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "Типове значення: 0 (вимкнено)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "cache_credentials (булеве значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" "Визначає, чи слід також кешувати реєстраційні дані користувача у локальному " "кеші LDB" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" "Реєстраційні дані користувача зберігаються у форматі хешу SHA512, а не у " "форматі звичайного тексту" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "cache_credentials_minimal_first_factor_length (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 #, fuzzy #| msgid "" #| "If 2-Factor-Authentication (2FA) is used and credentials should be saved " @@ -2622,7 +2677,7 @@ "контрольної суми SHA512 у кеші." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." @@ -2632,17 +2687,17 @@ "мішенню атак із перебиранням паролів." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "Типове значення: 8" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "account_cache_expiration (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2655,17 +2710,17 @@ "offline_credentials_expiration." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "Типове значення: 0 (без обмежень)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "pwd_expiration_warning (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2678,17 +2733,17 @@ "даних розпізнавання." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "Типове значення: 7 (Kerberos), 0 (LDAP)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "id_provider (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" @@ -2696,17 +2751,17 @@ "Серед підтримуваних засобів такі:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "«proxy»: підтримка застарілого модуля надання даних NSS" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "<quote>local</quote>: вбудований засіб SSSD для локальних користувачів" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2717,8 +2772,8 @@ "refentrytitle> <manvolnum>5</manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2731,8 +2786,8 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2744,12 +2799,12 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "use_fully_qualified_names (булеве значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." @@ -2759,7 +2814,7 @@ "NSS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2772,7 +2827,7 @@ "не покаже користувача, а <command>getent passwd test@LOCAL</command> покаже." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2783,22 +2838,22 @@ "груп, якщо задано неповну назву, буде виконано пошук у всіх доменах." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "Типове значення: FALSE (TRUE, якщо використано default_domain_suffix)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "ignore_group_members (булеве значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "Не повертати записи учасників груп для пошуків груп." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2817,7 +2872,7 @@ "$groupname</quote> поверне запитану групу так, наче вона була порожня." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2828,12 +2883,12 @@ "учасників." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "auth_provider (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" @@ -2842,7 +2897,7 @@ "служб розпізнавання:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2854,7 +2909,7 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2866,18 +2921,18 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "<quote>proxy</quote> — трансльоване розпізнавання у іншій системі PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "<quote>none</quote> — вимкнути розпізнавання повністю." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." @@ -2886,12 +2941,12 @@ "спосіб встановлено і можлива обробка запитів щодо розпізнавання." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "access_provider (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2902,7 +2957,7 @@ "Вбудованими програмами є:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." @@ -2911,12 +2966,12 @@ "доступу для локального домену." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "<quote>deny</quote> — завжди забороняти доступ." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2929,7 +2984,7 @@ "refentrytitle> <manvolnum>5</manvolnum></citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 #, fuzzy #| msgid "" #| "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " @@ -2946,7 +3001,7 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 #, fuzzy #| msgid "" #| "<quote>proxy</quote> for relaying password changes to some other PAM " @@ -2955,17 +3010,17 @@ msgstr "<quote>proxy</quote> — трансльована зміна пароля у іншій системі PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "Типове значення: <quote>permit</quote>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "chpass_provider (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" @@ -2974,7 +3029,7 @@ "підтримку таких систем зміни паролів:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2986,7 +3041,7 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2998,18 +3053,18 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "<quote>proxy</quote> — трансльована зміна пароля у іншій системі PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "<quote>none</quote> — явно вимкнути можливість зміни пароля." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." @@ -3018,19 +3073,19 @@ "цього параметра і якщо система здатна обробляти запити щодо паролів." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "sudo_provider (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" "Служба SUDO, яку використано для цього домену. Серед підтримуваних служб " "SUDO:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -3042,7 +3097,7 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." @@ -3051,7 +3106,7 @@ "параметрами IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." @@ -3060,20 +3115,20 @@ "параметрами AD." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "<quote>none</quote> явним чином вимикає SUDO." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" "Типове значення: використовується значення <quote>id_provider</quote>, якщо " "його встановлено." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -3092,12 +3147,12 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "selinux_provider (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -3108,7 +3163,7 @@ "доступу. Передбачено підтримку таких засобів надання даних SELinux:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -3120,14 +3175,14 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" "<quote>none</quote> явним чином забороняє отримання даних щодо параметрів " "SELinux." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." @@ -3136,12 +3191,12 @@ "спосіб встановлено і можлива обробка запитів щодо завантаження SELinux." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "subdomains_provider (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" @@ -3151,7 +3206,7 @@ "підтримку таких засобів надання даних піддоменів:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -3163,7 +3218,7 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -3176,17 +3231,17 @@ "налаштовування засобу надання даних AD." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "<quote>none</quote> забороняє ячним чином отримання даних піддоменів." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "autofs_provider (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" @@ -3194,7 +3249,7 @@ "autofs:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -3206,7 +3261,7 @@ "citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -3218,7 +3273,7 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 #, fuzzy #| msgid "" #| "<quote>ipa</quote> to load maps stored in an IPA server. See " @@ -3235,17 +3290,17 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "<quote>none</quote> вимикає autofs повністю." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "hostid_provider (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" @@ -3254,7 +3309,7 @@ "вузла. Серед підтримуваних засобів надання hostid:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -3266,12 +3321,12 @@ "manvolnum> </citerefentry>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "<quote>none</quote> вимикає hostid повністю." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -3285,7 +3340,7 @@ "IPA та доменів Active Directory, простій назві (NetBIOS) домену." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -3298,22 +3353,22 @@ "різні стилі запису імен користувачів:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "користувач" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "користувач@назва.домену" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "домен\\користувач" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." @@ -3322,7 +3377,7 @@ "того, щоб полегшити інтеграцію користувачів з доменів Windows." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -3333,7 +3388,7 @@ "домену — все після цього символу." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -3345,7 +3400,7 @@ "платформах з версією libpcre 7." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." @@ -3355,17 +3410,17 @@ "підшаблонів." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "Типове значення: <quote>%1$s@%2$s</quote>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "lookup_family_order (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." @@ -3374,48 +3429,48 @@ "під час виконання пошуків у DNS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "Передбачено підтримку таких значень:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" "ipv4_first: спробувати визначити адресу у форматі IPv4, у разі невдачі " "спробувати формат IPv6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" "ipv4_only: намагатися визначити назви вузлів лише у форматі адрес IPv4." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" "ipv6_first: спробувати визначити адресу у форматі IPv6, у разі невдачі " "спробувати формат IPv4" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" "ipv6_only: намагатися визначити назви вузлів лише у форматі адрес IPv6." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "Типове значення: ipv4_first" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "dns_resolver_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -3426,18 +3481,18 @@ "очікування буде перевищено, домен продовжуватиме роботу у автономному режимі." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "Типове значення: 6" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "dns_discovery_domain (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." @@ -3446,54 +3501,54 @@ "частину запиту визначення служб DNS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" "Типова поведінка: використовувати назву домену з назви вузла комп’ютера." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "override_gid (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "Замірити значення основного GID на вказане." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "case_sensitive (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "True" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" "Враховується регістр. Це значення є некоректним для засобу надання даних AD." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "False" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "Без врахування регістру." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "Preserving" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -3505,7 +3560,7 @@ "буде переведено у нижній регістр." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -3516,17 +3571,17 @@ "значення параметра: <placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "Типове значення: True (False для засобу надання даних AD)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "subdomain_inherit (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -3538,34 +3593,34 @@ "параметрів:" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "ignore_group_members" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "ldap_purge_cache_timeout" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "ldap_use_tokengroups" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "ldap_user_principal" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -3575,34 +3630,34 @@ " " #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "Приклад: <placeholder type=\"programlisting\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 #, fuzzy #| msgid "This option is not available in IPA provider." msgid "Note: This option only works with the IPA and AD provider." msgstr "Цим параметром не можна скористатися у надавачі даних IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "subdomain_homedir (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "%F" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "спрощена (NetBIOS) назва піддомену." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -3617,7 +3672,7 @@ "emphasis>. <placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" @@ -3625,17 +3680,17 @@ "emphasis>." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "Типове значення: <filename>/home/%d/%u</filename>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "realmd_tags (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" @@ -3643,14 +3698,14 @@ "домену." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 #, fuzzy #| msgid "memcache_timeout (int)" msgid "cached_auth_timeout (int)" msgstr "memcache_timeout (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -3658,12 +3713,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -3671,7 +3726,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -3682,17 +3737,17 @@ "quote> <placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "proxy_pam_target (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "Комп’ютер, для якого виконує проксі-сервер PAM." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." @@ -3701,12 +3756,12 @@ "налаштуваннями pam або створити нові і тут додати назву служби." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "proxy_lib_name (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3717,12 +3772,12 @@ "наприклад _nss_files_getpwent." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "proxy_fast_alias (булеве значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3737,14 +3792,14 @@ "у кеші, щоб пришвидшити надання результатів." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 #, fuzzy #| msgid "min_id,max_id (integer)" msgid "proxy_max_children (integer)" msgstr "min_id,max_id (ціле значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3752,7 +3807,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" @@ -3761,12 +3816,12 @@ "\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "Розділ локального домену" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3777,29 +3832,29 @@ "використовує <replaceable>id_provider=local</replaceable>." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "default_shell (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" "Типова оболонка для записів користувачів, створених за допомогою " "інструментів простору користувачів SSSD." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "Типове значення: <filename>/bin/bash</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "base_directory (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." @@ -3808,17 +3863,17 @@ "replaceable> і використовують отриману адресу як адресу домашнього каталогу." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "Типове значення: <filename>/home</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "create_homedir (булеве значення)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." @@ -3827,17 +3882,17 @@ "Може бути перевизначено з командного рядка." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "Типове значення: TRUE" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "remove_homedir (булівське значення)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." @@ -3846,12 +3901,12 @@ "користувачів. Може бути перевизначено з командного рядка." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "homedir_umask (ціле число)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3862,17 +3917,17 @@ "до щойно створеного домашнього каталогу." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "Типове значення: 077" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "skel_dir (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3885,17 +3940,17 @@ "<manvolnum>8</manvolnum> </citerefentry>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "Типове значення: <filename>/etc/skel</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "mail_dir (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3906,17 +3961,17 @@ "каталог не вказано, буде використано типове значення." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "Типове значення: <filename>/var/mail</filename>" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "userdel_cmd (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3927,19 +3982,95 @@ "вилучається. Код виконання, повернутий програмою не обробляється." #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "Типове значення: None, не виконувати жодних команд" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +#, fuzzy +#| msgid "DOMAIN SECTIONS" +msgid "TRUSTED DOMAIN SECTION" +msgstr "РОЗДІЛИ ДОМЕНІВ" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +#, fuzzy +#| msgid "ldap_search_base (string)" +msgid "ldap_search_base," +msgstr "ldap_search_base (рядок)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +#, fuzzy +#| msgid "ldap_user_search_base (string)" +msgid "ldap_user_search_base," +msgstr "ldap_user_search_base (рядок)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +#, fuzzy +#| msgid "ldap_group_search_base (string)" +msgid "ldap_group_search_base," +msgstr "ldap_group_search_base (рядок)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +#, fuzzy +#| msgid "ldap_netgroup_search_base (string)" +msgid "ldap_netgroup_search_base," +msgstr "ldap_netgroup_search_base (рядок)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +#, fuzzy +#| msgid "ldap_service_search_base (string)" +msgid "ldap_service_search_base," +msgstr "ldap_service_search_base (рядок)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +#, fuzzy +#| msgid "ad_server, ad_backup_server (string)" +msgid "ad_backup_server," +msgstr "ad_server, ad_backup_server (рядок)" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "ПРИКЛАД" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3993,7 +4124,7 @@ "enumerate = False\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -4058,7 +4189,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "ПАРАМЕТРИ НАЛАШТУВАННЯ" @@ -4999,7 +5131,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "Типове значення: cn" @@ -6223,7 +6355,7 @@ "варто перейти на використання «krb5_server» у файлах налаштувань." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "krb5_realm (рядок)" @@ -7499,8 +7631,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "<placeholder type=\"programlisting\" id=\"0\"/>" @@ -7546,7 +7678,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "ЗАУВАЖЕННЯ" @@ -7563,27 +7695,18 @@ "refentrytitle> <manvolnum>5</manvolnum> </citerefentry> з пакунка OpenLDAP " "2.4." -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" -"<productname>SSSD</productname> <orgname>Основна гілка розробки SSSD — " -"http://fedorahosted.org/sssd</orgname>" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "pam_sss" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "модуль PAM для SSSD" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 #, fuzzy #| msgid "" #| "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" @@ -7604,7 +7727,8 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -7616,7 +7740,7 @@ "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg>" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -7627,22 +7751,22 @@ "<command>syslog(3)</command> до запису LOG_AUTHPRIV." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "<option>quiet</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "Не показувати у журналі повідомлень для невідомих користувачів." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "<option>forward_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." @@ -7651,12 +7775,12 @@ "буде збережено у стосі паролів для використання іншими модулями PAM." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "<option>use_first_pass</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -7668,12 +7792,12 @@ "непридатним, доступ користувачеві буде заборонено." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "<option>use_authtok</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." @@ -7683,12 +7807,12 @@ "стосу модулів." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "<option>retry=N</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." @@ -7697,7 +7821,7 @@ "раз розпізнавання зазнає невдачі. Типовим значенням є 0." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -7709,12 +7833,12 @@ "<option>PasswordAuthentication</option>." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "<option>ignore_unknown_user</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." @@ -7723,12 +7847,12 @@ "PAM_IGNORE. Це призводить до ігнорування цього модуля оболонкою PAM." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "<option>ignore_authinfo_unavail</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." @@ -7738,12 +7862,12 @@ "PAM ігнорує цей модуль." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "<option>domains</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -7754,7 +7878,7 @@ "доменів SSSD, відокремлених комами, так, як їх вказано у файлі sssd.conf." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -7769,21 +7893,21 @@ "відповідача PAM." #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 #, fuzzy #| msgid "<option>domains</option>" msgid "<option>allow_missing_name</option>" msgstr "<option>domains</option>" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -7791,7 +7915,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -7801,13 +7925,30 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +#, fuzzy +#| msgid "<option>domains</option>" +msgid "<option>prompt_always</option>" +msgstr "<option>domains</option>" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "ПЕРЕДБАЧЕНІ ТИПИ МОДУЛІВ" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." @@ -7816,12 +7957,12 @@ "option>, <option>password</option> і <option>session</option>)." #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "ФАЙЛИ" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -7833,7 +7974,7 @@ "повідомленні, наприклад, можуть міститися настанови щодо скидання пароля." #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -7853,7 +7994,7 @@ "іншим користувачам може бути надано лише право читання файлів." #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -8421,17 +8562,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +#, fuzzy +#| msgid "dyndns_iface (string)" +msgid "dyndns_auth (string)" +msgstr "dyndns_iface (рядок)" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "Типове значення: 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "ipa_enable_dns_sites (булеве значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "Вмикає сайти DNS — визначення служб на основі адрес." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -8451,12 +8614,12 @@ "вважатимуться резервними серверами." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "dyndns_refresh_interval (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -8468,12 +8631,12 @@ "є обов’язкоми, його застосовують, лише якщо dyndns_update має значення true." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "dyndns_update_ptr (булеве значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." @@ -8482,7 +8645,7 @@ "DNS клієнта. Застосовується, лише якщо значенням dyndns_update буде true." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." @@ -8492,17 +8655,17 @@ "переспрямовування." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "Типове значення: False (вимкнено)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "dyndns_force_tcp (булеве значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." @@ -8511,76 +8674,76 @@ "даними з сервером DNS." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "Типове значення: False (надати змогу nsupdate вибирати протокол)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 #, fuzzy #| msgid "dyndns_iface (string)" msgid "dyndns_server (string)" msgstr "dyndns_iface (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 #, fuzzy #| msgid "Default: False (let nsupdate choose the protocol)" msgid "Default: None (let nsupdate choose the server)" msgstr "Типове значення: False (надати змогу nsupdate вибирати протокол)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "ipa_hbac_search_base (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" "Необов’язковий. Використати вказаний рядок як основу пошуку пов’язаних з " "HBAC об’єктів." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "Типове значення: використання базової назви домену" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "ipa_host_search_base (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" "Необов’язковий. Використати вказаний рядок як основу пошуку об’єктів вузлів." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." @@ -8589,76 +8752,76 @@ "налаштування декількох основ пошуку." #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "Типове значення: значення <emphasis>ldap_search_base</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "ipa_selinux_search_base (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" "Необов’язковий. Використати вказаний рядок як основу пошуку карт " "користувачів SELinux." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "ipa_subdomains_search_base (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" "Необов’язковий. Використати вказаний рядок як основу пошуку надійних доменів." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "Типове значення: значення <emphasis>cn=trusts,%basedn</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "ipa_master_domain_search_base (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" "Необов’язковий. Використати вказаний рядок як основу пошуку основного " "об’єкта домену." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" "Типове значення: значення виразу <emphasis>cn=ad,cn=etc,%basedn</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "ipa_views_search_base (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" "Необов’язковий. Використати вказаний рядок як основу пошуку контейнерів " "перегляду." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" "Типове значення: значення <emphasis>cn=views,cn=accounts,%basedn</emphasis>" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." @@ -8667,7 +8830,7 @@ "«ipa_domain»." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." @@ -8676,12 +8839,12 @@ "перетворено у основний DN для виконання дій LDAP." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "krb5_confd_path (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." @@ -8690,7 +8853,7 @@ "налаштувань Kerberos." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." @@ -8699,7 +8862,7 @@ "значення «none»." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" @@ -8707,12 +8870,12 @@ "SSSD)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "ipa_hbac_refresh (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -8723,17 +8886,17 @@ "короткого періоду часу надходить багато запитів щодо керування доступом." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "Типове значення: 5 (секунд)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "ipa_hbac_selinux (ціле число)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -8745,17 +8908,17 @@ "користувача до системи." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "ipa_server_mode (булеве значення)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "Цей параметр має встановлюватися лише засобом встановлення IPA." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." @@ -8764,73 +8927,73 @@ "і має виконувати пошуки користувачів і груп з довірених доменів окремо." #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "ipa_automount_location (рядок)" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" "Адреса автоматичного монтування, яку буде використовувати цей клієнт IPA" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "Типове значення: адреса з назвою \"default\"" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "ПЕРЕГЛЯДИ і ПЕРЕВИЗНАЧЕННЯ" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "ipa_view_class (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "Клас об’єктів для контейнерів перегляду." #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "Типове значення: nsContainer" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "ipa_view_name (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "Назва атрибута, у якому зберігається назва перегляду." #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "ipa_overide_object_class (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "Клас об’єктів для об’єктів перевизначення" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "Типове значення: ipaOverrideAnchor" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "ipa_anchor_uuid (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." @@ -8839,17 +9002,17 @@ "віддаленому домені." #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "Типове значення: ipaAnchorUUID" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "ipa_user_override_object_class (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." @@ -8859,57 +9022,57 @@ "або групою." #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "Перевизначення користувачів можуть містити атрибути, задані" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "ldap_user_name" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "ldap_user_uid_number" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "ldap_user_gid_number" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "ldap_user_gecos" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "ldap_user_home_directory" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "ldap_user_shell" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "ldap_user_ssh_public_key" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "Типове значення: ipaUserOverride" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "ipa_group_override_object_class (рядок)" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." @@ -8918,27 +9081,27 @@ "того, чи знайдений об’єкт перевизначення пов’язано з користувачем або групою." #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "Перевизначення груп можуть містити атрибути, задані" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "ldap_group_name" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "ldap_group_gid_number" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "Типове значення: ipaGroupOverride" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -8953,12 +9116,12 @@ "значеннями. <placeholder type=\"variablelist\" id=\"0\"/>" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "СЛУЖБА ПІДДОМЕНІВ" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." @@ -8967,7 +9130,7 @@ "спосіб його налаштовано: явний чи неявний." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -8979,7 +9142,7 @@ "якщо це потрібно." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -8999,7 +9162,7 @@ "даних піддоменів буде знову увімкнено." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -9011,7 +9174,7 @@ "ipa." #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -10271,7 +10434,7 @@ msgstr "Типове значення: True" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -10282,7 +10445,7 @@ "У прикладі продемонстровано лише параметри доступу, специфічні для засобу AD." #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -10306,7 +10469,7 @@ "ad_domain = example.com\n" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -10318,7 +10481,7 @@ "ldap_account_expire_policy = ad\n" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -10330,7 +10493,7 @@ "\"0\"/>" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -10345,7 +10508,7 @@ "шифрування) вручну." #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -11752,7 +11915,7 @@ msgstr "значення krb5_ccachedir" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "%P" @@ -11762,12 +11925,12 @@ msgstr "ідентифікатор процесу клієнтської частини SSSD" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "%%" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "символ відсотків («%»)" @@ -13739,6 +13902,116 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +#, fuzzy +#| msgid "sssd-simple" +msgid "sssd-files" +msgstr "sssd-simple" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +#, fuzzy +#| msgid "SSSD Kerberos provider" +msgid "SSSD files provider" +msgstr "Модуль надання даних Kerberos SSSD" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +#, fuzzy +#| msgid "" +#| "This manual page describes the configuration of the AD provider for " +#| "<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +#| "manvolnum> </citerefentry>. For a detailed syntax reference, refer to " +#| "the <quote>FILE FORMAT</quote> section of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page." +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" +"На цій сторінці довідника описано налаштування засобу керування доступом AD " +"для <citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +"manvolnum> </citerefentry>. Щоб дізнатися більше про синтаксис налаштування, " +"зверніться до розділу «ФОРМАТ ФАЙЛІВ» сторінки довідника <citerefentry> " +"<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry>." + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +#, fuzzy +#| msgid "" +#| "These options can be used to configure the sudo service. The detailed " +#| "instructions for configuration of <citerefentry> <refentrytitle>sudo</" +#| "refentrytitle> <manvolnum>8</manvolnum> </citerefentry> to work with " +#| "<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</" +#| "manvolnum> </citerefentry> are in the manual page <citerefentry> " +#| "<refentrytitle>sssd-sudo</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry>." +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" +"Цими параметрами можна скористатися для налаштовування служби sudo. Докладні " +"настанови щодо налаштовування <citerefentry> <refentrytitle>sudo</" +"refentrytitle> <manvolnum>8</manvolnum> </citerefentry> на роботу з " +"<citerefentry> <refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> " +"</citerefentry> можна знайти на сторінці довідника <citerefentry> " +"<refentrytitle>sssd-sudo</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry>." + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +#, fuzzy +#| msgid "" +#| "Refer to the section <quote>DOMAIN SECTIONS</quote> of the <citerefentry> " +#| "<refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</manvolnum> </" +#| "citerefentry> manual page for details on the configuration of an SSSD " +#| "domain. <placeholder type=\"variablelist\" id=\"0\"/>" +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" +"Зверніться до розділу «РОЗДІЛИ ДОМЕНІВ» сторінки довідника (man) " +"<citerefentry> <refentrytitle>sssd.conf</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>, щоб дізнатися більше про налаштування домену " +"SSSD. <placeholder type=\"variablelist\" id=\"0\"/>" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +#, fuzzy +#| msgid "" +#| "The following example assumes that SSSD is correctly configured and LDAP " +#| "is set to one of the domains in the <replaceable>[domains]</replaceable> " +#| "section." +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" +"У наведеному нижче прикладі припускається, що SSSD налаштовано належним " +"чином, а LDAP встановлено на один з доменів з розділу " +"<replaceable>[domains]</replaceable>." + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 #, fuzzy #| msgid "sssd-simple" @@ -14500,6 +14773,19 @@ "Докладніші відомості щодо механізмів визначення служб можна знайти у RFC " "2782." +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +#, fuzzy +#| msgid "" +#| "<productname>SSSD</productname> <orgname>The SSSD upstream - http://" +#| "fedorahosted.org/sssd</orgname>" +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" +"<productname>SSSD</productname> <orgname>Основна гілка розробки SSSD — " +"http://fedorahosted.org/sssd</orgname>" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -15321,9 +15607,13 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 +#, fuzzy +#| msgid "" +#| "<emphasis> This is an experimental feature, please use http://" +#| "fedorahosted.org/sssd to report any issues. </emphasis>" msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" "<emphasis> Цю можливість ще не перевірено достатнім чином. Будь ласка, якщо " "помітите якісь вади, повідомте про них за допомогою настанов на сторінці " @@ -15538,28 +15828,38 @@ msgid "fully qualified user name (user@domain)" msgstr "ім’я користувача повністю (користувач@домен)" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "UPN - User Principal Name (ім’я@ОБЛАСТЬ)" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "%o" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "Початкова домашня тека, отримана від служби профілів." #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "%H" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" "Значення параметра налаштовування <emphasis>homedir_substring</emphasis>." @@ -15575,14 +15875,8 @@ "значення або шаблон. У шаблоні можна використовувати такі замінники: " "<placeholder type=\"variablelist\" id=\"0\"/>" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" -"Значення цього параметра можна встановлювати для кожного з доменів окремо." - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -15592,7 +15886,7 @@ " " #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" "Типове значення: не встановлено (SSSD використовуватиме значення, отримане " diff -Nru sssd-1.15.0/src/man/po/zh_CN.po sssd-1.15.2/src/man/po/zh_CN.po --- sssd-1.15.0/src/man/po/zh_CN.po 2017-01-25 15:44:05.959440439 +0000 +++ sssd-1.15.2/src/man/po/zh_CN.po 2017-03-15 16:58:45.378938269 +0000 @@ -8,7 +8,7 @@ msgstr "" "Project-Id-Version: sssd-docs 1.12.90\n" "Report-Msgid-Bugs-To: sssd-devel@redhat.com\n" -"POT-Creation-Date: 2017-01-25 16:27+0100\n" +"POT-Creation-Date: 2017-03-15 17:14+0100\n" "PO-Revision-Date: 2014-12-15 12:16-0500\n" "Last-Translator: Copied by Zanata <copied-by-zanata@zanata.org>\n" "Language-Team: Chinese (China) (http://www.transifex.com/projects/p/sssd/" @@ -30,7 +30,7 @@ #: sss_debuglevel.8.xml:5 sss_seed.8.xml:5 sssd-ifp.5.xml:5 #: sss_rpcidmapd.5.xml:5 sss_ssh_authorizedkeys.1.xml:5 #: sss_ssh_knownhostsproxy.1.xml:5 idmap_sss.8.xml:5 sssctl.8.xml:5 -#: sssd-secrets.5.xml:5 +#: sssd-files.5.xml:5 sssd-secrets.5.xml:5 msgid "SSSD Manual pages" msgstr "SSSD 手册页面" @@ -40,7 +40,7 @@ msgstr "sss_groupmod" #. type: Content of: <reference><refentry><refmeta><manvolnum> -#: sss_groupmod.8.xml:11 pam_sss.8.xml:14 sssd_krb5_locator_plugin.8.xml:11 +#: sss_groupmod.8.xml:11 pam_sss.8.xml:12 sssd_krb5_locator_plugin.8.xml:11 #: sssd.8.xml:11 sss_obfuscate.8.xml:11 sss_override.8.xml:11 #: sss_useradd.8.xml:11 sss_groupadd.8.xml:11 sss_userdel.8.xml:11 #: sss_groupdel.8.xml:11 sss_groupshow.8.xml:11 sss_usermod.8.xml:11 @@ -63,7 +63,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:56 +#: sss_groupmod.8.xml:30 sssd-ldap.5.xml:21 pam_sss.8.xml:57 #: sssd_krb5_locator_plugin.8.xml:20 sssd-simple.5.xml:22 sssd-ipa.5.xml:21 #: sssd-ad.5.xml:21 sssd-sudo.5.xml:21 sssd.8.xml:29 sss_obfuscate.8.xml:30 #: sss_override.8.xml:30 sss_useradd.8.xml:30 sssd-krb5.5.xml:21 @@ -71,7 +71,7 @@ #: sss_groupshow.8.xml:30 sss_usermod.8.xml:30 sss_cache.8.xml:29 #: sss_debuglevel.8.xml:30 sss_seed.8.xml:31 sssd-ifp.5.xml:21 #: sss_ssh_authorizedkeys.1.xml:30 sss_ssh_knownhostsproxy.1.xml:31 -#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-secrets.5.xml:21 +#: idmap_sss.8.xml:20 sssctl.8.xml:30 sssd-files.5.xml:21 sssd-secrets.5.xml:21 msgid "DESCRIPTION" msgstr "" @@ -83,7 +83,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sss_groupmod.8.xml:39 pam_sss.8.xml:63 sssd.8.xml:42 sss_obfuscate.8.xml:58 +#: sss_groupmod.8.xml:39 pam_sss.8.xml:64 sssd.8.xml:42 sss_obfuscate.8.xml:58 #: sss_useradd.8.xml:39 sss_groupadd.8.xml:39 sss_userdel.8.xml:39 #: sss_groupdel.8.xml:39 sss_groupshow.8.xml:39 sss_usermod.8.xml:39 #: sss_cache.8.xml:39 sss_debuglevel.8.xml:38 sss_seed.8.xml:42 @@ -134,14 +134,14 @@ #. type: Content of: <reference><refentry><refmeta><manvolnum> #: sssd.conf.5.xml:11 sssd-ldap.5.xml:11 sssd-simple.5.xml:11 sssd-ipa.5.xml:11 #: sssd-ad.5.xml:11 sssd-sudo.5.xml:11 sssd-krb5.5.xml:11 sssd-ifp.5.xml:11 -#: sss_rpcidmapd.5.xml:27 sssd-secrets.5.xml:11 +#: sss_rpcidmapd.5.xml:27 sssd-files.5.xml:11 sssd-secrets.5.xml:11 msgid "5" msgstr "5" #. type: Content of: <reference><refentry><refmeta><refmiscinfo> #: sssd.conf.5.xml:12 sssd-ldap.5.xml:12 sssd-simple.5.xml:12 sssd-ipa.5.xml:12 #: sssd-ad.5.xml:12 sssd-sudo.5.xml:12 sssd-krb5.5.xml:12 sssd-ifp.5.xml:12 -#: sss_rpcidmapd.5.xml:28 sssd-secrets.5.xml:12 +#: sss_rpcidmapd.5.xml:28 sssd-files.5.xml:12 sssd-secrets.5.xml:12 msgid "File Formats and Conventions" msgstr "" @@ -292,10 +292,11 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:133 sssd.conf.5.xml:760 sssd.conf.5.xml:1340 -#: sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 sssd-ldap.5.xml:1854 -#: sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 sssd-ldap.5.xml:2494 -#: sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 sssd-krb5.5.xml:499 +#: sssd.conf.5.xml:133 sssd.conf.5.xml:541 sssd.conf.5.xml:789 +#: sssd.conf.5.xml:1386 sssd-ldap.5.xml:1695 sssd-ldap.5.xml:1792 +#: sssd-ldap.5.xml:1854 sssd-ldap.5.xml:2411 sssd-ldap.5.xml:2476 +#: sssd-ldap.5.xml:2494 sssd-ad.5.xml:208 sssd-ad.5.xml:322 sssd-ad.5.xml:859 +#: sssd-krb5.5.xml:499 msgid "Default: true" msgstr "" @@ -312,11 +313,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:146 sssd.conf.5.xml:1294 sssd.conf.5.xml:2572 -#: sssd-ldap.5.xml:708 sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 -#: sssd-ldap.5.xml:1764 sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 -#: sssd-ipa.5.xml:216 sssd-ipa.5.xml:480 sssd-krb5.5.xml:266 -#: sssd-krb5.5.xml:300 sssd-krb5.5.xml:471 +#: sssd.conf.5.xml:146 sssd.conf.5.xml:538 sssd.conf.5.xml:673 +#: sssd.conf.5.xml:1340 sssd.conf.5.xml:2618 sssd-ldap.5.xml:708 +#: sssd-ldap.5.xml:1569 sssd-ldap.5.xml:1588 sssd-ldap.5.xml:1764 +#: sssd-ldap.5.xml:2181 sssd-ipa.5.xml:144 sssd-ipa.5.xml:231 +#: sssd-ipa.5.xml:495 sssd-krb5.5.xml:266 sssd-krb5.5.xml:300 +#: sssd-krb5.5.xml:471 msgid "Default: false" msgstr "" @@ -343,7 +345,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:167 sssd.conf.5.xml:1258 sssd.conf.5.xml:2588 +#: sssd.conf.5.xml:167 sssd.conf.5.xml:1304 sssd.conf.5.xml:2634 #: sssd-ldap.5.xml:1440 include/ldap_id_mapping.xml:264 msgid "Default: 10" msgstr "" @@ -359,7 +361,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><title> -#: sssd.conf.5.xml:189 sssd.conf.5.xml:2604 +#: sssd.conf.5.xml:189 sssd.conf.5.xml:2650 msgid "Section parameters" msgstr "" @@ -407,19 +409,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:229 sssd.conf.5.xml:550 +#: sssd.conf.5.xml:229 sssd.conf.5.xml:567 msgid "reconnection_retries (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:232 sssd.conf.5.xml:553 +#: sssd.conf.5.xml:232 sssd.conf.5.xml:570 msgid "" "Number of times services should attempt to reconnect in the event of a Data " "Provider crash or restart before they give up" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:237 sssd.conf.5.xml:558 +#: sssd.conf.5.xml:237 sssd.conf.5.xml:575 msgid "Default: 3" msgstr "默认: 3" @@ -439,7 +441,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:257 sssd.conf.5.xml:2221 +#: sssd.conf.5.xml:257 sssd.conf.5.xml:2267 msgid "re_expression (string)" msgstr "" @@ -459,12 +461,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:274 sssd.conf.5.xml:2272 +#: sssd.conf.5.xml:274 sssd.conf.5.xml:2318 msgid "full_name_format (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:277 sssd.conf.5.xml:2275 +#: sssd.conf.5.xml:277 sssd.conf.5.xml:2321 msgid "" "A <citerefentry> <refentrytitle>printf</refentrytitle> <manvolnum>3</" "manvolnum> </citerefentry>-compatible format that describes how to compose a " @@ -472,39 +474,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:288 sssd.conf.5.xml:2286 +#: sssd.conf.5.xml:288 sssd.conf.5.xml:2332 msgid "%1$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:289 sssd.conf.5.xml:2287 +#: sssd.conf.5.xml:289 sssd.conf.5.xml:2333 msgid "user name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:292 sssd.conf.5.xml:2290 +#: sssd.conf.5.xml:292 sssd.conf.5.xml:2336 msgid "%2$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:295 sssd.conf.5.xml:2293 +#: sssd.conf.5.xml:295 sssd.conf.5.xml:2339 msgid "domain name as specified in the SSSD config file." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:301 sssd.conf.5.xml:2299 +#: sssd.conf.5.xml:301 sssd.conf.5.xml:2345 msgid "%3$s" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:304 sssd.conf.5.xml:2302 +#: sssd.conf.5.xml:304 sssd.conf.5.xml:2348 msgid "" "domain flat name. Mostly usable for Active Directory domains, both directly " "configured or discovered via IPA trusts." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:285 sssd.conf.5.xml:2283 +#: sssd.conf.5.xml:285 sssd.conf.5.xml:2329 msgid "" "The following expansions are supported: <placeholder type=\"variablelist\" " "id=\"0\"/>" @@ -628,7 +630,7 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:416 sssd.conf.5.xml:1062 sssd-ldap.5.xml:679 +#: sssd.conf.5.xml:416 sssd.conf.5.xml:1108 sssd-ldap.5.xml:679 #: sssd-ldap.5.xml:1528 sssd-ldap.5.xml:1540 sssd-ldap.5.xml:1622 #: sssd-ad.5.xml:664 sssd-ad.5.xml:739 sssd-krb5.5.xml:410 sssd-krb5.5.xml:556 #: sssd-secrets.5.xml:272 include/ldap_id_mapping.xml:205 @@ -774,6 +776,18 @@ msgid "Default: false (netlink changes are detected)" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> +#: sssd.conf.5.xml:529 +msgid "enable_files_domain (boolean)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:532 +msgid "" +"When this option is enabled, SSSD prepends an implicit domain with " +"<quote>id_provider=files</quote> before any explicitly configured domains." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><para> #: sssd.conf.5.xml:182 msgid "" @@ -786,12 +800,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:535 +#: sssd.conf.5.xml:552 msgid "SERVICES SECTIONS" msgstr "服务部分" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:537 +#: sssd.conf.5.xml:554 msgid "" "Settings that can be used to configure different services are described in " "this section. They should reside in the [<replaceable>$NAME</replaceable>] " @@ -800,22 +814,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:544 +#: sssd.conf.5.xml:561 msgid "General service configuration options" msgstr "基本服务配置选项" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:546 +#: sssd.conf.5.xml:563 msgid "These options can be used to configure any service." msgstr "这些选项可被用于配置任何服务。" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:563 +#: sssd.conf.5.xml:580 msgid "fd_limit" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:566 +#: sssd.conf.5.xml:583 msgid "" "This option specifies the maximum number of file descriptors that may be " "opened at one time by this SSSD process. On systems where SSSD is granted " @@ -825,17 +839,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:575 +#: sssd.conf.5.xml:592 msgid "Default: 8192 (or limits.conf \"hard\" limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:580 +#: sssd.conf.5.xml:597 msgid "client_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:583 +#: sssd.conf.5.xml:600 msgid "" "This option specifies the number of seconds that a client of an SSSD process " "can hold onto a file descriptor without communicating on it. This value is " @@ -843,18 +857,18 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:590 sssd.conf.5.xml:622 sssd.conf.5.xml:891 -#: sssd.conf.5.xml:1128 sssd-ldap.5.xml:1267 +#: sssd.conf.5.xml:607 sssd.conf.5.xml:639 sssd.conf.5.xml:920 +#: sssd.conf.5.xml:1174 sssd-ldap.5.xml:1267 msgid "Default: 60" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:595 +#: sssd.conf.5.xml:612 msgid "offline_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:598 +#: sssd.conf.5.xml:615 msgid "" "When SSSD switches to offline mode the amount of time before it tries to go " "back online will increase based upon the time spent disconnected. This " @@ -862,24 +876,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:605 +#: sssd.conf.5.xml:622 msgid "offline_timeout + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:608 +#: sssd.conf.5.xml:625 msgid "" "The random offset can increment up to 30 seconds. After each unsuccessful " "attempt to go online, the new interval is recalculated by the following:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:613 +#: sssd.conf.5.xml:630 msgid "new_interval = old_interval*2 + random_offset" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:616 +#: sssd.conf.5.xml:633 msgid "" "Note that the maximum length of each interval is currently limited to one " "hour. If the calculated length of new_interval is greater than an hour, it " @@ -887,12 +901,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:627 +#: sssd.conf.5.xml:644 msgid "responder_idle_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:630 +#: sssd.conf.5.xml:647 msgid "" "This option specifies the number of seconds that an SSSD responder process " "can be up without being used. This value is limited in order to avoid " @@ -904,46 +918,58 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:644 sssd.conf.5.xml:903 sssd.conf.5.xml:1432 +#: sssd.conf.5.xml:661 sssd.conf.5.xml:932 sssd.conf.5.xml:1478 #: sssd-ldap.5.xml:722 msgid "Default: 300" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:666 +msgid "cache_first" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:669 +msgid "" +"This option specifies whether the responder should query all caches before " +"querying the Data Providers." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:652 +#: sssd.conf.5.xml:681 msgid "NSS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:654 +#: sssd.conf.5.xml:683 msgid "" "These options can be used to configure the Name Service Switch (NSS) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:659 +#: sssd.conf.5.xml:688 msgid "enum_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:662 +#: sssd.conf.5.xml:691 msgid "" "How many seconds should nss_sss cache enumerations (requests for info about " "all users)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:666 +#: sssd.conf.5.xml:695 msgid "Default: 120" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:671 +#: sssd.conf.5.xml:700 msgid "entry_cache_nowait_percentage (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:674 +#: sssd.conf.5.xml:703 msgid "" "The entry cache can be set to automatically update entries in the background " "if they are requested beyond a percentage of the entry_cache_timeout value " @@ -951,7 +977,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:680 +#: sssd.conf.5.xml:709 msgid "" "For example, if the domain's entry_cache_timeout is set to 30s and " "entry_cache_nowait_percentage is set to 50 (percent), entries that come in " @@ -961,7 +987,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:690 +#: sssd.conf.5.xml:719 msgid "" "Valid values for this option are 0-99 and represent a percentage of the " "entry_cache_timeout for each domain. For performance reasons, this " @@ -970,17 +996,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:698 +#: sssd.conf.5.xml:727 msgid "Default: 50" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:703 +#: sssd.conf.5.xml:732 msgid "entry_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:706 +#: sssd.conf.5.xml:735 msgid "" "Specifies for how many seconds nss_sss should cache negative cache hits " "(that is, queries for invalid database entries, like nonexistent ones) " @@ -988,34 +1014,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:712 sssd.conf.5.xml:1318 +#: sssd.conf.5.xml:741 sssd.conf.5.xml:1364 msgid "Default: 15" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:717 +#: sssd.conf.5.xml:746 msgid "local_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:720 +#: sssd.conf.5.xml:749 msgid "" "Specifies for how many seconds nss_sss should keep local users and groups in " "negative cache before trying to look it up in the back end again." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:725 sssd.conf.5.xml:1116 sssd.conf.5.xml:2522 sssd.8.xml:79 +#: sssd.conf.5.xml:754 sssd.conf.5.xml:1162 sssd.conf.5.xml:2568 sssd.8.xml:79 msgid "Default: 0" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:730 +#: sssd.conf.5.xml:759 msgid "filter_users, filter_groups (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:733 +#: sssd.conf.5.xml:762 msgid "" "Exclude certain users or groups from being fetched from the sss NSS " "database. This is particularly useful for system accounts. This option can " @@ -1024,7 +1050,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:740 +#: sssd.conf.5.xml:769 msgid "" "NOTE: The filter_groups option doesn't affect inheritance of nested group " "members, since filtering happens after they are propagated for returning via " @@ -1033,41 +1059,41 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:748 +#: sssd.conf.5.xml:777 msgid "Default: root" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:753 +#: sssd.conf.5.xml:782 msgid "filter_users_in_groups (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:756 +#: sssd.conf.5.xml:785 msgid "" "If you want filtered user still be group members set this option to false." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:767 +#: sssd.conf.5.xml:796 msgid "fallback_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:770 +#: sssd.conf.5.xml:799 msgid "" "Set a default template for a user's home directory if one is not specified " "explicitly by the domain's data provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:775 +#: sssd.conf.5.xml:804 msgid "" "The available values for this option are the same as for override_homedir." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:781 +#: sssd.conf.5.xml:810 #, no-wrap msgid "" "fallback_homedir = /home/%u\n" @@ -1075,23 +1101,23 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: sssd.conf.5.xml:779 sssd.conf.5.xml:1195 sssd.conf.5.xml:1214 -#: sssd-krb5.5.xml:539 include/override_homedir.xml:55 +#: sssd.conf.5.xml:808 sssd.conf.5.xml:1241 sssd.conf.5.xml:1260 +#: sssd-krb5.5.xml:539 include/override_homedir.xml:59 msgid "example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:785 +#: sssd.conf.5.xml:814 msgid "Default: not set (no substitution for unset home directories)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:791 +#: sssd.conf.5.xml:820 msgid "override_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:794 +#: sssd.conf.5.xml:823 msgid "" "Override the login shell for all users. This option supersedes any other " "shell options if it takes effect and can be set either in the [nss] section " @@ -1099,47 +1125,47 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:800 +#: sssd.conf.5.xml:829 msgid "Default: not set (SSSD will use the value retrieved from LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:806 +#: sssd.conf.5.xml:835 msgid "allowed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:809 +#: sssd.conf.5.xml:838 msgid "" "Restrict user shell to one of the listed values. The order of evaluation is:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:812 +#: sssd.conf.5.xml:841 msgid "1. If the shell is present in <quote>/etc/shells</quote>, it is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:816 +#: sssd.conf.5.xml:845 msgid "" "2. If the shell is in the allowed_shells list but not in <quote>/etc/shells</" "quote>, use the value of the shell_fallback parameter." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:821 +#: sssd.conf.5.xml:850 msgid "" "3. If the shell is not in the allowed_shells list and not in <quote>/etc/" "shells</quote>, a nologin shell is used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:826 +#: sssd.conf.5.xml:855 msgid "The wildcard (*) can be used to allow any shell." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:829 +#: sssd.conf.5.xml:858 msgid "" "The (*) is useful if you want to use shell_fallback in case that user's " "shell is not in <quote>/etc/shells</quote> and maintaining list of all " @@ -1147,105 +1173,105 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:836 +#: sssd.conf.5.xml:865 msgid "An empty string for shell is passed as-is to libc." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:839 +#: sssd.conf.5.xml:868 msgid "" "The <quote>/etc/shells</quote> is only read on SSSD start up, which means " "that a restart of the SSSD is required in case a new shell is installed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:843 +#: sssd.conf.5.xml:872 msgid "Default: Not set. The user shell is automatically used." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:848 +#: sssd.conf.5.xml:877 msgid "vetoed_shells (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:851 +#: sssd.conf.5.xml:880 msgid "Replace any instance of these shells with the shell_fallback" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:856 +#: sssd.conf.5.xml:885 msgid "shell_fallback (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:859 +#: sssd.conf.5.xml:888 msgid "" "The default shell to use if an allowed shell is not installed on the machine." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:863 +#: sssd.conf.5.xml:892 msgid "Default: /bin/sh" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:868 +#: sssd.conf.5.xml:897 msgid "default_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:871 +#: sssd.conf.5.xml:900 msgid "" "The default shell to use if the provider does not return one during lookup. " "This option can be specified globally in the [nss] section or per-domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:877 +#: sssd.conf.5.xml:906 msgid "" "Default: not set (Return NULL if no shell is specified and rely on libc to " "substitute something sensible when necessary, usually /bin/sh)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:884 sssd.conf.5.xml:1121 +#: sssd.conf.5.xml:913 sssd.conf.5.xml:1167 msgid "get_domains_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:887 sssd.conf.5.xml:1124 +#: sssd.conf.5.xml:916 sssd.conf.5.xml:1170 msgid "" "Specifies time in seconds for which the list of subdomains will be " "considered valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:896 +#: sssd.conf.5.xml:925 msgid "memcache_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:899 +#: sssd.conf.5.xml:928 msgid "" "Specifies time in seconds for which records in the in-memory cache will be " "valid." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:906 +#: sssd.conf.5.xml:935 msgid "" "NOTE: If the environment variable SSS_NSS_USE_MEMCACHE is set to \"NO\", " "client applications will not use the fast in-memory cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:914 sssd-ifp.5.xml:74 +#: sssd.conf.5.xml:943 sssd-ifp.5.xml:74 msgid "user_attributes (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:917 +#: sssd.conf.5.xml:946 msgid "" "Some of the additional NSS responder requests can return more attributes " "than just the POSIX ones defined by the NSS interface. The list of " @@ -1256,72 +1282,96 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:930 +#: sssd.conf.5.xml:959 msgid "" "To make configuration more easy the NSS responder will check the InfoPipe " "option if it is not set for the NSS responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:935 +#: sssd.conf.5.xml:964 msgid "Default: not set, fallback to InfoPipe option" msgstr "" +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> +#: sssd.conf.5.xml:969 +msgid "pwfield (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:972 +msgid "" +"The value that NSS operations that return users or groups will return for " +"the <quote>password</quote> field." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para> +#: sssd.conf.5.xml:977 include/override_homedir.xml:56 +msgid "This option can also be set per-domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> +#: sssd.conf.5.xml:980 +msgid "" +"Default: <quote>*</quote> (remote domains) or <quote>x</quote> (the files " +"domain)" +msgstr "" + #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:942 +#: sssd.conf.5.xml:988 msgid "PAM configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:944 +#: sssd.conf.5.xml:990 msgid "" "These options can be used to configure the Pluggable Authentication Module " "(PAM) service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:949 +#: sssd.conf.5.xml:995 msgid "offline_credentials_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:952 +#: sssd.conf.5.xml:998 msgid "" "If the authentication provider is offline, how long should we allow cached " "logins (in days since the last successful online login)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:957 sssd.conf.5.xml:970 +#: sssd.conf.5.xml:1003 sssd.conf.5.xml:1016 msgid "Default: 0 (No limit)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:963 +#: sssd.conf.5.xml:1009 msgid "offline_failed_login_attempts (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:966 +#: sssd.conf.5.xml:1012 msgid "" "If the authentication provider is offline, how many failed login attempts " "are allowed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:976 +#: sssd.conf.5.xml:1022 msgid "offline_failed_login_delay (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:979 +#: sssd.conf.5.xml:1025 msgid "" "The time in minutes which has to pass after offline_failed_login_attempts " "has been reached before a new login attempt is possible." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:984 +#: sssd.conf.5.xml:1030 msgid "" "If set to 0 the user cannot authenticate offline if " "offline_failed_login_attempts has been reached. Only a successful online " @@ -1329,59 +1379,59 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:990 sssd.conf.5.xml:1088 +#: sssd.conf.5.xml:1036 sssd.conf.5.xml:1134 msgid "Default: 5" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:996 +#: sssd.conf.5.xml:1042 msgid "pam_verbosity (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:999 +#: sssd.conf.5.xml:1045 msgid "" "Controls what kind of messages are shown to the user during authentication. " "The higher the number to more messages are displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1004 +#: sssd.conf.5.xml:1050 msgid "Currently sssd supports the following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1007 +#: sssd.conf.5.xml:1053 msgid "<emphasis>0</emphasis>: do not show any message" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1010 +#: sssd.conf.5.xml:1056 msgid "<emphasis>1</emphasis>: show only important messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1014 +#: sssd.conf.5.xml:1060 msgid "<emphasis>2</emphasis>: show informational messages" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1017 +#: sssd.conf.5.xml:1063 msgid "<emphasis>3</emphasis>: show all messages and debug information" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1021 sssd.8.xml:63 +#: sssd.conf.5.xml:1067 sssd.8.xml:63 msgid "Default: 1" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1027 +#: sssd.conf.5.xml:1073 msgid "pam_response_filter (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1030 +#: sssd.conf.5.xml:1076 msgid "" "A comma separated list of strings which allows to remove (filter) data send " "by the PAM responder to pam_sss PAM module. There are different kind of " @@ -1390,61 +1440,61 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1038 +#: sssd.conf.5.xml:1084 msgid "" "While messages already can be controlled with the help of the pam_verbosity " "option this option allows to filter out other kind of responses as well." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1045 +#: sssd.conf.5.xml:1091 msgid "ENV" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1046 +#: sssd.conf.5.xml:1092 msgid "Do not sent any environment variables to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1049 +#: sssd.conf.5.xml:1095 msgid "ENV:var_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1050 +#: sssd.conf.5.xml:1096 msgid "Do not sent environment variable var_name to any service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1054 +#: sssd.conf.5.xml:1100 msgid "ENV:var_name:service" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1055 +#: sssd.conf.5.xml:1101 msgid "Do not sent environment variable var_name to service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1043 +#: sssd.conf.5.xml:1089 msgid "" "Currently the following filters are supported: <placeholder type=" "\"variablelist\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1065 +#: sssd.conf.5.xml:1111 msgid "Example: ENV:KRB5CCNAME:sudo-i" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1071 +#: sssd.conf.5.xml:1117 msgid "pam_id_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1074 +#: sssd.conf.5.xml:1120 msgid "" "For any PAM request while SSSD is online, the SSSD will attempt to " "immediately update the cached identity information for the user in order to " @@ -1452,7 +1502,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1080 +#: sssd.conf.5.xml:1126 msgid "" "A complete PAM conversation may perform multiple PAM requests, such as " "account management and session opening. This option controls (on a per-" @@ -1461,17 +1511,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1094 +#: sssd.conf.5.xml:1140 msgid "pam_pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1097 sssd.conf.5.xml:1747 +#: sssd.conf.5.xml:1143 sssd.conf.5.xml:1793 msgid "Display a warning N days before the password expires." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1100 +#: sssd.conf.5.xml:1146 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -1479,26 +1529,26 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1106 sssd.conf.5.xml:1750 +#: sssd.conf.5.xml:1152 sssd.conf.5.xml:1796 msgid "" "If zero is set, then this filter is not applied, i.e. if the expiration " "warning was received from backend server, it will automatically be displayed." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1111 +#: sssd.conf.5.xml:1157 msgid "" "This setting can be overridden by setting <emphasis>pwd_expiration_warning</" "emphasis> for a particular domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1133 +#: sssd.conf.5.xml:1179 msgid "pam_trusted_users (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1136 +#: sssd.conf.5.xml:1182 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to run PAM conversations against trusted domains. Users not " @@ -1508,74 +1558,74 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1146 +#: sssd.conf.5.xml:1192 msgid "Default: All users are considered trusted by default" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1150 +#: sssd.conf.5.xml:1196 msgid "" "Please note that UID 0 is always allowed to access the PAM responder even in " "case it is not in the pam_trusted_users list." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1157 +#: sssd.conf.5.xml:1203 msgid "pam_public_domains (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1160 +#: sssd.conf.5.xml:1206 msgid "" "Specifies the comma-separated list of domain names that are accessible even " "to untrusted users." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1164 +#: sssd.conf.5.xml:1210 msgid "Two special values for pam_public_domains option are defined:" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1168 +#: sssd.conf.5.xml:1214 msgid "" "all (Untrusted users are allowed to access all domains in PAM responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1172 +#: sssd.conf.5.xml:1218 msgid "" "none (Untrusted users are not allowed to access any domains PAM in " "responder.)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1176 sssd.conf.5.xml:1201 sssd.conf.5.xml:1220 -#: sssd.conf.5.xml:1544 sssd.conf.5.xml:2458 sssd-ldap.5.xml:1823 +#: sssd.conf.5.xml:1222 sssd.conf.5.xml:1247 sssd.conf.5.xml:1266 +#: sssd.conf.5.xml:1590 sssd.conf.5.xml:2504 sssd-ldap.5.xml:1823 msgid "Default: none" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1181 +#: sssd.conf.5.xml:1227 msgid "pam_account_expired_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1184 +#: sssd.conf.5.xml:1230 msgid "" "Allows a custom expiration message to be set, replacing the default " "'Permission denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1189 +#: sssd.conf.5.xml:1235 msgid "" "Note: Please be aware that message is only printed for the SSH service " "unless pam_verbostiy is set to 3 (show all messages and debug information)." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1197 +#: sssd.conf.5.xml:1243 #, no-wrap msgid "" "pam_account_expired_message = Account expired, please contact help desk.\n" @@ -1583,19 +1633,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1206 +#: sssd.conf.5.xml:1252 msgid "pam_account_locked_message (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1209 +#: sssd.conf.5.xml:1255 msgid "" "Allows a custom lockout message to be set, replacing the default 'Permission " "denied' message." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:1216 +#: sssd.conf.5.xml:1262 #, no-wrap msgid "" "pam_account_locked_message = Account locked, please contact help desk.\n" @@ -1603,12 +1653,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1225 +#: sssd.conf.5.xml:1271 msgid "pam_cert_auth (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1228 +#: sssd.conf.5.xml:1274 msgid "" "Enable certificate based Smartcard authentication. Since this requires " "additional communication with the Smartcard which will delay the " @@ -1616,46 +1666,46 @@ msgstr "" #. type: Content of: <refsect1><refsect2><refsect3><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1234 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 +#: sssd.conf.5.xml:1280 sssd-ldap.5.xml:1051 sssd-ldap.5.xml:1078 #: sssd-ldap.5.xml:1369 sssd-ldap.5.xml:1390 sssd-ldap.5.xml:1896 #: include/ldap_id_mapping.xml:244 msgid "Default: False" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1239 +#: sssd.conf.5.xml:1285 msgid "pam_cert_db_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1242 +#: sssd.conf.5.xml:1288 msgid "" "The path to the certificate database which contain the PKCS#11 modules to " "access the Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1246 +#: sssd.conf.5.xml:1292 msgid "Default: /etc/pki/nssdb (NSS version)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1251 +#: sssd.conf.5.xml:1297 msgid "p11_child_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1254 +#: sssd.conf.5.xml:1300 msgid "How many seconds will pam_sss wait for p11_child to finish." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1267 +#: sssd.conf.5.xml:1313 msgid "SUDO configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1269 +#: sssd.conf.5.xml:1315 msgid "" "These options can be used to configure the sudo service. The detailed " "instructions for configuration of <citerefentry> <refentrytitle>sudo</" @@ -1666,34 +1716,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1286 +#: sssd.conf.5.xml:1332 msgid "sudo_timed (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1289 +#: sssd.conf.5.xml:1335 msgid "" "Whether or not to evaluate the sudoNotBefore and sudoNotAfter attributes " "that implement time-dependent sudoers entries." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1302 +#: sssd.conf.5.xml:1348 msgid "AUTOFS configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1304 +#: sssd.conf.5.xml:1350 msgid "These options can be used to configure the autofs service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1308 +#: sssd.conf.5.xml:1354 msgid "autofs_negative_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1311 +#: sssd.conf.5.xml:1357 msgid "" "Specifies for how many seconds should the autofs responder negative cache " "hits (that is, queries for invalid map entries, like nonexistent ones) " @@ -1701,68 +1751,68 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1327 +#: sssd.conf.5.xml:1373 msgid "SSH configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1329 +#: sssd.conf.5.xml:1375 msgid "These options can be used to configure the SSH service." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1333 +#: sssd.conf.5.xml:1379 msgid "ssh_hash_known_hosts (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1336 +#: sssd.conf.5.xml:1382 msgid "" "Whether or not to hash host names and addresses in the managed known_hosts " "file." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1345 +#: sssd.conf.5.xml:1391 msgid "ssh_known_hosts_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1348 +#: sssd.conf.5.xml:1394 msgid "" "How many seconds to keep a host in the managed known_hosts file after its " "host keys were requested." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1352 +#: sssd.conf.5.xml:1398 msgid "Default: 180" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1357 +#: sssd.conf.5.xml:1403 msgid "ca_db (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1360 +#: sssd.conf.5.xml:1406 msgid "" "Path to a storage of trusted CA certificates. The option is used to validate " "user certificates before deriving public ssh keys from them." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1365 +#: sssd.conf.5.xml:1411 msgid "Default: /etc/pki/nssdb" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:1373 +#: sssd.conf.5.xml:1419 msgid "PAC responder configuration options" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1375 +#: sssd.conf.5.xml:1421 msgid "" "The PAC responder works together with the authorization data plugin for MIT " "Kerberos sssd_pac_plugin.so and a sub-domain provider. The plugin sends the " @@ -1774,7 +1824,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1384 +#: sssd.conf.5.xml:1430 msgid "" "If the remote user does not exist in the cache, it is created. The uid is " "determined with the help of the SID, trusted domains will have UPGs and the " @@ -1785,24 +1835,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:1392 +#: sssd.conf.5.xml:1438 msgid "" "If there are SIDs of groups from domains sssd knows about, the user will be " "added to those groups." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:1398 +#: sssd.conf.5.xml:1444 msgid "These options can be used to configure the PAC responder." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1402 sssd-ifp.5.xml:50 +#: sssd.conf.5.xml:1448 sssd-ifp.5.xml:50 msgid "allowed_uids (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1405 +#: sssd.conf.5.xml:1451 msgid "" "Specifies the comma-separated list of UID values or user names that are " "allowed to access the PAC responder. User names are resolved to UIDs at " @@ -1810,12 +1860,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1411 +#: sssd.conf.5.xml:1457 msgid "Default: 0 (only the root user is allowed to access the PAC responder)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1415 +#: sssd.conf.5.xml:1461 msgid "" "Please note that although the UID 0 is used as the default it will be " "overwritten with this option. If you still want to allow the root user to " @@ -1824,36 +1874,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1424 +#: sssd.conf.5.xml:1470 msgid "pac_lifetime (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1427 +#: sssd.conf.5.xml:1473 msgid "" "Lifetime of the PAC entry in seconds. As long as the PAC is valid the PAC " "data can be used to determine the group memberships of a user." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:1442 +#: sssd.conf.5.xml:1488 msgid "DOMAIN SECTIONS" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1449 +#: sssd.conf.5.xml:1495 msgid "min_id,max_id (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1452 +#: sssd.conf.5.xml:1498 msgid "" "UID and GID limits for the domain. If a domain contains an entry that is " "outside these limits, it is ignored." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1457 +#: sssd.conf.5.xml:1503 msgid "" "For users, this affects the primary GID limit. The user will not be returned " "to NSS if either the UID or the primary GID is outside the range. For non-" @@ -1862,46 +1912,46 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1464 +#: sssd.conf.5.xml:1510 msgid "" "These ID limits affect even saving entries to cache, not only returning them " "by name or ID." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1468 +#: sssd.conf.5.xml:1514 msgid "Default: 1 for min_id, 0 (no limit) for max_id" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1474 +#: sssd.conf.5.xml:1520 msgid "enumerate (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1477 +#: sssd.conf.5.xml:1523 msgid "" "Determines if a domain can be enumerated. This parameter can have one of the " "following values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1481 +#: sssd.conf.5.xml:1527 msgid "TRUE = Users and groups are enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1484 +#: sssd.conf.5.xml:1530 msgid "FALSE = No enumerations for this domain" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1487 sssd.conf.5.xml:1702 sssd.conf.5.xml:1869 +#: sssd.conf.5.xml:1533 sssd.conf.5.xml:1748 sssd.conf.5.xml:1915 msgid "Default: FALSE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1490 +#: sssd.conf.5.xml:1536 msgid "" "Note: Enabling enumeration has a moderate performance impact on SSSD while " "enumeration is running. It may take up to several minutes after SSSD startup " @@ -1913,14 +1963,14 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1503 +#: sssd.conf.5.xml:1549 msgid "" "While the first enumeration is running, requests for the complete user or " "group lists may return no results until it completes." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1508 +#: sssd.conf.5.xml:1554 msgid "" "Further, enabling enumeration may increase the time necessary to detect " "network disconnection, as longer timeouts are required to ensure that " @@ -1929,39 +1979,39 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1516 +#: sssd.conf.5.xml:1562 msgid "" "For the reasons cited above, enabling enumeration is not recommended, " "especially in large environments." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1524 +#: sssd.conf.5.xml:1570 msgid "subdomain_enumerate (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1531 +#: sssd.conf.5.xml:1577 msgid "all" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1532 +#: sssd.conf.5.xml:1578 msgid "All discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1535 +#: sssd.conf.5.xml:1581 msgid "none" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1536 +#: sssd.conf.5.xml:1582 msgid "No discovered trusted domains will be enumerated" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1527 +#: sssd.conf.5.xml:1573 msgid "" "Whether any of autodetected trusted domains should be enumerated. The " "supported values are: <placeholder type=\"variablelist\" id=\"0\"/> " @@ -1970,19 +2020,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1550 +#: sssd.conf.5.xml:1596 msgid "entry_cache_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1553 +#: sssd.conf.5.xml:1599 msgid "" "How many seconds should nss_sss consider entries valid before asking the " "backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1557 +#: sssd.conf.5.xml:1603 msgid "" "The cache expiration timestamps are stored as attributes of individual " "objects in the cache. Therefore, changing the cache timeout only has effect " @@ -1993,151 +2043,151 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1570 +#: sssd.conf.5.xml:1616 msgid "Default: 5400" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1576 +#: sssd.conf.5.xml:1622 msgid "entry_cache_user_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1579 +#: sssd.conf.5.xml:1625 msgid "" "How many seconds should nss_sss consider user entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1583 sssd.conf.5.xml:1596 sssd.conf.5.xml:1609 -#: sssd.conf.5.xml:1622 sssd.conf.5.xml:1635 sssd.conf.5.xml:1649 -#: sssd.conf.5.xml:1663 +#: sssd.conf.5.xml:1629 sssd.conf.5.xml:1642 sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1668 sssd.conf.5.xml:1681 sssd.conf.5.xml:1695 +#: sssd.conf.5.xml:1709 msgid "Default: entry_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1589 +#: sssd.conf.5.xml:1635 msgid "entry_cache_group_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1592 +#: sssd.conf.5.xml:1638 msgid "" "How many seconds should nss_sss consider group entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1602 +#: sssd.conf.5.xml:1648 msgid "entry_cache_netgroup_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1605 +#: sssd.conf.5.xml:1651 msgid "" "How many seconds should nss_sss consider netgroup entries valid before " "asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1615 +#: sssd.conf.5.xml:1661 msgid "entry_cache_service_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1618 +#: sssd.conf.5.xml:1664 msgid "" "How many seconds should nss_sss consider service entries valid before asking " "the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1628 +#: sssd.conf.5.xml:1674 msgid "entry_cache_sudo_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1631 +#: sssd.conf.5.xml:1677 msgid "" "How many seconds should sudo consider rules valid before asking the backend " "again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1641 +#: sssd.conf.5.xml:1687 msgid "entry_cache_autofs_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1644 +#: sssd.conf.5.xml:1690 msgid "" "How many seconds should the autofs service consider automounter maps valid " "before asking the backend again" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1655 +#: sssd.conf.5.xml:1701 msgid "entry_cache_ssh_host_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1658 +#: sssd.conf.5.xml:1704 msgid "" "How many seconds to keep a host ssh key after refresh. IE how long to cache " "the host key for." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1669 +#: sssd.conf.5.xml:1715 msgid "refresh_expired_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1672 +#: sssd.conf.5.xml:1718 msgid "" "Specifies how many seconds SSSD has to wait before triggering a background " "refresh task which will refresh all expired or nearly expired records." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1677 +#: sssd.conf.5.xml:1723 msgid "" "The background refresh will process users, groups and netgroups in the cache." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1681 +#: sssd.conf.5.xml:1727 msgid "You can consider setting this value to 3/4 * entry_cache_timeout." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1685 sssd-ldap.5.xml:746 sssd-ipa.5.xml:232 +#: sssd.conf.5.xml:1731 sssd-ldap.5.xml:746 sssd-ipa.5.xml:247 msgid "Default: 0 (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1691 +#: sssd.conf.5.xml:1737 msgid "cache_credentials (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1694 +#: sssd.conf.5.xml:1740 msgid "Determines if user credentials are also cached in the local LDB cache" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1698 +#: sssd.conf.5.xml:1744 msgid "User credentials are stored in a SHA512 hash, not in plaintext" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1708 +#: sssd.conf.5.xml:1754 msgid "cache_credentials_minimal_first_factor_length (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1711 +#: sssd.conf.5.xml:1757 msgid "" "If 2-Factor-Authentication (2FA) is used and credentials should be saved " "this value determines the minimal length the first authentication factor " @@ -2145,24 +2195,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1718 +#: sssd.conf.5.xml:1764 msgid "" "This should avoid that the short PINs of a PIN based 2FA scheme are saved in " "the cache which would make them easy targets for brute-force attacks." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1723 +#: sssd.conf.5.xml:1769 msgid "Default: 8" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1729 +#: sssd.conf.5.xml:1775 msgid "account_cache_expiration (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1732 +#: sssd.conf.5.xml:1778 msgid "" "Number of days entries are left in cache after last successful login before " "being removed during a cleanup of the cache. 0 means keep forever. The " @@ -2171,17 +2221,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1739 +#: sssd.conf.5.xml:1785 msgid "Default: 0 (unlimited)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1744 +#: sssd.conf.5.xml:1790 msgid "pwd_expiration_warning (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1755 +#: sssd.conf.5.xml:1801 msgid "" "Please note that the backend server has to provide information about the " "expiration time of the password. If this information is missing, sssd " @@ -2190,33 +2240,33 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1762 +#: sssd.conf.5.xml:1808 msgid "Default: 7 (Kerberos), 0 (LDAP)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1768 +#: sssd.conf.5.xml:1814 msgid "id_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1771 +#: sssd.conf.5.xml:1817 msgid "" "The identification provider used for the domain. Supported ID providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1775 +#: sssd.conf.5.xml:1821 msgid "<quote>proxy</quote>: Support a legacy NSS provider" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1778 sssd.conf.5.xml:1915 +#: sssd.conf.5.xml:1824 sssd.conf.5.xml:1961 msgid "<quote>local</quote>: SSSD internal provider for local users" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1782 +#: sssd.conf.5.xml:1828 msgid "" "<quote>ldap</quote>: LDAP provider. See <citerefentry> <refentrytitle>sssd-" "ldap</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> for more " @@ -2224,8 +2274,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1790 sssd.conf.5.xml:1895 sssd.conf.5.xml:1950 -#: sssd.conf.5.xml:2013 +#: sssd.conf.5.xml:1836 sssd.conf.5.xml:1941 sssd.conf.5.xml:1996 +#: sssd.conf.5.xml:2059 msgid "" "<quote>ipa</quote>: FreeIPA and Red Hat Enterprise Identity Management " "provider. See <citerefentry> <refentrytitle>sssd-ipa</refentrytitle> " @@ -2234,8 +2284,8 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1799 sssd.conf.5.xml:1904 sssd.conf.5.xml:1959 -#: sssd.conf.5.xml:2022 +#: sssd.conf.5.xml:1845 sssd.conf.5.xml:1950 sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2068 msgid "" "<quote>ad</quote>: Active Directory provider. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2243,19 +2293,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1810 +#: sssd.conf.5.xml:1856 msgid "use_fully_qualified_names (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1813 +#: sssd.conf.5.xml:1859 msgid "" "Use the full name and domain (as formatted by the domain's full_name_format) " "as the user's login name reported to NSS." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1818 +#: sssd.conf.5.xml:1864 msgid "" "If set to TRUE, all requests to this domain must use fully qualified names. " "For example, if used in LOCAL domain that contains a \"test\" user, " @@ -2264,7 +2314,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1826 +#: sssd.conf.5.xml:1872 msgid "" "NOTE: This option has no effect on netgroup lookups due to their tendency to " "include nested netgroups without qualified names. For netgroups, all domains " @@ -2272,22 +2322,22 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1833 +#: sssd.conf.5.xml:1879 msgid "Default: FALSE (TRUE if default_domain_suffix is used)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1839 +#: sssd.conf.5.xml:1885 msgid "ignore_group_members (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1842 +#: sssd.conf.5.xml:1888 msgid "Do not return group members for group lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1845 +#: sssd.conf.5.xml:1891 msgid "" "If set to TRUE, the group membership attribute is not requested from the " "ldap server, and group members are not returned when processing group lookup " @@ -2299,7 +2349,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1863 +#: sssd.conf.5.xml:1909 msgid "" "Enabling this option can also make access provider checks for group " "membership significantly faster, especially for groups containing many " @@ -2307,19 +2357,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1874 +#: sssd.conf.5.xml:1920 msgid "auth_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1877 +#: sssd.conf.5.xml:1923 msgid "" "The authentication provider used for the domain. Supported auth providers " "are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1881 sssd.conf.5.xml:1943 +#: sssd.conf.5.xml:1927 sssd.conf.5.xml:1989 msgid "" "<quote>ldap</quote> for native LDAP authentication. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2327,7 +2377,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1888 +#: sssd.conf.5.xml:1934 msgid "" "<quote>krb5</quote> for Kerberos authentication. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2335,30 +2385,30 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1912 +#: sssd.conf.5.xml:1958 msgid "" "<quote>proxy</quote> for relaying authentication to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1919 +#: sssd.conf.5.xml:1965 msgid "<quote>none</quote> disables authentication explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1922 +#: sssd.conf.5.xml:1968 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "authentication requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1928 +#: sssd.conf.5.xml:1974 msgid "access_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1931 +#: sssd.conf.5.xml:1977 msgid "" "The access control provider used for the domain. There are two built-in " "access providers (in addition to any included in installed backends) " @@ -2366,19 +2416,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1937 +#: sssd.conf.5.xml:1983 msgid "" "<quote>permit</quote> always allow access. It's the only permitted access " "provider for a local domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1940 +#: sssd.conf.5.xml:1986 msgid "<quote>deny</quote> always deny access." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1967 +#: sssd.conf.5.xml:2013 msgid "" "<quote>simple</quote> access control based on access or deny lists. See " "<citerefentry> <refentrytitle>sssd-simple</refentrytitle> <manvolnum>5</" @@ -2387,7 +2437,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1974 +#: sssd.conf.5.xml:2020 msgid "" "<quote>krb5</quote>: .k5login based access control. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum></" @@ -2395,29 +2445,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1981 +#: sssd.conf.5.xml:2027 msgid "<quote>proxy</quote> for relaying access control to another PAM module." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1984 +#: sssd.conf.5.xml:2030 msgid "Default: <quote>permit</quote>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:1989 +#: sssd.conf.5.xml:2035 msgid "chpass_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1992 +#: sssd.conf.5.xml:2038 msgid "" "The provider which should handle change password operations for the domain. " "Supported change password providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:1997 +#: sssd.conf.5.xml:2043 msgid "" "<quote>ldap</quote> to change a password stored in a LDAP server. See " "<citerefentry> <refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</" @@ -2425,7 +2475,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2005 +#: sssd.conf.5.xml:2051 msgid "" "<quote>krb5</quote> to change the Kerberos password. See <citerefentry> " "<refentrytitle>sssd-krb5</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2433,35 +2483,35 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2030 +#: sssd.conf.5.xml:2076 msgid "" "<quote>proxy</quote> for relaying password changes to some other PAM target." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2034 +#: sssd.conf.5.xml:2080 msgid "<quote>none</quote> disallows password changes explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2037 +#: sssd.conf.5.xml:2083 msgid "" "Default: <quote>auth_provider</quote> is used if it is set and can handle " "change password requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2044 +#: sssd.conf.5.xml:2090 msgid "sudo_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2047 +#: sssd.conf.5.xml:2093 msgid "The SUDO provider used for the domain. Supported SUDO providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2051 +#: sssd.conf.5.xml:2097 msgid "" "<quote>ldap</quote> for rules stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2469,32 +2519,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2059 +#: sssd.conf.5.xml:2105 msgid "" "<quote>ipa</quote> the same as <quote>ldap</quote> but with IPA default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2063 +#: sssd.conf.5.xml:2109 msgid "" "<quote>ad</quote> the same as <quote>ldap</quote> but with AD default " "settings." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2067 +#: sssd.conf.5.xml:2113 msgid "<quote>none</quote> disables SUDO explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2070 sssd.conf.5.xml:2148 sssd.conf.5.xml:2189 -#: sssd.conf.5.xml:2214 +#: sssd.conf.5.xml:2116 sssd.conf.5.xml:2194 sssd.conf.5.xml:2235 +#: sssd.conf.5.xml:2260 msgid "Default: The value of <quote>id_provider</quote> is used if it is set." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2074 +#: sssd.conf.5.xml:2120 msgid "" "The detailed instructions for configuration of sudo_provider are in the " "manual page <citerefentry> <refentrytitle>sssd-sudo</refentrytitle> " @@ -2505,12 +2555,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2091 +#: sssd.conf.5.xml:2137 msgid "selinux_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2094 +#: sssd.conf.5.xml:2140 msgid "" "The provider which should handle loading of selinux settings. Note that this " "provider will be called right after access provider ends. Supported selinux " @@ -2518,7 +2568,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2100 +#: sssd.conf.5.xml:2146 msgid "" "<quote>ipa</quote> to load selinux settings from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2526,31 +2576,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2108 +#: sssd.conf.5.xml:2154 msgid "<quote>none</quote> disallows fetching selinux settings explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2111 +#: sssd.conf.5.xml:2157 msgid "" "Default: <quote>id_provider</quote> is used if it is set and can handle " "selinux loading requests." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2117 +#: sssd.conf.5.xml:2163 msgid "subdomains_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2120 +#: sssd.conf.5.xml:2166 msgid "" "The provider which should handle fetching of subdomains. This value should " "be always the same as id_provider. Supported subdomain providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2126 +#: sssd.conf.5.xml:2172 msgid "" "<quote>ipa</quote> to load a list of subdomains from an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2558,7 +2608,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2135 +#: sssd.conf.5.xml:2181 msgid "" "<quote>ad</quote> to load a list of subdomains from an Active Directory " "server. See <citerefentry> <refentrytitle>sssd-ad</refentrytitle> " @@ -2567,23 +2617,23 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2144 +#: sssd.conf.5.xml:2190 msgid "<quote>none</quote> disallows fetching subdomains explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2155 +#: sssd.conf.5.xml:2201 msgid "autofs_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2158 +#: sssd.conf.5.xml:2204 msgid "" "The autofs provider used for the domain. Supported autofs providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2162 +#: sssd.conf.5.xml:2208 msgid "" "<quote>ldap</quote> to load maps stored in LDAP. See <citerefentry> " "<refentrytitle>sssd-ldap</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2591,7 +2641,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2169 +#: sssd.conf.5.xml:2215 msgid "" "<quote>ipa</quote> to load maps stored in an IPA server. See <citerefentry> " "<refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2599,7 +2649,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2177 +#: sssd.conf.5.xml:2223 msgid "" "<quote>ad</quote> to load maps stored in an AD server. See <citerefentry> " "<refentrytitle>sssd-ad</refentrytitle> <manvolnum>5</manvolnum> </" @@ -2607,24 +2657,24 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2186 +#: sssd.conf.5.xml:2232 msgid "<quote>none</quote> disables autofs explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2196 +#: sssd.conf.5.xml:2242 msgid "hostid_provider (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2199 +#: sssd.conf.5.xml:2245 msgid "" "The provider used for retrieving host identity information. Supported " "hostid providers are:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2203 +#: sssd.conf.5.xml:2249 msgid "" "<quote>ipa</quote> to load host identity stored in an IPA server. See " "<citerefentry> <refentrytitle>sssd-ipa</refentrytitle> <manvolnum>5</" @@ -2632,12 +2682,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2211 +#: sssd.conf.5.xml:2257 msgid "<quote>none</quote> disables hostid explicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2224 +#: sssd.conf.5.xml:2270 msgid "" "Regular expression for this domain that describes how to parse the string " "containing user name and domain into these components. The \"domain\" can " @@ -2647,7 +2697,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2233 +#: sssd.conf.5.xml:2279 msgid "" "Default for the AD and IPA provider: <quote>(((?P<domain>[^\\\\]+)\\" "\\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?" @@ -2656,29 +2706,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2238 +#: sssd.conf.5.xml:2284 msgid "username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2241 +#: sssd.conf.5.xml:2287 msgid "username@domain.name" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd.conf.5.xml:2244 +#: sssd.conf.5.xml:2290 msgid "domain\\username" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2247 +#: sssd.conf.5.xml:2293 msgid "" "While the first two correspond to the general default the third one is " "introduced to allow easy integration of users from Windows domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2252 +#: sssd.conf.5.xml:2298 msgid "" "Default: <quote>(?P<name>[^@]+)@?(?P<domain>[^@]*$)</quote> " "which translates to \"the name is everything up to the <quote>@</quote> " @@ -2686,7 +2736,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2258 +#: sssd.conf.5.xml:2304 msgid "" "PLEASE NOTE: the support for non-unique named subpatterns is not available " "on all platforms (e.g. RHEL5 and SLES10). Only platforms with libpcre " @@ -2694,66 +2744,66 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2265 +#: sssd.conf.5.xml:2311 msgid "" "PLEASE NOTE ALSO: older version of libpcre only support the Python syntax (?" "P<name>) to label subpatterns." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2312 +#: sssd.conf.5.xml:2358 msgid "Default: <quote>%1$s@%2$s</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2318 +#: sssd.conf.5.xml:2364 msgid "lookup_family_order (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2321 +#: sssd.conf.5.xml:2367 msgid "" "Provides the ability to select preferred address family to use when " "performing DNS lookups." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2325 +#: sssd.conf.5.xml:2371 msgid "Supported values:" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2328 +#: sssd.conf.5.xml:2374 msgid "ipv4_first: Try looking up IPv4 address, if that fails, try IPv6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2331 +#: sssd.conf.5.xml:2377 msgid "ipv4_only: Only attempt to resolve hostnames to IPv4 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2334 +#: sssd.conf.5.xml:2380 msgid "ipv6_first: Try looking up IPv6 address, if that fails, try IPv4" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2337 +#: sssd.conf.5.xml:2383 msgid "ipv6_only: Only attempt to resolve hostnames to IPv6 addresses." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2340 +#: sssd.conf.5.xml:2386 msgid "Default: ipv4_first" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2346 +#: sssd.conf.5.xml:2392 msgid "dns_resolver_timeout (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2349 +#: sssd.conf.5.xml:2395 msgid "" "Defines the amount of time (in seconds) to wait for a reply from the DNS " "resolver before assuming that it is unreachable. If this timeout is reached, " @@ -2761,70 +2811,70 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2355 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 +#: sssd.conf.5.xml:2401 sssd-ldap.5.xml:1251 sssd-ldap.5.xml:1293 #: sssd-ldap.5.xml:1311 sssd-krb5.5.xml:248 msgid "Default: 6" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2361 +#: sssd.conf.5.xml:2407 msgid "dns_discovery_domain (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2364 +#: sssd.conf.5.xml:2410 msgid "" "If service discovery is used in the back end, specifies the domain part of " "the service discovery DNS query." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2368 +#: sssd.conf.5.xml:2414 msgid "Default: Use the domain part of machine's hostname" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2374 +#: sssd.conf.5.xml:2420 msgid "override_gid (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2377 +#: sssd.conf.5.xml:2423 msgid "Override the primary GID value with the one specified." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2383 +#: sssd.conf.5.xml:2429 msgid "case_sensitive (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2391 +#: sssd.conf.5.xml:2437 msgid "True" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2394 +#: sssd.conf.5.xml:2440 msgid "Case sensitive. This value is invalid for AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2400 +#: sssd.conf.5.xml:2446 msgid "False" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2402 +#: sssd.conf.5.xml:2448 msgid "Case insensitive." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2406 +#: sssd.conf.5.xml:2452 msgid "Preserving" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2409 +#: sssd.conf.5.xml:2455 msgid "" "Same as False (case insensitive), but does not lowercase names in the result " "of NSS operations. Note that name aliases (and in case of services also " @@ -2832,7 +2882,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2386 +#: sssd.conf.5.xml:2432 msgid "" "Treat user and group names as case sensitive. At the moment, this option is " "not supported in the local provider. Possible option values are: " @@ -2840,17 +2890,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2421 +#: sssd.conf.5.xml:2467 msgid "Default: True (False for AD provider)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2427 +#: sssd.conf.5.xml:2473 msgid "subdomain_inherit (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2430 +#: sssd.conf.5.xml:2476 msgid "" "Specifies a list of configuration parameters that should be inherited by a " "subdomain. Please note that only selected parameters can be inherited. " @@ -2858,34 +2908,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2436 +#: sssd.conf.5.xml:2482 msgid "ignore_group_members" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2439 +#: sssd.conf.5.xml:2485 msgid "ldap_purge_cache_timeout" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2442 sssd-ldap.5.xml:1084 +#: sssd.conf.5.xml:2488 sssd-ldap.5.xml:1084 msgid "ldap_use_tokengroups" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2445 +#: sssd.conf.5.xml:2491 msgid "ldap_user_principal" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2448 +#: sssd.conf.5.xml:2494 msgid "" "ldap_krb5_keytab (the value of krb5_keytab will be used if ldap_krb5_keytab " "is not set explicitly)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><programlisting> -#: sssd.conf.5.xml:2454 +#: sssd.conf.5.xml:2500 #, no-wrap msgid "" "subdomain_inherit = ldap_purge_cache_timeout\n" @@ -2893,32 +2943,32 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2452 sssd-secrets.5.xml:305 +#: sssd.conf.5.xml:2498 sssd-secrets.5.xml:305 msgid "Example: <placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2461 +#: sssd.conf.5.xml:2507 msgid "Note: This option only works with the IPA and AD provider." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2468 +#: sssd.conf.5.xml:2514 msgid "subdomain_homedir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2479 +#: sssd.conf.5.xml:2525 msgid "%F" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2480 +#: sssd.conf.5.xml:2526 msgid "flat (NetBIOS) name of a subdomain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2471 +#: sssd.conf.5.xml:2517 msgid "" "Use this homedir as default value for all subdomains within this domain in " "IPA AD trust. See <emphasis>override_homedir</emphasis> for info about " @@ -2928,34 +2978,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2485 +#: sssd.conf.5.xml:2531 msgid "" "The value can be overridden by <emphasis>override_homedir</emphasis> option." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2489 +#: sssd.conf.5.xml:2535 msgid "Default: <filename>/home/%d/%u</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2494 +#: sssd.conf.5.xml:2540 msgid "realmd_tags (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2497 +#: sssd.conf.5.xml:2543 msgid "" "Various tags stored by the realmd configuration service for this domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2503 +#: sssd.conf.5.xml:2549 msgid "cached_auth_timeout (int)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2506 +#: sssd.conf.5.xml:2552 msgid "" "Specifies time in seconds since last successful online authentication for " "which user will be authenticated using cached credentials while SSSD is in " @@ -2963,12 +3013,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2512 +#: sssd.conf.5.xml:2558 msgid "Special value 0 implies that this feature is disabled." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2516 +#: sssd.conf.5.xml:2562 msgid "" "Please note that if <quote>cached_auth_timeout</quote> is longer than " "<quote>pam_id_timeout</quote> then the back end could be called to handle " @@ -2976,7 +3026,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:1444 +#: sssd.conf.5.xml:1490 msgid "" "These configuration options can be present in a domain configuration " "section, that is, in a section called <quote>[domain/<replaceable>NAME</" @@ -2984,29 +3034,29 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2534 +#: sssd.conf.5.xml:2580 msgid "proxy_pam_target (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2537 +#: sssd.conf.5.xml:2583 msgid "The proxy target PAM proxies to." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2540 +#: sssd.conf.5.xml:2586 msgid "" "Default: not set by default, you have to take an existing pam configuration " "or create a new one and add the service name here." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2548 +#: sssd.conf.5.xml:2594 msgid "proxy_lib_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2551 +#: sssd.conf.5.xml:2597 msgid "" "The name of the NSS library to use in proxy domains. The NSS functions " "searched for in the library are in the form of _nss_$(libName)_$(function), " @@ -3014,12 +3064,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2561 +#: sssd.conf.5.xml:2607 msgid "proxy_fast_alias (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2564 +#: sssd.conf.5.xml:2610 msgid "" "When a user or group is looked up by name in the proxy provider, a second " "lookup by ID is performed to \"canonicalize\" the name in case the requested " @@ -3028,12 +3078,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2578 +#: sssd.conf.5.xml:2624 msgid "proxy_max_children (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2581 +#: sssd.conf.5.xml:2627 msgid "" "This option specifies the number of pre-forked proxy children. It is useful " "for high-load SSSD environments where sssd may run out of available child " @@ -3041,19 +3091,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2530 +#: sssd.conf.5.xml:2576 msgid "" "Options valid for proxy domains. <placeholder type=\"variablelist\" id=" "\"0\"/>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd.conf.5.xml:2597 +#: sssd.conf.5.xml:2643 msgid "The local domain section" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd.conf.5.xml:2599 +#: sssd.conf.5.xml:2645 msgid "" "This section contains settings for domain that stores users and groups in " "SSSD native database, that is, a domain that uses " @@ -3061,73 +3111,73 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2606 +#: sssd.conf.5.xml:2652 msgid "default_shell (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2609 +#: sssd.conf.5.xml:2655 msgid "The default shell for users created with SSSD userspace tools." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2613 +#: sssd.conf.5.xml:2659 msgid "Default: <filename>/bin/bash</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2618 +#: sssd.conf.5.xml:2664 msgid "base_directory (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2621 +#: sssd.conf.5.xml:2667 msgid "" "The tools append the login name to <replaceable>base_directory</replaceable> " "and use that as the home directory." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2626 +#: sssd.conf.5.xml:2672 msgid "Default: <filename>/home</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2631 +#: sssd.conf.5.xml:2677 msgid "create_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2634 +#: sssd.conf.5.xml:2680 msgid "" "Indicate if a home directory should be created by default for new users. " "Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2638 sssd.conf.5.xml:2650 +#: sssd.conf.5.xml:2684 sssd.conf.5.xml:2696 msgid "Default: TRUE" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2643 +#: sssd.conf.5.xml:2689 msgid "remove_homedir (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2646 +#: sssd.conf.5.xml:2692 msgid "" "Indicate if a home directory should be removed by default for deleted " "users. Can be overridden on command line." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2655 +#: sssd.conf.5.xml:2701 msgid "homedir_umask (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2658 +#: sssd.conf.5.xml:2704 msgid "" "Used by <citerefentry> <refentrytitle>sss_useradd</refentrytitle> " "<manvolnum>8</manvolnum> </citerefentry> to specify the default permissions " @@ -3135,17 +3185,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2666 +#: sssd.conf.5.xml:2712 msgid "Default: 077" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2671 +#: sssd.conf.5.xml:2717 msgid "skel_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2674 +#: sssd.conf.5.xml:2720 msgid "" "The skeleton directory, which contains files and directories to be copied in " "the user's home directory, when the home directory is created by " @@ -3154,17 +3204,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2684 +#: sssd.conf.5.xml:2730 msgid "Default: <filename>/etc/skel</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2689 +#: sssd.conf.5.xml:2735 msgid "mail_dir (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2692 +#: sssd.conf.5.xml:2738 msgid "" "The mail spool directory. This is needed to manipulate the mailbox when its " "corresponding user account is modified or deleted. If not specified, a " @@ -3172,17 +3222,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2699 +#: sssd.conf.5.xml:2745 msgid "Default: <filename>/var/mail</filename>" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><term> -#: sssd.conf.5.xml:2704 +#: sssd.conf.5.xml:2750 msgid "userdel_cmd (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2707 +#: sssd.conf.5.xml:2753 msgid "" "The command that is run after a user is removed. The command us passed the " "username of the user being removed as the first and only parameter. The " @@ -3190,19 +3240,81 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><variablelist><varlistentry><listitem><para> -#: sssd.conf.5.xml:2713 +#: sssd.conf.5.xml:2759 msgid "Default: None, no command is run" msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd.conf.5.xml:2723 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 -#: sssd-ipa.5.xml:657 sssd-ad.5.xml:1000 sssd-krb5.5.xml:570 -#: sss_rpcidmapd.5.xml:98 +#: sssd.conf.5.xml:2769 +msgid "TRUSTED DOMAIN SECTION" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2771 +msgid "" +"Some options used in the domain section can also be used in the trusted " +"domain section, that is, in a section called <quote>[domain/" +"<replaceable>DOMAIN_NAME</replaceable>]/<replaceable>TRUSTED_DOMAIN_NAME</" +"replaceable>]</quote>. Currently supported options in the trusted domain " +"section are:" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2776 +msgid "ldap_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2777 +msgid "ldap_user_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2778 +msgid "ldap_group_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2779 +msgid "ldap_netgroup_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2780 +msgid "ldap_service_search_base," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2781 +msgid "ad_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2782 +msgid "ad_backup_server," +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2783 +msgid "ad_site." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd.conf.5.xml:2785 +msgid "" +"For more details about these options see their individual description in the " +"manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><title> +#: sssd.conf.5.xml:2791 sssd-ldap.5.xml:2662 sssd-simple.5.xml:131 +#: sssd-ipa.5.xml:672 sssd-ad.5.xml:1015 sssd-krb5.5.xml:570 +#: sss_rpcidmapd.5.xml:98 sssd-files.5.xml:71 msgid "EXAMPLE" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd.conf.5.xml:2729 +#: sssd.conf.5.xml:2797 #, no-wrap msgid "" "[sssd]\n" @@ -3232,7 +3344,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd.conf.5.xml:2725 +#: sssd.conf.5.xml:2793 msgid "" "The following example shows a typical SSSD config. It does not describe " "configuration of the domains themselves - refer to documentation on " @@ -3279,7 +3391,8 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:49 sssd-simple.5.xml:69 sssd-ipa.5.xml:75 sssd-ad.5.xml:96 -#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-secrets.5.xml:94 +#: sssd-krb5.5.xml:63 sssd-ifp.5.xml:44 sssd-files.5.xml:57 +#: sssd-secrets.5.xml:94 msgid "CONFIGURATION OPTIONS" msgstr "" @@ -4089,7 +4202,7 @@ #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> #: sssd-ldap.5.xml:759 sssd-ldap.5.xml:1125 sssd-ldap.5.xml:1199 -#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:528 +#: sssd-ldap.5.xml:2240 sssd-ipa.5.xml:543 msgid "Default: cn" msgstr "" @@ -5089,7 +5202,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:403 sssd-krb5.5.xml:103 +#: sssd-ldap.5.xml:1743 sssd-ipa.5.xml:418 sssd-krb5.5.xml:103 msgid "krb5_realm (string)" msgstr "" @@ -6130,8 +6243,8 @@ #. type: Content of: <refsect1><refsect2><para> #: sssd-ldap.5.xml:2669 sssd-ldap.5.xml:2687 sssd-simple.5.xml:139 -#: sssd-ipa.5.xml:665 sssd-ad.5.xml:1008 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 -#: include/ldap_id_mapping.xml:105 +#: sssd-ipa.5.xml:680 sssd-ad.5.xml:1023 sssd-sudo.5.xml:56 sssd-krb5.5.xml:579 +#: sssd-files.5.xml:78 include/ldap_id_mapping.xml:105 msgid "<placeholder type=\"programlisting\" id=\"0\"/>" msgstr "" @@ -6165,7 +6278,7 @@ #. type: Content of: <reference><refentry><refsect1><title> #: sssd-ldap.5.xml:2703 sssd_krb5_locator_plugin.8.xml:61 sssd-simple.5.xml:148 -#: sssd-ad.5.xml:1023 sssd.8.xml:195 sss_seed.8.xml:163 +#: sssd-ad.5.xml:1038 sssd.8.xml:195 sss_seed.8.xml:163 msgid "NOTES" msgstr "" @@ -6178,25 +6291,18 @@ "distribution." msgstr "" -#. type: Content of: <refentryinfo> -#: pam_sss.8.xml:8 include/upstream.xml:2 -msgid "" -"<productname>SSSD</productname> <orgname>The SSSD upstream - http://" -"fedorahosted.org/sssd</orgname>" -msgstr "" - #. type: Content of: <reference><refentry><refnamediv><refname> -#: pam_sss.8.xml:13 pam_sss.8.xml:18 +#: pam_sss.8.xml:11 pam_sss.8.xml:16 msgid "pam_sss" msgstr "" #. type: Content of: <reference><refentry><refnamediv><refpurpose> -#: pam_sss.8.xml:19 +#: pam_sss.8.xml:17 msgid "PAM module for SSSD" msgstr "" #. type: Content of: <reference><refentry><refsynopsisdiv><cmdsynopsis> -#: pam_sss.8.xml:24 +#: pam_sss.8.xml:22 msgid "" "<command>pam_sss.so</command> <arg choice='opt'> <replaceable>quiet</" "replaceable> </arg> <arg choice='opt'> <replaceable>forward_pass</" @@ -6206,11 +6312,12 @@ "arg> <arg choice='opt'> <replaceable>ignore_unknown_user</replaceable> </" "arg> <arg choice='opt'> <replaceable>ignore_authinfo_unavail</replaceable> </" "arg> <arg choice='opt'> <replaceable>domains=X</replaceable> </arg> <arg " -"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg>" +"choice='opt'> <replaceable>allow_missing_name</replaceable> </arg> <arg " +"choice='opt'> <replaceable>prompt_always</replaceable> </arg>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:57 +#: pam_sss.8.xml:58 msgid "" "<command>pam_sss.so</command> is the PAM interface to the System Security " "Services daemon (SSSD). Errors and results are logged through " @@ -6218,34 +6325,34 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:67 +#: pam_sss.8.xml:68 msgid "<option>quiet</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:70 +#: pam_sss.8.xml:71 msgid "Suppress log messages for unknown users." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:75 +#: pam_sss.8.xml:76 msgid "<option>forward_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:78 +#: pam_sss.8.xml:79 msgid "" "If <option>forward_pass</option> is set the entered password is put on the " "stack for other PAM modules to use." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:85 +#: pam_sss.8.xml:86 msgid "<option>use_first_pass</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:88 +#: pam_sss.8.xml:89 msgid "" "The argument use_first_pass forces the module to use a previous stacked " "modules password and will never prompt the user - if no password is " @@ -6253,31 +6360,31 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:96 +#: pam_sss.8.xml:97 msgid "<option>use_authtok</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:99 +#: pam_sss.8.xml:100 msgid "" "When password changing enforce the module to set the new password to the one " "provided by a previously stacked password module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:106 +#: pam_sss.8.xml:107 msgid "<option>retry=N</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:109 +#: pam_sss.8.xml:110 msgid "" "If specified the user is asked another N times for a password if " "authentication fails. Default is 0." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:111 +#: pam_sss.8.xml:112 msgid "" "Please note that this option might not work as expected if the application " "calling PAM handles the user dialog on its own. A typical example is " @@ -6285,36 +6392,36 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:120 +#: pam_sss.8.xml:121 msgid "<option>ignore_unknown_user</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:123 +#: pam_sss.8.xml:124 msgid "" "If this option is specified and the user does not exist, the PAM module will " "return PAM_IGNORE. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:130 +#: pam_sss.8.xml:131 msgid "<option>ignore_authinfo_unavail</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:134 +#: pam_sss.8.xml:135 msgid "" "Specifies that the PAM module should return PAM_IGNORE if it cannot contact " "the SSSD daemon. This causes the PAM framework to ignore this module." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:141 +#: pam_sss.8.xml:142 msgid "<option>domains</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:145 +#: pam_sss.8.xml:146 msgid "" "Allows the administrator to restrict the domains a particular PAM service is " "allowed to authenticate against. The format is a comma-separated list of " @@ -6322,7 +6429,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:151 +#: pam_sss.8.xml:152 msgid "" "NOTE: Must be used in conjunction with the <quote>pam_trusted_users</quote> " "and <quote>pam_public_domains</quote> options. Please see the " @@ -6332,19 +6439,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> -#: pam_sss.8.xml:165 +#: pam_sss.8.xml:166 msgid "<option>allow_missing_name</option>" msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:169 +#: pam_sss.8.xml:170 msgid "" "The main purpose of this option is to let SSSD determine the user name based " "on additional information, e.g. the certificate from a Smartcard." msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para><programlisting> -#: pam_sss.8.xml:179 +#: pam_sss.8.xml:180 #, no-wrap msgid "" "auth sufficient pam_sss.so allow_missing_name\n" @@ -6352,7 +6459,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> -#: pam_sss.8.xml:174 +#: pam_sss.8.xml:175 msgid "" "The current use case are login managers which can monitor a Smartcard reader " "for card events. In case a Smartcard is inserted the login manager will call " @@ -6362,25 +6469,40 @@ "it on the PAM stack." msgstr "" +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><term> +#: pam_sss.8.xml:190 +msgid "<option>prompt_always</option>" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><variablelist><varlistentry><listitem><para> +#: pam_sss.8.xml:194 +msgid "" +"Always prompt the user for credentials. With this option credentials " +"requested by other PAM modules, typically a password, will be ignored and " +"pam_sss will prompt for credentials again. Based on the pre-auth reply by " +"SSSD pam_sss might prompt for a password, a Smartcard PIN or other " +"credentials." +msgstr "" + #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:191 +#: pam_sss.8.xml:207 msgid "MODULE TYPES PROVIDED" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:192 +#: pam_sss.8.xml:208 msgid "" "All module types (<option>account</option>, <option>auth</option>, " "<option>password</option> and <option>session</option>) are provided." msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: pam_sss.8.xml:198 +#: pam_sss.8.xml:214 msgid "FILES" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:199 +#: pam_sss.8.xml:215 msgid "" "If a password reset by root fails, because the corresponding SSSD provider " "does not support password resets, an individual message can be displayed. " @@ -6388,7 +6510,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:204 +#: pam_sss.8.xml:220 msgid "" "The message is read from the file <filename>pam_sss_pw_reset_message.LOC</" "filename> where LOC stands for a locale string returned by <citerefentry> " @@ -6400,7 +6522,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: pam_sss.8.xml:214 +#: pam_sss.8.xml:230 msgid "" "These files are searched in the directory <filename>/etc/sssd/customize/" "DOMAIN_NAME/</filename>. If no matching file is present a generic message is " @@ -6805,17 +6927,37 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:196 +#: sssd-ipa.5.xml:196 sssd-ad.5.xml:944 +msgid "dyndns_auth (string)" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:199 sssd-ad.5.xml:947 +msgid "" +"Whether the nsupdate utility should use GSS-TSIG authentication for secure " +"updates with the DNS server, insecure updates can be sent by setting this " +"option to 'none'." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> +#: sssd-ipa.5.xml:205 sssd-ad.5.xml:953 +#, fuzzy +#| msgid "Default: 3" +msgid "Default: GSS-TSIG" +msgstr "默认: 3" + +#. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> +#: sssd-ipa.5.xml:211 msgid "ipa_enable_dns_sites (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:199 sssd-ad.5.xml:194 +#: sssd-ipa.5.xml:214 sssd-ad.5.xml:194 msgid "Enables DNS sites - location based service discovery." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:203 +#: sssd-ipa.5.xml:218 msgid "" "If true and service discovery (see Service Discovery paragraph at the bottom " "of the man page) is enabled, then the SSSD will first attempt location " @@ -6827,12 +6969,12 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:222 sssd-ad.5.xml:899 +#: sssd-ipa.5.xml:237 sssd-ad.5.xml:899 msgid "dyndns_refresh_interval (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:225 +#: sssd-ipa.5.xml:240 msgid "" "How often should the back end perform periodic DNS update in addition to the " "automatic update performed when the back end goes online. This option is " @@ -6840,216 +6982,216 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:238 sssd-ad.5.xml:917 +#: sssd-ipa.5.xml:253 sssd-ad.5.xml:917 msgid "dyndns_update_ptr (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:241 sssd-ad.5.xml:920 +#: sssd-ipa.5.xml:256 sssd-ad.5.xml:920 msgid "" "Whether the PTR record should also be explicitly updated when updating the " "client's DNS records. Applicable only when dyndns_update is true." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:246 +#: sssd-ipa.5.xml:261 msgid "" "This option should be False in most IPA deployments as the IPA server " "generates the PTR records automatically when forward records are changed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:252 +#: sssd-ipa.5.xml:267 msgid "Default: False (disabled)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:258 sssd-ad.5.xml:931 +#: sssd-ipa.5.xml:273 sssd-ad.5.xml:931 msgid "dyndns_force_tcp (bool)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:261 sssd-ad.5.xml:934 +#: sssd-ipa.5.xml:276 sssd-ad.5.xml:934 msgid "" "Whether the nsupdate utility should default to using TCP for communicating " "with the DNS server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:265 sssd-ad.5.xml:938 +#: sssd-ipa.5.xml:280 sssd-ad.5.xml:938 msgid "Default: False (let nsupdate choose the protocol)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:271 sssd-ad.5.xml:944 +#: sssd-ipa.5.xml:286 sssd-ad.5.xml:959 msgid "dyndns_server (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:274 sssd-ad.5.xml:947 +#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 msgid "" "The DNS server to use when performing a DNS update. In most setups, it's " "recommended to leave this option unset." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:279 sssd-ad.5.xml:952 +#: sssd-ipa.5.xml:294 sssd-ad.5.xml:967 msgid "" "Setting this option makes sense for environments where the DNS server is " "different from the identity server." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:284 sssd-ad.5.xml:957 +#: sssd-ipa.5.xml:299 sssd-ad.5.xml:972 msgid "" "Please note that this option will be only used in fallback attempt when " "previous attempt using autodetected settings failed." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:289 sssd-ad.5.xml:962 +#: sssd-ipa.5.xml:304 sssd-ad.5.xml:977 msgid "Default: None (let nsupdate choose the server)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:295 +#: sssd-ipa.5.xml:310 msgid "ipa_hbac_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:298 +#: sssd-ipa.5.xml:313 msgid "Optional. Use the given string as search base for HBAC related objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:302 +#: sssd-ipa.5.xml:317 msgid "Default: Use base DN" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:308 +#: sssd-ipa.5.xml:323 msgid "ipa_host_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:311 +#: sssd-ipa.5.xml:326 msgid "Optional. Use the given string as search base for host objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:315 sssd-ipa.5.xml:334 sssd-ipa.5.xml:353 sssd-ipa.5.xml:372 -#: sssd-ipa.5.xml:391 +#: sssd-ipa.5.xml:330 sssd-ipa.5.xml:349 sssd-ipa.5.xml:368 sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:406 msgid "" "See <quote>ldap_search_base</quote> for information about configuring " "multiple search bases." msgstr "" #. type: Content of: <listitem><para> -#: sssd-ipa.5.xml:320 sssd-ipa.5.xml:339 include/ldap_search_bases.xml:27 +#: sssd-ipa.5.xml:335 sssd-ipa.5.xml:354 include/ldap_search_bases.xml:27 msgid "Default: the value of <emphasis>ldap_search_base</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:327 +#: sssd-ipa.5.xml:342 msgid "ipa_selinux_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:330 +#: sssd-ipa.5.xml:345 msgid "Optional. Use the given string as search base for SELinux user maps." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:346 +#: sssd-ipa.5.xml:361 msgid "ipa_subdomains_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:349 +#: sssd-ipa.5.xml:364 msgid "Optional. Use the given string as search base for trusted domains." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:358 +#: sssd-ipa.5.xml:373 msgid "Default: the value of <emphasis>cn=trusts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:365 +#: sssd-ipa.5.xml:380 msgid "ipa_master_domain_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:368 +#: sssd-ipa.5.xml:383 msgid "Optional. Use the given string as search base for master domain object." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:377 +#: sssd-ipa.5.xml:392 msgid "Default: the value of <emphasis>cn=ad,cn=etc,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:384 +#: sssd-ipa.5.xml:399 msgid "ipa_views_search_base (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:387 +#: sssd-ipa.5.xml:402 msgid "Optional. Use the given string as search base for views containers." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:396 +#: sssd-ipa.5.xml:411 msgid "Default: the value of <emphasis>cn=views,cn=accounts,%basedn</emphasis>" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:406 +#: sssd-ipa.5.xml:421 msgid "" "The name of the Kerberos realm. This is optional and defaults to the value " "of <quote>ipa_domain</quote>." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:410 +#: sssd-ipa.5.xml:425 msgid "" "The name of the Kerberos realm has a special meaning in IPA - it is " "converted into the base DN to use for performing LDAP operations." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:418 sssd-ad.5.xml:971 +#: sssd-ipa.5.xml:433 sssd-ad.5.xml:986 msgid "krb5_confd_path (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:421 sssd-ad.5.xml:974 +#: sssd-ipa.5.xml:436 sssd-ad.5.xml:989 msgid "" "Absolute path of a directory where SSSD should place Kerberos configuration " "snippets." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:425 sssd-ad.5.xml:978 +#: sssd-ipa.5.xml:440 sssd-ad.5.xml:993 msgid "" "To disable the creation of the configuration snippets set the parameter to " "'none'." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:429 sssd-ad.5.xml:982 +#: sssd-ipa.5.xml:444 sssd-ad.5.xml:997 msgid "" "Default: not set (krb5.include.d subdirectory of SSSD's pubconf directory)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:436 +#: sssd-ipa.5.xml:451 msgid "ipa_hbac_refresh (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:439 +#: sssd-ipa.5.xml:454 msgid "" "The amount of time between lookups of the HBAC rules against the IPA server. " "This will reduce the latency and load on the IPA server if there are many " @@ -7057,17 +7199,17 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:446 sssd-ipa.5.xml:462 sssd-ad.5.xml:405 +#: sssd-ipa.5.xml:461 sssd-ipa.5.xml:477 sssd-ad.5.xml:405 msgid "Default: 5 (seconds)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:452 +#: sssd-ipa.5.xml:467 msgid "ipa_hbac_selinux (integer)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:455 +#: sssd-ipa.5.xml:470 msgid "" "The amount of time between lookups of the SELinux maps against the IPA " "server. This will reduce the latency and load on the IPA server if there are " @@ -7075,190 +7217,190 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:468 +#: sssd-ipa.5.xml:483 msgid "ipa_server_mode (boolean)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:471 +#: sssd-ipa.5.xml:486 msgid "This option should only be set by the IPA installer." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:475 +#: sssd-ipa.5.xml:490 msgid "" "The option denotes that the SSSD is running on IPA server and should perform " "lookups of users and groups from trusted domains differently." msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:486 +#: sssd-ipa.5.xml:501 msgid "ipa_automount_location (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:489 +#: sssd-ipa.5.xml:504 msgid "The automounter location this IPA client will be using" msgstr "" #. type: Content of: <reference><refentry><refsect1><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:492 +#: sssd-ipa.5.xml:507 msgid "Default: The location named \"default\"" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><title> -#: sssd-ipa.5.xml:500 +#: sssd-ipa.5.xml:515 msgid "VIEWS AND OVERRIDES" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:509 +#: sssd-ipa.5.xml:524 msgid "ipa_view_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:512 +#: sssd-ipa.5.xml:527 msgid "Objectclass of the view container." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:515 +#: sssd-ipa.5.xml:530 msgid "Default: nsContainer" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:521 +#: sssd-ipa.5.xml:536 msgid "ipa_view_name (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:524 +#: sssd-ipa.5.xml:539 msgid "Name of the attribute holding the name of the view." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:534 +#: sssd-ipa.5.xml:549 msgid "ipa_overide_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:537 +#: sssd-ipa.5.xml:552 msgid "Objectclass of the override objects." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:540 +#: sssd-ipa.5.xml:555 msgid "Default: ipaOverrideAnchor" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:546 +#: sssd-ipa.5.xml:561 msgid "ipa_anchor_uuid (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:549 +#: sssd-ipa.5.xml:564 msgid "" "Name of the attribute containing the reference to the original object in a " "remote domain." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:553 +#: sssd-ipa.5.xml:568 msgid "Default: ipaAnchorUUID" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:559 +#: sssd-ipa.5.xml:574 msgid "ipa_user_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:562 +#: sssd-ipa.5.xml:577 msgid "" "Name of the objectclass for user overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:567 +#: sssd-ipa.5.xml:582 msgid "User overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:570 +#: sssd-ipa.5.xml:585 msgid "ldap_user_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:573 +#: sssd-ipa.5.xml:588 msgid "ldap_user_uid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:576 +#: sssd-ipa.5.xml:591 msgid "ldap_user_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:579 +#: sssd-ipa.5.xml:594 msgid "ldap_user_gecos" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:582 +#: sssd-ipa.5.xml:597 msgid "ldap_user_home_directory" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:585 +#: sssd-ipa.5.xml:600 msgid "ldap_user_shell" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:588 +#: sssd-ipa.5.xml:603 msgid "ldap_user_ssh_public_key" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:593 +#: sssd-ipa.5.xml:608 msgid "Default: ipaUserOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><term> -#: sssd-ipa.5.xml:599 +#: sssd-ipa.5.xml:614 msgid "ipa_group_override_object_class (string)" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:602 +#: sssd-ipa.5.xml:617 msgid "" "Name of the objectclass for group overrides. It is used to determine if the " "found override object is related to a user or a group." msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:607 +#: sssd-ipa.5.xml:622 msgid "Group overrides can contain attributes given by" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:610 +#: sssd-ipa.5.xml:625 msgid "ldap_group_name" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para><itemizedlist><listitem><para> -#: sssd-ipa.5.xml:613 +#: sssd-ipa.5.xml:628 msgid "ldap_group_gid_number" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para><variablelist><varlistentry><listitem><para> -#: sssd-ipa.5.xml:618 +#: sssd-ipa.5.xml:633 msgid "Default: ipaGroupOverride" msgstr "" #. type: Content of: <reference><refentry><refsect1><refsect2><para> -#: sssd-ipa.5.xml:502 +#: sssd-ipa.5.xml:517 msgid "" "SSSD can handle views and overrides which are offered by FreeIPA 4.1 and " "later version. Since all paths and objectclasses are fixed on the server " @@ -7268,19 +7410,19 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><title> -#: sssd-ipa.5.xml:630 +#: sssd-ipa.5.xml:645 msgid "SUBDOMAINS PROVIDER" msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:632 +#: sssd-ipa.5.xml:647 msgid "" "The IPA subdomains provider behaves slightly differently if it is configured " "explicitly or implicitly." msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:636 +#: sssd-ipa.5.xml:651 msgid "" "If the option 'subdomains_provider = ipa' is found in the domain section of " "sssd.conf, the IPA subdomains provider is configured explicitly, and all " @@ -7288,7 +7430,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:642 +#: sssd-ipa.5.xml:657 msgid "" "If the option 'subdomains_provider' is not set in the domain section of sssd." "conf but there is the option 'id_provider = ipa', the IPA subdomains " @@ -7300,7 +7442,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ipa.5.xml:659 +#: sssd-ipa.5.xml:674 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -7308,7 +7450,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ipa.5.xml:666 +#: sssd-ipa.5.xml:681 #, no-wrap msgid "" "[domain/example.com]\n" @@ -8251,7 +8393,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1002 +#: sssd-ad.5.xml:1017 msgid "" "The following example assumes that SSSD is correctly configured and example." "com is one of the domains in the <replaceable>[sssd]</replaceable> section. " @@ -8259,7 +8401,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1009 +#: sssd-ad.5.xml:1024 #, no-wrap msgid "" "[domain/EXAMPLE]\n" @@ -8274,7 +8416,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para><programlisting> -#: sssd-ad.5.xml:1029 +#: sssd-ad.5.xml:1044 #, no-wrap msgid "" "access_provider = ldap\n" @@ -8283,7 +8425,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1025 +#: sssd-ad.5.xml:1040 msgid "" "The AD access control provider checks if the account is expired. It has the " "same effect as the following configuration of the LDAP provider: " @@ -8291,7 +8433,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1035 +#: sssd-ad.5.xml:1050 msgid "" "However, unless the <quote>ad</quote> access control provider is explicitly " "configured, the default access provider is <quote>permit</quote>. Please " @@ -8301,7 +8443,7 @@ msgstr "" #. type: Content of: <reference><refentry><refsect1><para> -#: sssd-ad.5.xml:1043 +#: sssd-ad.5.xml:1058 msgid "" "When the autofs provider is set to <quote>ad</quote>, the RFC2307 schema " "attribute mapping (nisMap, nisObject, ...) is used, because these attributes " @@ -9430,7 +9572,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:193 include/override_homedir.xml:27 +#: sssd-krb5.5.xml:193 include/override_homedir.xml:31 msgid "%P" msgstr "" @@ -9440,12 +9582,12 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: sssd-krb5.5.xml:199 include/override_homedir.xml:45 +#: sssd-krb5.5.xml:199 include/override_homedir.xml:49 msgid "%%" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: sssd-krb5.5.xml:200 include/override_homedir.xml:46 +#: sssd-krb5.5.xml:200 include/override_homedir.xml:50 msgid "a literal '%'" msgstr "" @@ -11008,6 +11150,64 @@ msgstr "" #. type: Content of: <reference><refentry><refnamediv><refname> +#: sssd-files.5.xml:10 sssd-files.5.xml:16 +msgid "sssd-files" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refpurpose> +#: sssd-files.5.xml:17 +msgid "SSSD files provider" +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:23 +msgid "" +"This manual page describes the files provider for <citerefentry> " +"<refentrytitle>sssd</refentrytitle> <manvolnum>8</manvolnum> </" +"citerefentry>. For a detailed syntax reference, refer to the <quote>FILE " +"FORMAT</quote> section of the <citerefentry> <refentrytitle>sssd.conf</" +"refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:36 +msgid "" +"The files provider mirrors the content of the <citerefentry> " +"<refentrytitle>passwd</refentrytitle> <manvolnum>5</manvolnum> </" +"citerefentry> and <citerefentry> <refentrytitle>group</refentrytitle> " +"<manvolnum>5</manvolnum> </citerefentry> files. The purpose of the files " +"provider is to make the users and groups traditionally only accessible with " +"NSS interfaces also available through the SSSD interfaces such as " +"<citerefentry> <refentrytitle>sssd-ifp</refentrytitle> <manvolnum>5</" +"manvolnum> </citerefentry>." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:59 +msgid "" +"The files provider has no specific options of its own, however, generic SSSD " +"domain options can be set where applicable. Refer to the section " +"<quote>DOMAIN SECTIONS</quote> of the <citerefentry> <refentrytitle>sssd." +"conf</refentrytitle> <manvolnum>5</manvolnum> </citerefentry> manual page " +"for details on the configuration of an SSSD domain." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para> +#: sssd-files.5.xml:73 +msgid "" +"The following example assumes that SSSD is correctly configured and files is " +"one of the domains in the <replaceable>[sssd]</replaceable> section." +msgstr "" + +#. type: Content of: <reference><refentry><refsect1><para><programlisting> +#: sssd-files.5.xml:79 +#, no-wrap +msgid "" +"[domain/files]\n" +"id_provider = files\n" +msgstr "" + +#. type: Content of: <reference><refentry><refnamediv><refname> #: sssd-secrets.5.xml:10 sssd-secrets.5.xml:16 msgid "sssd-secrets" msgstr "" @@ -11679,6 +11879,13 @@ "For more information on the service discovery mechanism, refer to RFC 2782." msgstr "" +#. type: Content of: <refentryinfo> +#: include/upstream.xml:2 +msgid "" +"<productname>SSSD</productname> <orgname>The SSSD upstream - https://pagure." +"io/SSSD/sssd/</orgname>" +msgstr "" + #. type: Content of: outside any tag (error?) #: include/upstream.xml:1 msgid "<placeholder type=\"refentryinfo\" id=\"0\"/>" @@ -12289,8 +12496,8 @@ #. type: Content of: outside any tag (error?) #: include/experimental.xml:1 msgid "" -"<emphasis> This is an experimental feature, please use http://fedorahosted." -"org/sssd to report any issues. </emphasis>" +"<emphasis> This is an experimental feature, please use https://pagure.io/" +"SSSD/sssd/ to report any issues. </emphasis>" msgstr "" #. type: Content of: <refsect1><title> @@ -12436,28 +12643,38 @@ msgid "fully qualified user name (user@domain)" msgstr "" +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> +#: include/override_homedir.xml:27 +msgid "%l" +msgstr "" + #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> #: include/override_homedir.xml:28 +msgid "The first letter of the login name." +msgstr "" + +#. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> +#: include/override_homedir.xml:32 msgid "UPN - User Principal Name (name@REALM)" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:31 +#: include/override_homedir.xml:35 msgid "%o" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:33 +#: include/override_homedir.xml:37 msgid "The original home directory retrieved from the identity provider." msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><term> -#: include/override_homedir.xml:38 +#: include/override_homedir.xml:42 msgid "%H" msgstr "" #. type: Content of: <varlistentry><listitem><para><variablelist><varlistentry><listitem><para> -#: include/override_homedir.xml:40 +#: include/override_homedir.xml:44 msgid "The value of configure option <emphasis>homedir_substring</emphasis>." msgstr "" @@ -12469,13 +12686,8 @@ "<placeholder type=\"variablelist\" id=\"0\"/>" msgstr "" -#. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:52 -msgid "This option can also be set per-domain." -msgstr "" - #. type: Content of: <varlistentry><listitem><para><programlisting> -#: include/override_homedir.xml:57 +#: include/override_homedir.xml:61 #, no-wrap msgid "" "override_homedir = /home/%u\n" @@ -12483,7 +12695,7 @@ msgstr "" #. type: Content of: <varlistentry><listitem><para> -#: include/override_homedir.xml:61 +#: include/override_homedir.xml:65 msgid "Default: Not set (SSSD will use the value retrieved from LDAP)" msgstr "" diff -Nru sssd-1.15.0/src/man/pt/include/experimental.xml sssd-1.15.2/src/man/pt/include/experimental.xml --- sssd-1.15.0/src/man/pt/include/experimental.xml 2017-01-25 15:44:05.938440353 +0000 +++ sssd-1.15.2/src/man/pt/include/experimental.xml 2017-03-15 16:58:45.359938193 +0000 @@ -1,2 +1,2 @@ <emphasis> This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. </emphasis> +https://pagure.io/SSSD/sssd/ to report any issues. </emphasis> diff -Nru sssd-1.15.0/src/man/pt/include/override_homedir.xml sssd-1.15.2/src/man/pt/include/override_homedir.xml --- sssd-1.15.0/src/man/pt/include/override_homedir.xml 2017-01-25 15:44:05.939440357 +0000 +++ sssd-1.15.2/src/man/pt/include/override_homedir.xml 2017-03-15 16:58:45.360938197 +0000 @@ -22,6 +22,10 @@ <listitem><para>nome totalmente qualificado do utilizador (utilizador@domínio)</para></listitem> </varlistentry> <varlistentry> + <term>%l</term> + <listitem><para>The first letter of the login name.</para></listitem> + </varlistentry> + <varlistentry> <term>%P</term> <listitem><para>UPN - User Principal Name (name@REALM)</para></listitem> </varlistentry> diff -Nru sssd-1.15.0/src/man/pt/include/upstream.xml sssd-1.15.2/src/man/pt/include/upstream.xml --- sssd-1.15.0/src/man/pt/include/upstream.xml 2017-01-25 15:44:05.938440353 +0000 +++ sssd-1.15.2/src/man/pt/include/upstream.xml 2017-03-15 16:58:45.359938193 +0000 @@ -1,3 +1,3 @@ <refentryinfo> <productname>SSSD</productname> <orgname>The SSSD upstream - -http://fedorahosted.org/sssd</orgname></refentryinfo> +https://pagure.io/SSSD/sssd/</orgname></refentryinfo> diff -Nru sssd-1.15.0/src/man/pt_BR/include/experimental.xml sssd-1.15.2/src/man/pt_BR/include/experimental.xml --- sssd-1.15.0/src/man/pt_BR/include/experimental.xml 2017-01-25 15:44:05.944440378 +0000 +++ sssd-1.15.2/src/man/pt_BR/include/experimental.xml 2017-03-15 16:58:45.363938209 +0000 @@ -1,2 +1,2 @@ <emphasis> This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. </emphasis> +https://pagure.io/SSSD/sssd/ to report any issues. </emphasis> diff -Nru sssd-1.15.0/src/man/pt_BR/include/override_homedir.xml sssd-1.15.2/src/man/pt_BR/include/override_homedir.xml --- sssd-1.15.0/src/man/pt_BR/include/override_homedir.xml 2017-01-25 15:44:05.944440378 +0000 +++ sssd-1.15.2/src/man/pt_BR/include/override_homedir.xml 2017-03-15 16:58:45.364938213 +0000 @@ -22,6 +22,10 @@ <listitem><para>fully qualified user name (user@domain)</para></listitem> </varlistentry> <varlistentry> + <term>%l</term> + <listitem><para>The first letter of the login name.</para></listitem> + </varlistentry> + <varlistentry> <term>%P</term> <listitem><para>UPN - User Principal Name (name@REALM)</para></listitem> </varlistentry> diff -Nru sssd-1.15.0/src/man/pt_BR/include/upstream.xml sssd-1.15.2/src/man/pt_BR/include/upstream.xml --- sssd-1.15.0/src/man/pt_BR/include/upstream.xml 2017-01-25 15:44:05.943440374 +0000 +++ sssd-1.15.2/src/man/pt_BR/include/upstream.xml 2017-03-15 16:58:45.363938209 +0000 @@ -1,3 +1,3 @@ <refentryinfo> <productname>SSSD</productname> <orgname>The SSSD upstream - -http://fedorahosted.org/sssd</orgname></refentryinfo> +https://pagure.io/SSSD/sssd/</orgname></refentryinfo> diff -Nru sssd-1.15.0/src/man/ru/include/experimental.xml sssd-1.15.2/src/man/ru/include/experimental.xml --- sssd-1.15.0/src/man/ru/include/experimental.xml 2017-01-25 15:44:05.948440394 +0000 +++ sssd-1.15.2/src/man/ru/include/experimental.xml 2017-03-15 16:58:45.367938225 +0000 @@ -1,2 +1,2 @@ <emphasis> This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. </emphasis> +https://pagure.io/SSSD/sssd/ to report any issues. </emphasis> diff -Nru sssd-1.15.0/src/man/ru/include/override_homedir.xml sssd-1.15.2/src/man/ru/include/override_homedir.xml --- sssd-1.15.0/src/man/ru/include/override_homedir.xml 2017-01-25 15:44:05.948440394 +0000 +++ sssd-1.15.2/src/man/ru/include/override_homedir.xml 2017-03-15 16:58:45.367938225 +0000 @@ -22,6 +22,10 @@ <listitem><para>fully qualified user name (user@domain)</para></listitem> </varlistentry> <varlistentry> + <term>%l</term> + <listitem><para>The first letter of the login name.</para></listitem> + </varlistentry> + <varlistentry> <term>%P</term> <listitem><para>UPN - User Principal Name (name@REALM)</para></listitem> </varlistentry> diff -Nru sssd-1.15.0/src/man/ru/include/upstream.xml sssd-1.15.2/src/man/ru/include/upstream.xml --- sssd-1.15.0/src/man/ru/include/upstream.xml 2017-01-25 15:44:05.948440394 +0000 +++ sssd-1.15.2/src/man/ru/include/upstream.xml 2017-03-15 16:58:45.367938225 +0000 @@ -1,3 +1,3 @@ <refentryinfo> <productname>SSSD</productname> <orgname>The SSSD upstream - -http://fedorahosted.org/sssd</orgname></refentryinfo> +https://pagure.io/SSSD/sssd/</orgname></refentryinfo> diff -Nru sssd-1.15.0/src/man/sssd-ad.5.xml sssd-1.15.2/src/man/sssd-ad.5.xml --- sssd-1.15.0/src/man/sssd-ad.5.xml 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/man/sssd-ad.5.xml 2017-03-15 16:53:24.000000000 +0000 @@ -941,6 +941,21 @@ </varlistentry> <varlistentry> + <term>dyndns_auth (string)</term> + <listitem> + <para> + Whether the nsupdate utility should use GSS-TSIG + authentication for secure updates with the DNS + server, insecure updates can be sent by setting + this option to 'none'. + </para> + <para> + Default: GSS-TSIG + </para> + </listitem> + </varlistentry> + + <varlistentry> <term>dyndns_server (string)</term> <listitem> <para> diff -Nru sssd-1.15.0/src/man/sssd.conf.5.xml sssd-1.15.2/src/man/sssd.conf.5.xml --- sssd-1.15.0/src/man/sssd.conf.5.xml 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/man/sssd.conf.5.xml 2017-03-15 16:53:24.000000000 +0000 @@ -525,6 +525,23 @@ </para> </listitem> </varlistentry> + <varlistentry> + <term>enable_files_domain (boolean)</term> + <listitem> + <para> + When this option is enabled, SSSD + prepends an implicit domain with + <quote>id_provider=files</quote> before + any explicitly configured domains. + </para> + <para condition="no_enable_files_domain"> + Default: false + </para> + <para condition="enable_files_domain"> + Default: true + </para> + </listitem> + </varlistentry> </variablelist> </para> </refsect2> @@ -645,6 +662,18 @@ </para> </listitem> </varlistentry> + <varlistentry> + <term>cache_first</term> + <listitem> + <para> + This option specifies whether the responder should + query all caches before querying the Data Providers. + </para> + <para> + Default: false + </para> + </listitem> + </varlistentry> </variablelist> </refsect2> @@ -936,6 +965,23 @@ </para> </listitem> </varlistentry> + <varlistentry> + <term>pwfield (string)</term> + <listitem> + <para> + The value that NSS operations that return + users or groups will return for the + <quote>password</quote> field. + </para> + <para> + This option can also be set per-domain. + </para> + <para> + Default: <quote>*</quote> (remote domains) + or <quote>x</quote> (the files domain) + </para> + </listitem> + </varlistentry> </variablelist> </refsect2> <refsect2 id='PAM'> @@ -2719,6 +2765,28 @@ </refsect1> + <refsect1 id='trusted-domains'> + <title>TRUSTED DOMAIN SECTION + + Some options used in the domain section can also be used in the + trusted domain section, that is, in a section called + [domain/DOMAIN_NAME]/TRUSTED_DOMAIN_NAME]. + Currently supported options in the trusted domain section are: + + ldap_search_base, + ldap_user_search_base, + ldap_group_search_base, + ldap_netgroup_search_base, + ldap_service_search_base, + ad_server, + ad_backup_server, + ad_site. + + For more details about these options see their individual description + in the manual page. + + + EXAMPLE diff -Nru sssd-1.15.0/src/man/sssd-files.5.xml sssd-1.15.2/src/man/sssd-files.5.xml --- sssd-1.15.0/src/man/sssd-files.5.xml 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/man/sssd-files.5.xml 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,88 @@ + + + +SSSD Manual pages + + + + + sssd-files + 5 + File Formats and Conventions + + + + sssd-files + SSSD files provider + + + + DESCRIPTION + + This manual page describes the files provider + for + + sssd + 8 + . + For a detailed syntax reference, refer to the FILE FORMAT section of the + + sssd.conf + 5 + manual page. + + + The files provider mirrors the content of the + + passwd + 5 + + and + + group + 5 + + files. The purpose of the files provider is to make the users + and groups traditionally only accessible with NSS interfaces + also available through the SSSD interfaces such as + + sssd-ifp + 5 + . + + + + + CONFIGURATION OPTIONS + + The files provider has no specific options of its own, however, + generic SSSD domain options can be set where applicable. + Refer to the section DOMAIN SECTIONS of the + + sssd.conf + 5 + manual page for details on the configuration + of an SSSD domain. + + + + + EXAMPLE + + The following example assumes that SSSD is correctly + configured and files is one of the domains in the + [sssd] section. + + + +[domain/files] +id_provider = files + + + + + + + + diff -Nru sssd-1.15.0/src/man/sssd-ipa.5.xml sssd-1.15.2/src/man/sssd-ipa.5.xml --- sssd-1.15.0/src/man/sssd-ipa.5.xml 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/man/sssd-ipa.5.xml 2017-03-15 16:53:24.000000000 +0000 @@ -193,6 +193,21 @@ + dyndns_auth (string) + + + Whether the nsupdate utility should use GSS-TSIG + authentication for secure updates with the DNS + server, insecure updates can be sent by setting + this option to 'none'. + + + Default: GSS-TSIG + + + + + ipa_enable_dns_sites (boolean) diff -Nru sssd-1.15.0/src/man/tg/include/experimental.xml sssd-1.15.2/src/man/tg/include/experimental.xml --- sssd-1.15.0/src/man/tg/include/experimental.xml 2017-01-25 15:44:05.952440410 +0000 +++ sssd-1.15.2/src/man/tg/include/experimental.xml 2017-03-15 16:58:45.371938241 +0000 @@ -1,2 +1,2 @@ This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/tg/include/override_homedir.xml sssd-1.15.2/src/man/tg/include/override_homedir.xml --- sssd-1.15.0/src/man/tg/include/override_homedir.xml 2017-01-25 15:44:05.952440410 +0000 +++ sssd-1.15.2/src/man/tg/include/override_homedir.xml 2017-03-15 16:58:45.371938241 +0000 @@ -22,6 +22,10 @@ fully qualified user name (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/tg/include/upstream.xml sssd-1.15.2/src/man/tg/include/upstream.xml --- sssd-1.15.0/src/man/tg/include/upstream.xml 2017-01-25 15:44:05.951440406 +0000 +++ sssd-1.15.2/src/man/tg/include/upstream.xml 2017-03-15 16:58:45.371938241 +0000 @@ -1,3 +1,3 @@ SSSD The SSSD upstream - -http://fedorahosted.org/sssd +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/uk/include/experimental.xml sssd-1.15.2/src/man/uk/include/experimental.xml --- sssd-1.15.0/src/man/uk/include/experimental.xml 2017-01-25 15:44:05.957440431 +0000 +++ sssd-1.15.2/src/man/uk/include/experimental.xml 2017-03-15 16:58:45.376938261 +0000 @@ -1,3 +1,2 @@ - Цю можливість ще не перевірено достатнім чином. Будь ласка, якщо -помітите якісь вади, повідомте про них за допомогою настанов на сторінці -http://fedorahosted.org/sssd. + This is an experimental feature, please use +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/uk/include/override_homedir.xml sssd-1.15.2/src/man/uk/include/override_homedir.xml --- sssd-1.15.0/src/man/uk/include/override_homedir.xml 2017-01-25 15:44:05.957440431 +0000 +++ sssd-1.15.2/src/man/uk/include/override_homedir.xml 2017-03-15 16:58:45.376938261 +0000 @@ -22,6 +22,10 @@ ім’я користувача повністю (користувач@домен) + %l + The first letter of the login name. + + %P UPN - User Principal Name (ім’я@ОБЛАСТЬ) diff -Nru sssd-1.15.0/src/man/uk/include/upstream.xml sssd-1.15.2/src/man/uk/include/upstream.xml --- sssd-1.15.0/src/man/uk/include/upstream.xml 2017-01-25 15:44:05.957440431 +0000 +++ sssd-1.15.2/src/man/uk/include/upstream.xml 2017-03-15 16:58:45.376938261 +0000 @@ -1,3 +1,3 @@ -SSSD Основна гілка розробки SSSD — -http://fedorahosted.org/sssd +SSSD The SSSD upstream - +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/man/uk/pam_sss.8.xml sssd-1.15.2/src/man/uk/pam_sss.8.xml --- sssd-1.15.0/src/man/uk/pam_sss.8.xml 2017-01-25 15:44:05.956440427 +0000 +++ sssd-1.15.2/src/man/uk/pam_sss.8.xml 2017-03-15 16:58:45.375938257 +0000 @@ -4,9 +4,8 @@ Сторінки підручника SSSD - -SSSD Основна гілка розробки SSSD — -http://fedorahosted.org/sssd + pam_sss @@ -29,7 +28,8 @@ ignore_unknown_user ignore_authinfo_unavail domains=X -allow_missing_name +allow_missing_name +prompt_always @@ -153,6 +153,20 @@ + + + + + + + Always prompt the user for credentials. With this option credentials +requested by other PAM modules, typically a password, will be ignored and +pam_sss will prompt for credentials again. Based on the pre-auth reply by +SSSD pam_sss might prompt for a password, a Smartcard PIN or other +credentials. + + + diff -Nru sssd-1.15.0/src/man/uk/sssd-ad.5.xml sssd-1.15.2/src/man/uk/sssd-ad.5.xml --- sssd-1.15.0/src/man/uk/sssd-ad.5.xml 2017-01-25 15:44:05.956440427 +0000 +++ sssd-1.15.2/src/man/uk/sssd-ad.5.xml 1970-01-01 00:00:00.000000000 +0000 @@ -1,971 +0,0 @@ - - - -Сторінки підручника SSSD - - - - - sssd-ad - 5 - Формати файлів та правила - - - - sssd-ad - Модуль надання даних Active Directory SSSD - - - - ОПИС - - На цій сторінці довідника описано налаштування засобу керування доступом AD -для sssd -8 . Щоб дізнатися більше про синтаксис -налаштування, зверніться до розділу «ФОРМАТ ФАЙЛІВ» сторінки довідника - sssd.conf -5 . - - - Засіб надання даних AD — це модуль, що використовується для встановлення -з’єднання з сервером Active Directory. Цей засіб потребує долучення -комп’ютера до домену AD та доступності таблиці ключів. - - - У засобі надання даних AD передбачено підтримку встановлення з’єднання з -Active Directory 2008 R2 або пізнішою версією. Робота з попередніми версіями -можлива, але не підтримується. - - - The AD provider can be used to get user information and authenticate users -from trusted domains. Currently only trusted domains in the same forest are -recognized. In addition servers from trusted domains are always -auto-discovered. - - - The AD provider enables SSSD to use the -sssd-ldap 5 - identity provider and the -sssd-krb5 5 - authentication provider with optimizations for Active -Directory environments. The AD provider accepts the same options used by the -sssd-ldap and sssd-krb5 providers with some exceptions. However, it is -neither necessary nor recommended to set these options. - - - The AD provider primarily copies the traditional ldap and krb5 provider -default options with some exceptions, the differences are listed in the -MODIFIED DEFAULT OPTIONS section. - - - The AD provider can also be used as an access, chpass, sudo and autofs -provider. No configuration of the access provider is required on the client -side. - - - Типово, модуль надання даних AD виконуватиме прив’язку до значень UID та GID -з параметра objectSID у Active Directory. Докладніший опис наведено у -розділі «ВСТАНОВЛЕННЯ ВІДПОВІДНОСТІ ІДЕНТИФІКАТОРІВ». Якщо вам потрібно -вимкнути встановлення відповідності ідентифікаторів і покладатися на -атрибути POSIX, визначені у Active Directory, вам слід встановити - -ldap_id_mapping = False - Щоб отримати дані щодо -користувачів і груп за допомогою атрибутів POSIX з надійних доменів, -адміністратор AD має переконатися, що атрибути POSIX відтворюються у -загальному каталозі (Global Catalog). - - - Дані щодо користувачів, груп та інших записів, які обслуговуються SSSD, у -модулі надання даних AD завжди обробляються із врахуванням регістру символів -для забезпечення сумісності з реалізацією Active Directory у LDAP. - - - - - ПАРАМЕТРИ НАЛАШТУВАННЯ - Зверніться до розділу «РОЗДІЛИ ДОМЕНІВ» сторінки довідника (man) - sssd.conf -5 , щоб дізнатися більше про -налаштування домену SSSD. - - ad_domain (рядок) - - - Визначає назву домену Active Directory. Є необов’язковим. Якщо не вказано, -буде використано назву домену з налаштувань. - - - Для забезпечення належної роботи цей параметр слід вказати у форматі запису -малими літерами повної версії назви домену Active Directory. - - - Скорочена назва домену (також відома як назва NetBIOS або проста назва) -автоматично визначається засобами SSSD. - - - - - - ad_enabled_domains (string) - - - A comma-separated list of enabled Active Directory domains. If provided, -SSSD will ignore any domains not listed in this option. If left unset, all -domains from the AD forest will be available. - - - For proper operation, this option must be specified in all lower-case and as -the fully qualified domain name of the Active Directory domain. For example: - -ad_enabled_domains = sales.example.com, eng.example.com - - - - The short domain name (also known as the NetBIOS or the flat name) will be -autodetected by SSSD. - - - Типове значення: не встановлено - - - - - - ad_server, ad_backup_server (рядок) - - - The comma-separated list of hostnames of the AD servers to which SSSD should -connect in order of preference. For more information on failover and server -redundancy, see the FAILOVER section. - - - This is optional if autodiscovery is enabled. For more information on -service discovery, refer to the SERVICE DISCOVERY section. - - - Note: Trusted domains will always auto-discover servers even if the primary -server is explicitly defined in the ad_server option. - - - - - - ad_hostname (рядок) - - - Необов’язковий. Може бути встановлено на комп’ютерах, де hostname(5) не -відповідає повній назві, що використовується доменом Active Directory для -розпізнавання цього вузла. - - - Це поле використовується для визначення основної назви вузла, яка -використовуватиметься у таблиці ключів. Ця назва має відповідати назві -вузла, для якого випущено таблицю ключів. - - - - - - ad_enable_dns_sites (булеве значення) - - - Вмикає сайти DNS — визначення служб на основі адрес. - - - Якщо вказано значення true і увімкнено визначення служб (див. розділ щодо -пошуку служб у нижній частині сторінки підручника (man)), SSSD спочатку -спробує визначити сервер Active Directory для встановлення з’єднання на -основі використання визначення сайтів Active Directory і повертається до -визначення за записами SRV DNS, якщо сайт AD не буде знайдено. Налаштування -SRV DNS, зокрема домен пошуку, використовуються також під час визначення -сайтів. - - - Типове значення: true - - - - - - ad_access_filter (рядок) - - - Цей параметр визначає фільтр керування доступом LDAP, якому має відповідати -запис користувача для того, щоб йому було надано доступ. Будь ласка, -зауважте, що слід явним чином встановити для параметра «access_provider» -значення «ad», щоб цей параметр почав діяти. - - - У параметрі також передбачено підтримку визначення різних фільтрів для -окремих доменів або дерев. Цей розширений фільтр повинен мати такий формат: -«КЛЮЧОВЕ СЛОВО:НАЗВА:ФІЛЬТР». Набір підтримуваних ключових слів: «DOM», -«FOREST» або ключове слово слід пропустити. - - - Якщо вказано ключове слово «DOM» або ключового слова не вказано, «НАЗВА» -визначає домен або піддомен, до якого застосовується фільтрування. Якщо -ключовим словом є «FOREST», фільтр застосовується до усіх доменів з лісу, -вказаного значенням «НАЗВА». - - - Декілька фільтрів можна відокремити символом «?», подібно до способу -визначення фільтрів у базах для пошуку. - - - Nested group membership must be searched for using a special OID -:1.2.840.113556.1.4.1941: in addition to the full -DOM:domain.example.org: syntax to ensure the parser does not attempt to -interpret the colon characters associated with the OID. If you do not use -this OID then nested group membership will not be resolved. See usage -example below and refer here for further information about the OID: [MS-ADTS] -section LDAP extensions - - - Завжди використовується відповідник з найвищим рівнем -відповідності. Наприклад, якщо визначено фільтрування для домену, учасником -якого є користувач, і загальне фільтрування, буде використано фільтрування -для окремого домену. Якщо буде виявлено декілька відповідників з однаковою -специфікацією, використовуватиметься лише перший з них. - - - Приклади: - - -# apply filter on domain called dom1 only: -dom1:(memberOf=cn=admins,ou=groups,dc=dom1,dc=com) - -# apply filter on domain called dom2 only: -DOM:dom2:(memberOf=cn=admins,ou=groups,dc=dom2,dc=com) - -# apply filter on forest called EXAMPLE.COM only: -FOREST:EXAMPLE.COM:(memberOf=cn=admins,ou=groups,dc=example,dc=com) - -# apply filter for a member of a nested group in dom1: -DOM:dom1:(memberOf:1.2.840.113556.1.4.1941:=cn=nestedgroup,ou=groups,dc=example,dc=com) - - - Типове значення: не встановлено - - - - - - ad_site (рядок) - - - Визначає сайт AD, з яким має встановлювати з’єднання клієнт. Якщо не буде -вказано, виконуватиметься спроба автоматичного визначення сайта AD. - - - Типове значення: не встановлено - - - - - - ad_enable_gc (булеве значення) - - - Типово, SSSD для отримання даних користувачів з надійних (довірених) доменів -спочатку встановлює з’єднання із загальним каталогом (Global Catalog). Якщо -ж отримати дані не вдасться, система використовує порт LDAP для отримання -даних щодо участі у групах. Вимикання цього параметра призведе до того, що -SSSD встановлюватиме зв’язок лише з портом LDAP поточного сервера AD. - - - Будь ласка, зауважте, що вимикання підтримки загального каталогу (Global -Catalog) не призведе до вимикання спроб отримати дані користувачів з -надійних (довірених) доменів. Просто SSSD намагатиметься отримати ці ж дані -за допомогою порту LDAP надійних доменів. Втім, загальним каталогом (Global -Catalog) доведеться скористатися для визначення зв’язків даних щодо участі у -групах для різних доменів. - - - Типове значення: true - - - - - - ad_gpo_access_control (рядок) - - - Цей параметр визначає режим роботи для функціональних можливостей керування -доступом на основі GPO: працюватиме система у вимкненому режимі, режимі -примушення чи дозвільному режимі. Будь ласка, зауважте, що для того, щоб цей -параметр запрацював, слід явним чином встановити для параметра -«access_provider» значення «ad». - - - Функціональні можливості з керування доступом на основі GPO використовують -параметри правил GPO для визначення того, може чи не може той чи інший -користувач увійти до системи певного вузла мережі. - - - ЗАУВАЖЕННЯ: якщо встановлено режим роботи «примусовий» (enforcing), можлива -ситуація, коли користувачі, які раніше мали доступ до входу, позбудуться -такого доступу (через використання параметрів правил GPO). З метою полегшити -перехід на нову систему для адміністраторів передбачено дозвільний режим -доступу (permissive), за якого правила керування доступом не -встановлюватимуться у примусовому порядку. Програма лише перевірятиме -відповідність цим правилам і виводитиме до системного журналу повідомлення, -якщо доступ було надано усупереч цим правилам. Вивчення журналу надасть -змогу адміністраторам внести відповідні зміни до встановлення примусового -режиму (enforcing). - - - У цього параметра є три підтримуваних значення: - - - - disabled: правила керування доступом, засновані на GPO, не обробляються і не -використовуються примусово. - - - - - enforcing: правила керування доступом, засновані на GPO, обробляються і -використовуються примусово. - - - - - permissive: виконати перевірку відповідності правилам керування доступом на -основі GPO, але не наполягати на їхньому виконанні. Якщо правила не -виконуються, вивести до системного журналу повідомлення про те, що -користувачеві було б заборонено доступ, якби використовувався режим -enforcing. - - - - - - Типове значення: permissive - - - Типове значення: enforcing - - - - - - ad_gpo_cache_timeout (ціле число) - - - Проміжок часу між послідовними пошуками файлів правил GPO щодо сервера -AD. Зміна може зменшити час затримки та навантаження на сервер AD, якщо -протягом короткого періоду часу надходить багато запитів щодо керування -доступом. - - - Типове значення: 5 (секунд) - - - - - - ad_gpo_map_interactive (рядок) - - - Список назв служб PAM, відокремлених комами, для яких керування доступом на -основі GPO виконуватиметься на основі параметрів правил -InteractiveLogonRight і DenyInteractiveLogonRight. - - - Зауваження: у редакторі керування правилами для груп це значення має назву -«Дозволити локальний вхід» («Allow log on locally») та «Заборонити локальний -вхід» («Deny log on locally»). - - - Можна додати іншу назву служби PAM до типового набору за допомогою -конструкції «+назва_служби» або явним чином вилучити назву служби PAM з -типового набору за допомогою конструкції «-назва_служби». Наприклад, щоб -замінити типову назву служби PAM для цього входу (наприклад, «login») з -нетиповою назвою служби pam (наприклад, «my_pam_service»), вам слід -скористатися такими налаштуваннями: -ad_gpo_map_interactive = +my_pam_service, -login - - - - Типове значення: типовий набір назв служб PAM складається з таких значень: - - - - login - - - - - su - - - - - su-l - - - - - gdm-fingerprint - - - - - gdm-password - - - - - gdm-smartcard - - - - - kdm - - - - - lightdm - - - - - lxdm - - - - - sddm - - - - - unity - - - - - xdm - - - - - - - - - ad_gpo_map_remote_interactive (рядок) - - - Список назв служб PAM, відокремлених комами, для яких керування доступом на -основі GPO засновано на параметрах захисту RemoteInteractiveLogonRight і -DenyRemoteInteractiveLogonRight. - - - Зауваження: у редакторі керування правилами щодо груп це значення -називається «Дозволити вхід за допомогою служб віддаленої стільниці» («Allow -log on through Remote Desktop Services») та «Заборонити вхід за допомогою -служб віддаленої стільниці» («Deny log on through Remote Desktop Services»). - - - Можна додати іншу назву служби PAM до типового набору за допомогою -конструкції «+назва_служби» або явним чином вилучити назву служби PAM з -типового набору за допомогою конструкції «-назва_служби». Наприклад, щоб -замінити типову назву служби PAM для цього входу (наприклад, «sshd») з -нетиповою назвою служби pam (наприклад, «my_pam_service»), вам слід -скористатися такими налаштуваннями: -ad_gpo_map_remote_interactive = +my_pam_service, -sshd - - - - Типове значення: типовий набір назв служб PAM складається з таких значень: - - - - sshd - - - - - cockpit - - - - - - - - - ad_gpo_map_network (рядок) - - - Список назв служб PAM, відокремлених комами, для яких керування доступом на -основі GPO засновано на параметрах захисту NetworkLogonRight і -DenyNetworkLogonRight. - - - Зауваження: у редакторі керування правилами щодо груп це значення -називається «Відкрити доступ до цього комп’ютера із мережі» («Access this -computer from the network») і «Заборонити доступ до цього комп’ютера із -мережі» (Deny access to this computer from the network»). - - - Можна додати іншу назву служби PAM до типового набору за допомогою -конструкції «+назва_служби» або явним чином вилучити назву служби PAM з -типового набору за допомогою конструкції «-назва_служби». Наприклад, щоб -замінити типову назву служби PAM для цього входу (наприклад, «ftp») з -нетиповою назвою служби pam (наприклад, «my_pam_service»), вам слід -скористатися такими налаштуваннями: -ad_gpo_map_network = +my_pam_service, -ftp - - - - Типове значення: типовий набір назв служб PAM складається з таких значень: - - - - ftp - - - - - samba - - - - - - - - - ad_gpo_map_batch (рядок) - - - Список назв служб PAM, відокремлених комами, для яких керування доступом на -основі GPO засновано на параметрах захисту BatchLogonRight і -DenyBatchLogonRight. - - - Зауваження: у редакторі керування правилами щодо груп це значення -називається «Дозволити вхід як пакетне завдання» («Allow log on as a batch -job») і «Заборонити вхід як пакетне завдання» («Deny log on as a batch -job»). - - - Можна додати іншу назву служби PAM до типового набору за допомогою -конструкції «+назва_служби» або явним чином вилучити назву служби PAM з -типового набору за допомогою конструкції «-назва_служби». Наприклад, щоб -замінити типову назву служби PAM для цього входу (наприклад, «crond») з -нетиповою назвою служби pam (наприклад, «my_pam_service»), вам слід -скористатися такими налаштуваннями: -ad_gpo_map_batch = +my_pam_service, -crond - - - - Типове значення: типовий набір назв служб PAM складається з таких значень: - - - - crond - - - - - - - - - ad_gpo_map_service (рядок) - - - Список назв служб PAM, відокремлених комами, для яких керування доступом на -основі GPO засновано на параметрах захисту ServiceLogonRight і -DenyServiceLogonRight. - - - Зауваження: у редакторі керування правилами щодо груп це значення -називається «Дозволити вхід як службу» («Allow log on as a service») і -«Заборонити вхід як службу» («Deny log on as a service»). - - - Можна додати іншу назву служби PAM до типового набору за допомогою -конструкції «+назва_служби». Оскільки типовий набір є порожнім, назви служби -з типового набору назв служб PAM вилучити неможливо. Наприклад, щоб додати -нетипову назву служби PAM (наприклад, «my_pam_service»), вам слід -скористатися такими налаштуваннями: -ad_gpo_map_service = +my_pam_service - - - - Типове значення: not set - - - - - - ad_gpo_map_permit (рядок) - - - Список назв служб PAM, відокремлених комами, яким завжди надається доступ на -основі GPO, незалежно від будь-яких прав входу GPO. - - - Можна додати іншу назву служби PAM до типового набору за допомогою -конструкції «+назва_служби» або явним чином вилучити назву служби PAM з -типового набору за допомогою конструкції «-назва_служби». Наприклад, щоб -замінити типову назву служби PAM для безумовного дозволеного доступу -(наприклад, «sudo») з нетиповою назвою служби pam (наприклад, -«my_pam_service»), вам слід скористатися такими налаштуваннями: -ad_gpo_map_permit = +my_pam_service, -sudo - - - - Типове значення: типовий набір назв служб PAM складається з таких значень: - - - - polkit-1 - - - - - sudo - - - - - sudo-i - - - - - systemd-user - - - - - - - - - ad_gpo_map_deny (рядок) - - - Список назв служб PAM, відокремлених комами, яким завжди заборонено доступ -на основі GPO, незалежно від будь-яких прав входу GPO. - - - Можна додати іншу назву служби PAM до типового набору за допомогою -конструкції «+назва_служби». Оскільки типовий набір є порожнім, назви служби -з типового набору назв служб PAM вилучити неможливо. Наприклад, щоб додати -нетипову назву служби PAM (наприклад, «my_pam_service»), вам слід -скористатися такими налаштуваннями: -ad_gpo_map_deny = +my_pam_service - - - - Типове значення: not set - - - - - - ad_gpo_default_right (рядок) - - - За допомогою цього параметра визначається спосіб керування доступом для назв -служб PAM, які не вказано явним чином у одному з параметрів -ad_gpo_map_*. Цей параметр може бути встановлено у два різних -способи. По-перше, цей параметр можна встановити так, що -використовуватиметься типовий вхід. Наприклад, якщо для цього параметра -встановлено значення «interactive», непов’язані назви служб PAM -оброблятимуться на основі параметрів правил InteractiveLogonRight і -DenyInteractiveLogonRight. Крім того, для цього параметра можна встановити -таке значення, щоб система завжди дозволяла або забороняла доступ для -непов’язаних назв служб PAM. - - - Передбачені значення для цього параметра: - - - - interactive - - - - - remote_interactive - - - - - network - - - - - batch - - - - - service - - - - - permit - - - - - deny - - - - - - Типове значення: deny - - - - - - ad_maximum_machine_account_password_age (integer) - - - SSSD will check once a day if the machine account password is older than the -given age in days and try to renew it. A value of 0 will disable the renewal -attempt. - - - Default: 30 days - - - - - - ad_machine_account_password_renewal_opts (string) - - - This option should only be used to test the machine account renewal -task. The option expect 2 integers seperated by a colon (':'). The first -integer defines the interval in seconds how often the task is run. The -second specifies the inital timeout in seconds before the task is run for -the first time after startup. - - - Default: 86400:750 (24h and 15m) - - - - - - dyndns_update (булеве значення) - - - Необов’язковий. За допомогою цього параметра можна наказати SSSD автоматично -оновити IP-адресу цього клієнта на сервері DNS Active Directory. Захист -оновлення буде забезпечено за допомогою GSS-TSIG. Як наслідок, -адміністраторові Active Directory достатньо буде дозволити оновлення безпеки -для зони DNS. Для оновлення буде використано IP-адресу з’єднання LDAP AD, -якщо цю адресу не було змінено за допомогою параметра «dyndns_iface». - - - ЗАУВАЖЕННЯ: на застарілих системах (зокрема RHEL 5) для надійної роботи у -цьому режимі типову область дії Kerberos має бути належним чином визначено у -/etc/krb5.conf - - - Типове значення: true - - - - - - dyndns_ttl (ціле число) - - - TTL, до якого буде застосовано клієнтський запис DNS під час його -оновлення. Якщо dyndns_update має значення false, цей параметр буде -проігноровано. Перевизначає TTL на боці сервера, якщо встановлено -адміністратором. - - - Типове значення: 3600 (секунд) - - - - - - dyndns_iface (рядок) - - - Optional. Applicable only when dyndns_update is true. Choose the interface -or a list of interfaces whose IP addresses should be used for dynamic DNS -updates. Special value * implies that IPs from all interfaces -should be used. - - - Default: Use the IP addresses of the interface which is used for AD LDAP -connection - - - Example: dyndns_iface = em1, vnet1, vnet2 - - - - - - dyndns_refresh_interval (ціле число) - - - How often should the back end perform periodic DNS update in addition to the -automatic update performed when the back end goes online. This option is -optional and applicable only when dyndns_update is true. Note that the -lowest possible value is 60 seconds in-case if value is provided less than -60, parameter will assume lowest value only. - - - Типове значення: 86400 (24 години) - - - - - - dyndns_update_ptr (булеве значення) - - - Визначає, чи слід явним чином оновлювати запис PTR під час оновлення записів -DNS клієнта. Застосовується, лише якщо значенням dyndns_update буде true. - - - Типове значення: True - - - - - - dyndns_force_tcp (булеве значення) - - - Визначає, чи слід у програмі nsupdate типово використовувати TCP для обміну -даними з сервером DNS. - - - Типове значення: False (надати змогу nsupdate вибирати протокол) - - - - - - dyndns_server (string) - - - The DNS server to use when performing a DNS update. In most setups, it's -recommended to leave this option unset. - - - Setting this option makes sense for environments where the DNS server is -different from the identity server. - - - Please note that this option will be only used in fallback attempt when -previous attempt using autodetected settings failed. - - - Default: None (let nsupdate choose the server) - - - - - - - - - krb5_confd_path (рядок) - - - Абсолютний шлях до каталогу, у якому SSSD має зберігати фрагменти -налаштувань Kerberos. - - - Щоб вимкнути створення фрагментів налаштувань, встановіть для параметра -значення «none». - - - Типове значення: не встановлено (підкаталог krb5.include.d каталогу pubconf -SSSD) - - - - - - - - - - - - - - - - - ПРИКЛАД - - У наведеному нижче прикладі припускаємо, що SSSD налаштовано належним чином, -а example.com є одним з доменів у розділі -[sssd]. У прикладі продемонстровано лише -параметри доступу, специфічні для засобу AD. - - - -[domain/EXAMPLE] -id_provider = ad -auth_provider = ad -access_provider = ad -chpass_provider = ad - -ad_server = dc1.example.com -ad_hostname = client.example.com -ad_domain = example.com - - - - - - ЗАУВАЖЕННЯ - - Інструмент керування доступом AD перевіряє, чи не завершено строк дії -облікового запису. Дає той самий результат, що і ось таке налаштовування -інструмента надання даних LDAP: -access_provider = ldap -ldap_access_order = expire -ldap_account_expire_policy = ad - - - - Втім, якщо явно не налаштовано засіб надання доступу «ad», типовим засобом -надання доступу буде «permit». Будь ласка, зауважте, що якщо вами -налаштовано засіб надання доступу, відмінний від «ad», вам доведеться -встановлювати усі параметри з’єднання (зокрема адреси LDAP та параметри -шифрування) вручну. - - - When the autofs provider is set to ad, the RFC2307 schema -attribute mapping (nisMap, nisObject, ...) is used, because these attributes -are included in the default Active Directory schema. - - - - - - - - - diff -Nru sssd-1.15.0/src/man/uk/sssd.conf.5.xml sssd-1.15.2/src/man/uk/sssd.conf.5.xml --- sssd-1.15.0/src/man/uk/sssd.conf.5.xml 2017-01-25 15:44:05.956440427 +0000 +++ sssd-1.15.2/src/man/uk/sssd.conf.5.xml 2017-03-15 16:58:45.375938257 +0000 @@ -461,6 +461,21 @@ + + enable_files_domain (boolean) + + + When this option is enabled, SSSD prepends an implicit domain with +id_provider=files before any explicitly configured domains. + + + Типове значення: false + + + Типове значення: true + + + @@ -572,6 +587,18 @@ + + cache_first + + + This option specifies whether the responder should query all caches before +querying the Data Providers. + + + Типове значення: false + + + @@ -844,6 +871,22 @@ + + pwfield (string) + + + The value that NSS operations that return users or groups will return for +the password field. + + + Значення цього параметра можна встановлювати для кожного з доменів окремо. + + + Default: * (remote domains) or x (the files +domain) + + + @@ -2450,6 +2493,28 @@ + + TRUSTED DOMAIN SECTION + + Some options used in the domain section can also be used in the trusted +domain section, that is, in a section called +[domain/DOMAIN_NAME]/TRUSTED_DOMAIN_NAME]. +Currently supported options in the trusted domain section are: + + ldap_search_base, + ldap_user_search_base, + ldap_group_search_base, + ldap_netgroup_search_base, + ldap_service_search_base, + ad_server, + ad_backup_server, + ad_site. + + For more details about these options see their individual description in the +manual page. + + + ПРИКЛАД diff -Nru sssd-1.15.0/src/man/uk/sssd-ipa.5.xml sssd-1.15.2/src/man/uk/sssd-ipa.5.xml --- sssd-1.15.0/src/man/uk/sssd-ipa.5.xml 2017-01-25 15:44:05.956440427 +0000 +++ sssd-1.15.2/src/man/uk/sssd-ipa.5.xml 2017-03-15 16:58:45.375938257 +0000 @@ -174,6 +174,20 @@ + dyndns_auth (string) + + + Whether the nsupdate utility should use GSS-TSIG authentication for secure +updates with the DNS server, insecure updates can be sent by setting this +option to 'none'. + + + Default: GSS-TSIG + + + + + ipa_enable_dns_sites (булеве значення) diff -Nru sssd-1.15.0/src/man/zh_CN/include/experimental.xml sssd-1.15.2/src/man/zh_CN/include/experimental.xml --- sssd-1.15.0/src/man/zh_CN/include/experimental.xml 2017-01-25 15:44:05.961440447 +0000 +++ sssd-1.15.2/src/man/zh_CN/include/experimental.xml 2017-03-15 16:58:45.380938277 +0000 @@ -1,2 +1,2 @@ This is an experimental feature, please use -http://fedorahosted.org/sssd to report any issues. +https://pagure.io/SSSD/sssd/ to report any issues. diff -Nru sssd-1.15.0/src/man/zh_CN/include/override_homedir.xml sssd-1.15.2/src/man/zh_CN/include/override_homedir.xml --- sssd-1.15.0/src/man/zh_CN/include/override_homedir.xml 2017-01-25 15:44:05.961440447 +0000 +++ sssd-1.15.2/src/man/zh_CN/include/override_homedir.xml 2017-03-15 16:58:45.380938277 +0000 @@ -22,6 +22,10 @@ fully qualified user name (user@domain) + %l + The first letter of the login name. + + %P UPN - User Principal Name (name@REALM) diff -Nru sssd-1.15.0/src/man/zh_CN/include/upstream.xml sssd-1.15.2/src/man/zh_CN/include/upstream.xml --- sssd-1.15.0/src/man/zh_CN/include/upstream.xml 2017-01-25 15:44:05.961440447 +0000 +++ sssd-1.15.2/src/man/zh_CN/include/upstream.xml 2017-03-15 16:58:45.380938277 +0000 @@ -1,3 +1,3 @@ SSSD The SSSD upstream - -http://fedorahosted.org/sssd +https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/monitor/monitor.c sssd-1.15.2/src/monitor/monitor.c --- sssd-1.15.0/src/monitor/monitor.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/monitor/monitor.c 2017-03-15 16:53:24.000000000 +0000 @@ -50,6 +50,7 @@ #include "sbus/sssd_dbus.h" #include "monitor/monitor_interfaces.h" #include "responder/common/responder_sbus.h" +#include "util/inotify.h" #ifdef USE_KEYRING #include @@ -89,6 +90,9 @@ "that the file is accessible only by the "\ "owner and owned by root.root.\n" +/* SSSD domain name that is used for the auto-configured files domain */ +#define IMPLICIT_FILES_DOMAIN_NAME "implicit_files" + int cmdline_debug_level; int cmdline_debug_timestamps; int cmdline_debug_microseconds; @@ -125,9 +129,11 @@ struct sss_child_ctx *child_ctx; }; +typedef int (*monitor_reconf_fn)(struct config_file_ctx *file_ctx, + const char *filename); + struct config_file_callback { int wd; - int retries; monitor_reconf_fn fn; char *filename; time_t modified; @@ -136,11 +142,18 @@ }; struct config_file_ctx { - TALLOC_CTX *parent_ctx; - struct tevent_timer *timer; - bool needs_update; + struct config_file_inotify_check { + struct snotify_ctx *snctx; + } inotify_check; + + struct config_file_poll_check { + TALLOC_CTX *parent_ctx; + struct tevent_timer *timer; + struct config_file_callback *callbacks; + } poll_check; + + monitor_reconf_fn fn; struct mt_ctx *mt_ctx; - struct config_file_callback *callbacks; }; struct mt_ctx { @@ -153,7 +166,6 @@ struct mt_svc *svc_list; struct sbus_connection *sbus_srv; struct config_file_ctx *file_ctx; - int inotify_fd; int service_id_timeout; bool check_children; bool services_started; @@ -363,11 +375,7 @@ sbus_request_finish(dbus_req, NULL); /* FIXME: should we just talloc_zfree(conn) ? */ - if (ret == ENOENT) { - goto done; - } - - return ret; + goto done; } /* Fill in svc structure with connection data */ @@ -487,6 +495,26 @@ } } +static int notify_startup(void) +{ +#ifdef HAVE_SYSTEMD + int ret; + + DEBUG(SSSDBG_TRACE_FUNC, "Sending startup notification to systemd\n"); + ret = sd_notify(0, "READY=1"); + if (ret < 0) { + ret = -ret; + DEBUG(SSSDBG_CRIT_FAILURE, + "Error sending notification to systemd %d: %s\n", + ret, sss_strerror(ret)); + + return ret; + } +#endif + + return EOK; +} + static int mark_service_as_started(struct mt_svc *svc) { struct mt_ctx *ctx = svc->mt_ctx; @@ -557,15 +585,7 @@ ctx->pid_file_created = true; -#ifdef HAVE_SYSTEMD - DEBUG(SSSDBG_TRACE_FUNC, "Sending startup notification to systemd\n"); - ret = sd_notify(0, "READY=1"); - if (ret < 0) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Error sending notification to systemd %d: %s\n", - -ret, strerror(-ret)); - } -#endif + notify_startup(); /* Initialization is complete, terminate parent process if in daemon * mode. Make sure we send the signal to the right process */ @@ -700,19 +720,23 @@ static int service_signal_dns_reload(struct mt_svc *svc); static int monitor_update_resolv(struct config_file_ctx *file_ctx, - const char *filename) + const char *filename) { int ret; struct mt_svc *cur_svc; - DEBUG(SSSDBG_OP_FAILURE, "Resolv.conf has been updated. Reloading.\n"); + struct mt_ctx *mt_ctx; + + mt_ctx = file_ctx->mt_ctx; + + DEBUG(SSSDBG_TRACE_LIBS, "Resolv.conf has been updated. Reloading.\n"); ret = res_init(); - if(ret != 0) { + if (ret != 0) { return EIO; } /* Signal all services to reload their DNS configuration */ - for(cur_svc = file_ctx->mt_ctx->svc_list; cur_svc; cur_svc = cur_svc->next) { + for (cur_svc = mt_ctx->svc_list; cur_svc; cur_svc = cur_svc->next) { service_signal_dns_reload(cur_svc); } return EOK; @@ -1032,6 +1056,14 @@ return ret; } + ret = confdb_ensure_files_domain(ctx->cdb, IMPLICIT_FILES_DOMAIN_NAME); + if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "Cannot add the implicit files domain [%d]: %s\n", + ret, strerror(ret)); + /* Not fatal */ + } + ret = confdb_get_domains(ctx->cdb, &ctx->domains); if (ret != EOK) { DEBUG(SSSDBG_FATAL_FAILURE, "No domains configured.\n"); @@ -1704,258 +1736,52 @@ return ret; } -static errno_t monitor_config_file_fallback(TALLOC_CTX *mem_ctx, - struct mt_ctx *ctx, - const char *file, - monitor_reconf_fn fn, - bool ignore_missing); - -#ifdef HAVE_INOTIFY -static void process_config_file(struct tevent_context *ev, - struct tevent_timer *te, - struct timeval t, void *ptr); +static void poll_config_file(struct tevent_context *ev, + struct tevent_timer *te, + struct timeval t, void *ptr); +static errno_t monitor_config_file_fallback(TALLOC_CTX *parent_ctx, + struct config_file_ctx *file_ctx, + const char *file); -static void config_file_changed(struct tevent_context *ev, - struct tevent_fd *fde, - uint16_t flags, void *data) +static errno_t create_poll_timer(struct config_file_ctx *file_ctx) { - struct tevent_timer *te = NULL; struct timeval tv; - struct config_file_ctx *file_ctx; - file_ctx = talloc_get_type(data, struct config_file_ctx); - if (file_ctx->needs_update) { - /* Skip updating. It's already queued for update. - */ - return; - } - - /* We will queue the file for update in one second. - * This way, if there is a script writing to the file - * repeatedly, we won't be attempting to update multiple - * times. - */ gettimeofday(&tv, NULL); - tv.tv_sec += 1; - - te = tevent_add_timer(ev, ev, tv, process_config_file, file_ctx); - if (!te) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Unable to queue config file update! Exiting.\n"); - kill(getpid(), SIGTERM); - return; - } - file_ctx->needs_update = 1; -} - -struct rewatch_ctx { - struct config_file_callback *cb; - struct config_file_ctx *file_ctx; -}; -static void rewatch_config_file(struct tevent_context *ev, - struct tevent_timer *te, - struct timeval t, void *ptr); -static void process_config_file(struct tevent_context *ev, - struct tevent_timer *te, - struct timeval t, void *ptr) -{ - TALLOC_CTX *tmp_ctx; - struct inotify_event *in_event; - char *name; - ssize_t len; - struct config_file_ctx *file_ctx; - struct config_file_callback *cb; - struct rewatch_ctx *rw_ctx; - errno_t ret; - - file_ctx = talloc_get_type(ptr, struct config_file_ctx); - - DEBUG(SSSDBG_CRIT_FAILURE, "Processing config file changes\n"); - - tmp_ctx = talloc_new(NULL); - if (!tmp_ctx) return; - - in_event = talloc(tmp_ctx, struct inotify_event); - if (!in_event) { - goto done; - } - - errno = 0; - len = sss_atomic_read_s(file_ctx->mt_ctx->inotify_fd, in_event, - sizeof(struct inotify_event)); - if (len == -1) { - ret = errno; - DEBUG(SSSDBG_CRIT_FAILURE, - "Critical error reading inotify file descriptor [%d]: %s\n", - ret, strerror(ret)); - goto done; - } - - if (in_event->len > 0) { - /* Read in the name, even though we don't use it, - * so that read ptr is in the right place - */ - name = talloc_size(tmp_ctx, in_event->len); - if (!name) { - goto done; - } - - errno = 0; - len = sss_atomic_read_s(file_ctx->mt_ctx->inotify_fd, name, in_event->len); - if (len == -1) { - ret = errno; - DEBUG(SSSDBG_CRIT_FAILURE, - "Critical error reading inotify file descriptor [%d]: %s\n", - ret, strerror(ret)); - goto done; - } - } - - for (cb = file_ctx->callbacks; cb; cb = cb->next) { - if (cb->wd == in_event->wd) { - break; - } - } - if (!cb) { - DEBUG(SSSDBG_FATAL_FAILURE, "Unknown watch descriptor\n"); - goto done; - } - - if (in_event->mask & IN_IGNORED) { - /* Some text editors will move a new file on top of the - * existing one instead of modifying it. In this case, - * the kernel will send us an IN_IGNORE signal. - * We will try to open a new watch descriptor on the - * new file. - */ - struct timeval tv; - struct tevent_timer *tev; - tv.tv_sec = t.tv_sec+5; - tv.tv_usec = t.tv_usec; - DEBUG(SSSDBG_FUNC_DATA, "Restoring inotify watch.\n"); - - cb->retries = 0; - rw_ctx = talloc(file_ctx, struct rewatch_ctx); - if(!rw_ctx) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Could not restore inotify watch. Quitting!\n"); - close(file_ctx->mt_ctx->inotify_fd); - kill(getpid(), SIGTERM); - goto done; - } - rw_ctx->cb = cb; - rw_ctx->file_ctx = file_ctx; - - tev = tevent_add_timer(ev, rw_ctx, tv, rewatch_config_file, rw_ctx); - if (tev == NULL) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Could not restore inotify watch. Quitting!\n"); - close(file_ctx->mt_ctx->inotify_fd); - kill(getpid(), SIGTERM); - } - goto done; - } - - /* Tell the monitor to signal the children */ - cb->fn(file_ctx, cb->filename); - file_ctx->needs_update = 0; - -done: - talloc_free(tmp_ctx); -} - -static void rewatch_config_file(struct tevent_context *ev, - struct tevent_timer *te, - struct timeval t, void *ptr) -{ - int err; - struct tevent_timer *tev = NULL; - struct timeval tv; - struct config_file_callback *cb; - - struct rewatch_ctx *rw_ctx; - struct config_file_ctx *file_ctx; - - rw_ctx = talloc_get_type(ptr, struct rewatch_ctx); - - cb = rw_ctx->cb; - file_ctx = rw_ctx->file_ctx; - - /* Retry six times at five-second intervals before giving up */ - cb->retries++; - if (cb->retries > 6) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Could not restore inotify watch. Switching to polling!\n"); - close(file_ctx->mt_ctx->inotify_fd); - err = monitor_config_file_fallback(file_ctx->parent_ctx, - file_ctx->mt_ctx, - cb->filename, - cb->fn,true); - if (err != EOK) - kill(getpid(), SIGTERM); - - cb->fn(file_ctx, cb->filename); - talloc_free(rw_ctx); - - /* A new callback was created in monitor_config_file_fallback()*/ - DLIST_REMOVE(file_ctx->callbacks, cb); - talloc_free(cb); - - return; - } - - cb->wd = inotify_add_watch(file_ctx->mt_ctx->inotify_fd, - cb->filename, IN_MODIFY); - if (cb->wd < 0) { - err = errno; - - tv.tv_sec = t.tv_sec+5; - tv.tv_usec = t.tv_usec; - - DEBUG(SSSDBG_CRIT_FAILURE, - "Could not add inotify watch for file [%s]. Error [%d:%s]\n", - cb->filename, err, strerror(err)); - - tev = tevent_add_timer(ev, ev, tv, rewatch_config_file, rw_ctx); - if (tev == NULL) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Could not restore inotify watch. Quitting!\n"); - close(file_ctx->mt_ctx->inotify_fd); - kill(getpid(), SIGTERM); - } + tv.tv_sec += CONFIG_FILE_POLL_INTERVAL; + tv.tv_usec = 0; - return; + file_ctx->poll_check.timer = tevent_add_timer(file_ctx->mt_ctx->ev, + file_ctx->poll_check.parent_ctx, + tv, + poll_config_file, + file_ctx); + if (!file_ctx->poll_check.timer) { + talloc_free(file_ctx); + return EIO; } - cb->retries = 0; - - /* Tell the monitor to signal the children */ - cb->fn(file_ctx, cb->filename); - talloc_free(rw_ctx); - file_ctx->needs_update = 0; + return EOK; } -#endif /* HAVE_INOTIFY */ static void poll_config_file(struct tevent_context *ev, - struct tevent_timer *te, - struct timeval t, void *ptr) + struct tevent_timer *te, + struct timeval t, void *ptr) { int ret, err; struct stat file_stat; - struct timeval tv; struct config_file_ctx *file_ctx; struct config_file_callback *cb; - file_ctx = talloc_get_type(ptr,struct config_file_ctx); + file_ctx = talloc_get_type(ptr, struct config_file_ctx); - for (cb = file_ctx->callbacks; cb; cb = cb->next) { + for (cb = file_ctx->poll_check.callbacks; cb; cb = cb->next) { ret = stat(cb->filename, &file_stat); if (ret < 0) { err = errno; DEBUG(SSSDBG_FATAL_FAILURE, "Could not stat file [%s]. Error [%d:%s]\n", - cb->filename, err, strerror(err)); - /* TODO: If the config file is missing, should we shut down? */ + cb->filename, err, strerror(err)); return; } @@ -1972,87 +1798,50 @@ } } - gettimeofday(&tv, NULL); - tv.tv_sec += CONFIG_FILE_POLL_INTERVAL; - tv.tv_usec = 0; - file_ctx->timer = tevent_add_timer(ev, file_ctx->parent_ctx, tv, - poll_config_file, file_ctx); - if (!file_ctx->timer) { + ret = create_poll_timer(file_ctx); + if (ret != EOK) { DEBUG(SSSDBG_FATAL_FAILURE, "Error: Config file no longer monitored for changes!\n"); } } -static int try_inotify(struct config_file_ctx *file_ctx, const char *filename, - monitor_reconf_fn fn) +static int resolv_conf_inotify_cb(const char *filename, + uint32_t flags, + void *pvt) { -#ifdef HAVE_INOTIFY - int err, fd_args, ret; - struct tevent_fd *tfd; - struct config_file_callback *cb; - - /* Monitoring the file descriptor should be global */ - if (!file_ctx->mt_ctx->inotify_fd) { - /* Set up inotify to monitor the config file for changes */ - file_ctx->mt_ctx->inotify_fd = inotify_init(); - if (file_ctx->mt_ctx->inotify_fd < 0) { - err = errno; - DEBUG(SSSDBG_FATAL_FAILURE, - "Could not initialize inotify, error [%d:%s]\n", - err, strerror(err)); - return err; - } - - fd_args = fcntl(file_ctx->mt_ctx->inotify_fd, F_GETFL, NULL); - if (fd_args < 0) { - /* Could not set nonblocking */ - close(file_ctx->mt_ctx->inotify_fd); - return EINVAL; - } + struct config_file_ctx *file_ctx; - fd_args |= O_NONBLOCK; - ret = fcntl(file_ctx->mt_ctx->inotify_fd, F_SETFL, fd_args); - if (ret < 0) { - /* Could not set nonblocking */ - close(file_ctx->mt_ctx->inotify_fd); - return EINVAL; - } + DEBUG(SSSDBG_TRACE_INTERNAL, + "Received inotify notification for %s\n", filename); - /* Add the inotify file descriptor to the TEvent context */ - tfd = tevent_add_fd(file_ctx->mt_ctx->ev, file_ctx, - file_ctx->mt_ctx->inotify_fd, - TEVENT_FD_READ, config_file_changed, - file_ctx); - if (!tfd) { - close(file_ctx->mt_ctx->inotify_fd); - return EIO; - } + file_ctx = talloc_get_type(pvt, struct config_file_ctx); + if (file_ctx == NULL) { + return EINVAL; } - cb = talloc_zero(file_ctx, struct config_file_callback); - if(!cb) { - close(file_ctx->mt_ctx->inotify_fd); - return ENOMEM; - } + return file_ctx->fn(file_ctx, filename); +} - cb->filename = talloc_strdup(cb, filename); - if (!cb->filename) { - close(file_ctx->mt_ctx->inotify_fd); - return ENOMEM; - } - cb->wd = inotify_add_watch(file_ctx->mt_ctx->inotify_fd, - cb->filename, IN_MODIFY); - if (cb->wd < 0) { - err = errno; - DEBUG(SSSDBG_FATAL_FAILURE, - "Could not add inotify watch for file [%s]. Error [%d:%s]\n", - cb->filename, err, strerror(err)); - close(file_ctx->mt_ctx->inotify_fd); - return err; - } - cb->fn = fn; +static int try_inotify(struct config_file_ctx *file_ctx, + const char *filename) +{ +#ifdef HAVE_INOTIFY + struct snotify_ctx *snctx; + /* We will queue the file for update in one second. + * This way, if there is a script writing to the file + * repeatedly, we won't be attempting to update multiple + * times. + */ + struct timeval delay = { .tv_sec = 1, .tv_usec = 0 }; - DLIST_ADD(file_ctx->callbacks, cb); + snctx = snotify_create(file_ctx, file_ctx->mt_ctx->ev, SNOTIFY_WATCH_DIR, + filename, &delay, + IN_DELETE_SELF | IN_CLOSE_WRITE | IN_MOVE_SELF | \ + IN_CREATE | IN_MOVED_TO | IN_IGNORED, + resolv_conf_inotify_cb, file_ctx); + if (snctx == NULL) { + return EIO; + } return EOK; #else @@ -2062,36 +1851,18 @@ static int monitor_config_file(TALLOC_CTX *mem_ctx, struct mt_ctx *ctx, - const char *file, monitor_reconf_fn fn, - bool ignore_missing) + const char *file) { - int ret, err; + int ret; bool use_inotify; - struct stat file_stat; - - ret = stat(file, &file_stat); - if (ret < 0) { - err = errno; - if (err == ENOENT && ignore_missing) { - DEBUG(SSSDBG_MINOR_FAILURE, - "file [%s] is missing. Will not update online status " - "based on watching the file\n", file); - return EOK; - } else { - DEBUG(SSSDBG_MINOR_FAILURE, - "Could not stat file [%s]. Error [%d:%s]\n", - file, err, strerror(err)); - return err; - } - } if (!ctx->file_ctx) { ctx->file_ctx = talloc_zero(mem_ctx, struct config_file_ctx); if (!ctx->file_ctx) return ENOMEM; - ctx->file_ctx->parent_ctx = mem_ctx; ctx->file_ctx->mt_ctx = ctx; + ctx->file_ctx->fn = fn; } ret = confdb_get_bool(ctx->cdb, @@ -2104,73 +1875,68 @@ } if (use_inotify) { - ret = try_inotify(ctx->file_ctx, file, fn); + ret = try_inotify(ctx->file_ctx, file); if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, "Falling back to polling\n"); use_inotify = false; } } - if (!use_inotify) { - /* Could not monitor file with inotify, fall back to polling */ - ret = monitor_config_file_fallback(mem_ctx, ctx, file, fn, true); + if (use_inotify == false) { + ret = monitor_config_file_fallback(mem_ctx, ctx->file_ctx, file); } return ret; } -static errno_t monitor_config_file_fallback(TALLOC_CTX *mem_ctx, - struct mt_ctx *ctx, - const char *file, - monitor_reconf_fn fn, - bool ignore_missing) +static errno_t monitor_config_file_fallback(TALLOC_CTX *parent_ctx, + struct config_file_ctx *file_ctx, + const char *file) { struct config_file_callback *cb = NULL; struct stat file_stat; int ret, err; - struct timeval tv; ret = stat(file, &file_stat); if (ret < 0) { err = errno; - if (err == ENOENT && ignore_missing) { + if (err == ENOENT) { DEBUG(SSSDBG_MINOR_FAILURE, - "file [%s] is missing. Will not update online status " - "based on watching the file\n", file); + "file [%s] is missing. Will not update online status " + "based on watching the file\n", file); return EOK; } else { DEBUG(SSSDBG_FATAL_FAILURE, - "Could not stat file [%s]. Error [%d:%s]\n", - file, err, strerror(err)); + "Could not stat file [%s]. Error [%d:%s]\n", + file, err, strerror(err)); return err; } } - cb = talloc_zero(ctx->file_ctx, struct config_file_callback); + file_ctx->poll_check.parent_ctx = parent_ctx; + + cb = talloc_zero(file_ctx, struct config_file_callback); if (!cb) { - talloc_free(ctx->file_ctx); + talloc_free(file_ctx); return ENOMEM; } cb->filename = talloc_strdup(cb, file); if (!cb->filename) { - talloc_free(ctx->file_ctx); + talloc_free(file_ctx); return ENOMEM; } - cb->fn = fn; + cb->fn = file_ctx->fn; cb->modified = file_stat.st_mtime; - DLIST_ADD(ctx->file_ctx->callbacks, cb); + DLIST_ADD(file_ctx->poll_check.callbacks, cb); - if(!ctx->file_ctx->timer) { - gettimeofday(&tv, NULL); - tv.tv_sec += CONFIG_FILE_POLL_INTERVAL; - tv.tv_usec = 0; - ctx->file_ctx->timer = tevent_add_timer(ctx->ev, mem_ctx, tv, - poll_config_file, ctx->file_ctx); - if (!ctx->file_ctx->timer) { - talloc_free(ctx->file_ctx); - return EIO; + if(!file_ctx->poll_check.timer) { + ret = create_poll_timer(file_ctx); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "Cannot create poll timer\n"); + return ret; } } @@ -2186,8 +1952,7 @@ int ret; struct mt_ctx *ctx = talloc_get_type(data, struct mt_ctx); - ret = monitor_config_file(ctx, ctx, RESOLV_CONF_PATH, - monitor_update_resolv, false); + ret = monitor_config_file(ctx, ctx, monitor_update_resolv, RESOLV_CONF_PATH); if (ret == EOK) { signal_res_init(ctx); } else if (ret == ENOENT) { @@ -2284,22 +2049,8 @@ ret = sss_sigchld_init(ctx, ctx->ev, &ctx->sigchld_ctx); if (ret != EOK) return ret; -#if 0 - This feature is incomplete and can leave the SSSD in a bad state if the - config file is changed while the SSSD is running. - - Uncomment this once the backends are honoring reloadConfig() - - /* Watch for changes to the confdb config file */ - ret = monitor_config_file(ctx, ctx, config_file, monitor_signal_reconf, - true); - if (ret != EOK) { - return ret; - } -#endif /* Watch for changes to the DNS resolv.conf */ - ret = monitor_config_file(ctx, ctx, RESOLV_CONF_PATH, - monitor_update_resolv, false); + ret = monitor_config_file(ctx, ctx, monitor_update_resolv, RESOLV_CONF_PATH); if (ret == ENOENT) { tv = tevent_timeval_current_ofs(MISSING_RESOLV_CONF_POLL_TIME, 0); te = tevent_add_timer(ctx->ev, ctx, tv, missing_resolv_conf, ctx); @@ -2391,6 +2142,15 @@ } } + /* When the only provider set up is the local one (num_providers == 0) and + * there's no responder explicitly set up it means that we should notify + * systemd that SSSD is ready right now as any other provider/responder + * would be able to do so and the SSSD would end up hitting a systemd + * timeout! */ + if (num_providers == 0 && ctx->services == NULL) { + ret = notify_startup(); + } + return EOK; } diff -Nru sssd-1.15.0/src/monitor/monitor.h sssd-1.15.2/src/monitor/monitor.h --- sssd-1.15.0/src/monitor/monitor.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/monitor/monitor.h 2017-03-15 16:53:24.000000000 +0000 @@ -32,9 +32,6 @@ struct config_file_ctx; -typedef int (*monitor_reconf_fn) (struct config_file_ctx *file_ctx, - const char *filename); - struct mt_ctx; /* from monitor_netlink.c */ diff -Nru sssd-1.15.0/src/p11_child/p11_child_nss.c sssd-1.15.2/src/p11_child/p11_child_nss.c --- sssd-1.15.0/src/p11_child/p11_child_nss.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/p11_child/p11_child_nss.c 2017-03-15 16:53:24.000000000 +0000 @@ -72,13 +72,15 @@ int do_work(TALLOC_CTX *mem_ctx, const char *nss_db, const char *slot_name_in, enum op_mode mode, const char *pin, struct cert_verify_opts *cert_verify_opts, - char **cert, char **token_name_out) + char **cert, char **token_name_out, char **module_name_out, + char **key_id_out) { int ret; SECStatus rv; NSSInitContext *nss_ctx; SECMODModuleList *mod_list; SECMODModuleList *mod_list_item; + SECMODModule *module; const char *slot_name; const char *token_name; uint32_t flags = NSS_INIT_READONLY @@ -91,6 +93,7 @@ PK11SlotInfo *slot = NULL; CK_SLOT_ID slot_id; SECMODModuleID module_id; + const char *module_name; CERTCertList *cert_list = NULL; CERTCertListNode *cert_list_node; const PK11DefaultArrayEntry friendly_attr = { "Publicly-readable certs", @@ -105,6 +108,8 @@ CERTCertificate *found_cert = NULL; PK11SlotList *list = NULL; PK11SlotListElement *le; + SECItem *key_id = NULL; + char *key_id_str = NULL; nss_ctx = NSS_InitContext(nss_db, "", "", SECMOD_DB, ¶meters, flags); @@ -187,8 +192,11 @@ module_id = PK11_GetModuleID(slot); slot_name = PK11_GetSlotName(slot); token_name = PK11_GetTokenName(slot); - DEBUG(SSSDBG_TRACE_ALL, "Found [%s] in slot [%s][%d] of module [%d].\n", - token_name, slot_name, (int) slot_id, (int) module_id); + module = PK11_GetModule(slot); + module_name = module->dllName == NULL ? "NSS-Internal" : module->dllName; + + DEBUG(SSSDBG_TRACE_ALL, "Found [%s] in slot [%s][%d] of module [%d][%s].\n", + token_name, slot_name, (int) slot_id, (int) module_id, module_name); if (PK11_IsFriendly(slot)) { DEBUG(SSSDBG_TRACE_ALL, "Token is friendly.\n"); @@ -346,6 +354,7 @@ DEBUG(SSSDBG_TRACE_ALL, "No certificate found.\n"); *cert = NULL; *token_name_out = NULL; + *module_name_out = NULL; ret = EOK; goto done; } @@ -412,6 +421,30 @@ "Certificate verified and validated.\n"); } + key_id = PK11_GetLowLevelKeyIDForCert(slot, found_cert, NULL); + if (key_id == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "PK11_GetLowLevelKeyIDForCert failed [%d].\n", + PR_GetError()); + ret = EINVAL; + goto done; + } + + key_id_str = CERT_Hexify(key_id, PR_FALSE); + if (key_id_str == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "CERT_Hexify failed [%d].\n", PR_GetError()); + ret = ENOMEM; + goto done; + } + + DEBUG(SSSDBG_TRACE_ALL, "Found certificate has key id [%s].\n", key_id_str); + + *key_id_out = talloc_strdup(mem_ctx, key_id_str); + if (*key_id_out == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Failed to copy key id.\n"); + ret = ENOMEM; + goto done; + } + *cert = sss_base64_encode(mem_ctx, found_cert->derCert.data, found_cert->derCert.len); if (*cert == NULL) { @@ -427,6 +460,13 @@ goto done; } + *module_name_out = talloc_strdup(mem_ctx, module_name); + if (*module_name_out == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Failed to copy module_name_out name.\n"); + ret = ENOMEM; + goto done; + } + ret = EOK; done: @@ -438,6 +478,9 @@ CERT_DestroyCertList(cert_list); } + SECITEM_FreeItem(key_id, PR_TRUE); + PORT_Free(key_id_str); + PORT_Free(signed_random_value.data); rv = NSS_ShutdownContext(nss_ctx); @@ -502,6 +545,8 @@ char *pin = NULL; char *slot_name_in = NULL; char *token_name_out = NULL; + char *module_name_out = NULL; + char *key_id_out = NULL; char *nss_db = NULL; struct cert_verify_opts *cert_verify_opts; char *verify_opts = NULL; @@ -665,7 +710,7 @@ } ret = do_work(main_ctx, nss_db, slot_name_in, mode, pin, cert_verify_opts, - &cert, &token_name_out); + &cert, &token_name_out, &module_name_out, &key_id_out); if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "do_work failed.\n"); goto fail; @@ -673,6 +718,8 @@ if (cert != NULL) { fprintf(stdout, "%s\n", token_name_out); + fprintf(stdout, "%s\n", module_name_out); + fprintf(stdout, "%s\n", key_id_out); fprintf(stdout, "%s\n", cert); } diff -Nru sssd-1.15.0/src/providers/ad/ad_common.c sssd-1.15.2/src/providers/ad/ad_common.c --- sssd-1.15.0/src/providers/ad/ad_common.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ad/ad_common.c 2017-03-15 16:53:24.000000000 +0000 @@ -33,6 +33,13 @@ static errno_t ad_set_sdap_options(struct ad_options *ad_opts, struct sdap_options *id_opts); +char *create_subdom_conf_path(TALLOC_CTX *mem_ctx, + const char *conf_path, + const char *subdom_name) +{ + return talloc_asprintf(mem_ctx, "%s/%s", conf_path, subdom_name); +} + static struct sdap_options * ad_create_default_sdap_options(TALLOC_CTX *mem_ctx) { @@ -107,8 +114,119 @@ return NULL; } +static errno_t +ad_create_sdap_options(TALLOC_CTX *mem_ctx, + struct confdb_ctx *cdb, + const char *conf_path, + struct sdap_options **_id_opts) +{ + struct sdap_options *id_opts; + errno_t ret = EOK; + + if (cdb == NULL || conf_path == NULL) { + /* Fallback to defaults if there is no confdb */ + id_opts = ad_create_default_sdap_options(mem_ctx); + if (id_opts == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Failed to initialize default sdap options\n"); + ret = EIO; + } + /* Nothing to do without cdb */ + goto done; + } + + id_opts = talloc_zero(mem_ctx, struct sdap_options); + if (!id_opts) { + ret = ENOMEM; + goto done; + } + + ret = dp_get_options(id_opts, cdb, conf_path, + ad_def_ldap_opts, + SDAP_OPTS_BASIC, + &id_opts->basic); + if (ret != EOK) { + goto done; + } + + /* Get sdap option maps */ + + /* General Attribute Map */ + ret = sdap_get_map(id_opts, + cdb, conf_path, + ad_2008r2_attr_map, + SDAP_AT_GENERAL, + &id_opts->gen_map); + if (ret != EOK) { + goto done; + } + + /* User map */ + ret = sdap_get_map(id_opts, + cdb, conf_path, + ad_2008r2_user_map, + SDAP_OPTS_USER, + &id_opts->user_map); + if (ret != EOK) { + goto done; + } + + ret = sdap_extend_map_with_list(id_opts, id_opts, + SDAP_USER_EXTRA_ATTRS, + id_opts->user_map, + SDAP_OPTS_USER, + &id_opts->user_map, + &id_opts->user_map_cnt); + if (ret != EOK) { + goto done; + } + + /* Group map */ + ret = sdap_get_map(id_opts, + cdb, conf_path, + ad_2008r2_group_map, + SDAP_OPTS_GROUP, + &id_opts->group_map); + if (ret != EOK) { + goto done; + } + + /* Netgroup map */ + ret = sdap_get_map(id_opts, + cdb, conf_path, + ad_netgroup_map, + SDAP_OPTS_NETGROUP, + &id_opts->netgroup_map); + if (ret != EOK) { + goto done; + } + + /* Services map */ + ret = sdap_get_map(id_opts, + cdb, conf_path, + ad_service_map, + SDAP_OPTS_SERVICES, + &id_opts->service_map); + if (ret != EOK) { + goto done; + } + + ret = EOK; +done: + if (ret == EOK) { + *_id_opts = id_opts; + } else { + talloc_free(id_opts); + } + + return ret; +} + struct ad_options * -ad_create_default_options(TALLOC_CTX *mem_ctx) +ad_create_options(TALLOC_CTX *mem_ctx, + struct confdb_ctx *cdb, + const char *conf_path, + struct sss_domain_info *subdom) { struct ad_options *ad_options; errno_t ret; @@ -116,17 +234,32 @@ ad_options = talloc_zero(mem_ctx, struct ad_options); if (ad_options == NULL) return NULL; - ret = dp_copy_defaults(ad_options, - ad_basic_opts, - AD_OPTS_BASIC, - &ad_options->basic); + if (cdb != NULL && conf_path != NULL) { + ret = dp_get_options(ad_options, + cdb, + conf_path, + ad_basic_opts, + AD_OPTS_BASIC, + &ad_options->basic); + } else { + /* Fallback to reading the defaults only if no confdb + * is available */ + ret = dp_copy_defaults(ad_options, + ad_basic_opts, + AD_OPTS_BASIC, + &ad_options->basic); + } if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Unable to get basic AD options\n"); talloc_free(ad_options); return NULL; } - ad_options->id = ad_create_default_sdap_options(ad_options); - if (ad_options->id == NULL) { + ret = ad_create_sdap_options(ad_options, + cdb, + conf_path, + &ad_options->id); + if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "Cannot initialize AD LDAP options\n"); talloc_free(ad_options); return NULL; @@ -175,26 +308,33 @@ struct ad_options * ad_create_2way_trust_options(TALLOC_CTX *mem_ctx, + struct confdb_ctx *cdb, + const char *conf_path, const char *realm, - const char *ad_domain, + struct sss_domain_info *subdom, const char *hostname, const char *keytab) { struct ad_options *ad_options; errno_t ret; - ad_options = ad_create_default_options(mem_ctx); - if (ad_options == NULL) return NULL; + ad_options = ad_create_options(mem_ctx, cdb, conf_path, subdom); + if (ad_options == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "ad_create_options failed\n"); + return NULL; + } - ret = set_common_ad_trust_opts(ad_options, realm, ad_domain, hostname, + ret = set_common_ad_trust_opts(ad_options, realm, subdom->name, hostname, keytab); if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "set_common_ad_trust_opts failed\n"); talloc_free(ad_options); return NULL; } ret = ad_set_sdap_options(ad_options, ad_options->id); if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "ad_set_sdap_options failed"); talloc_free(ad_options); return NULL; } @@ -204,7 +344,9 @@ struct ad_options * ad_create_1way_trust_options(TALLOC_CTX *mem_ctx, - const char *ad_domain, + struct confdb_ctx *cdb, + const char *subdom_conf_path, + struct sss_domain_info *subdom, const char *hostname, const char *keytab, const char *sasl_authid) @@ -213,18 +355,25 @@ const char *realm; errno_t ret; - ad_options = ad_create_default_options(mem_ctx); - if (ad_options == NULL) return NULL; + ad_options = ad_create_options(mem_ctx, cdb, subdom_conf_path, subdom); + if (ad_options == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "ad_create_options failed\n"); + return NULL; + } - realm = get_uppercase_realm(ad_options, ad_domain); + realm = get_uppercase_realm(ad_options, subdom->name); if (!realm) { + DEBUG(SSSDBG_CRIT_FAILURE, "Failed to get uppercase realm\n"); talloc_free(ad_options); return NULL; } ret = set_common_ad_trust_opts(ad_options, realm, - ad_domain, hostname, keytab); + subdom->name, hostname, keytab); if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "set_common_ad_trust_opts failed [%d]: %s\n", + ret, sss_strerror(ret)); talloc_free(ad_options); return NULL; } @@ -240,6 +389,8 @@ ret = ad_set_sdap_options(ad_options, ad_options->id); if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "ad_set_sdap_options failed [%d]: %s\n", + ret, sss_strerror(ret)); talloc_free(ad_options); return NULL; } @@ -247,97 +398,6 @@ return ad_options; } -static errno_t -ad_create_sdap_options(TALLOC_CTX *mem_ctx, - struct confdb_ctx *cdb, - const char *conf_path, - struct sdap_options **_id_opts) -{ - struct sdap_options *id_opts; - errno_t ret; - - id_opts = talloc_zero(mem_ctx, struct sdap_options); - if (!id_opts) { - ret = ENOMEM; - goto done; - } - - ret = dp_get_options(id_opts, cdb, conf_path, - ad_def_ldap_opts, - SDAP_OPTS_BASIC, - &id_opts->basic); - if (ret != EOK) { - goto done; - } - - /* Get sdap option maps */ - - /* General Attribute Map */ - ret = sdap_get_map(id_opts, - cdb, conf_path, - ad_2008r2_attr_map, - SDAP_AT_GENERAL, - &id_opts->gen_map); - if (ret != EOK) { - goto done; - } - - /* User map */ - ret = sdap_get_map(id_opts, - cdb, conf_path, - ad_2008r2_user_map, - SDAP_OPTS_USER, - &id_opts->user_map); - if (ret != EOK) { - goto done; - } - - ret = sdap_extend_map_with_list(id_opts, id_opts, - SDAP_USER_EXTRA_ATTRS, - id_opts->user_map, - SDAP_OPTS_USER, - &id_opts->user_map, - &id_opts->user_map_cnt); - if (ret != EOK) { - goto done; - } - - /* Group map */ - ret = sdap_get_map(id_opts, - cdb, conf_path, - ad_2008r2_group_map, - SDAP_OPTS_GROUP, - &id_opts->group_map); - if (ret != EOK) { - goto done; - } - - /* Netgroup map */ - ret = sdap_get_map(id_opts, - cdb, conf_path, - ad_netgroup_map, - SDAP_OPTS_NETGROUP, - &id_opts->netgroup_map); - if (ret != EOK) { - goto done; - } - - /* Services map */ - ret = sdap_get_map(id_opts, - cdb, conf_path, - ad_service_map, - SDAP_OPTS_SERVICES, - &id_opts->service_map); - if (ret != EOK) { - goto done; - } - - ret = EOK; - *_id_opts = id_opts; -done: - return ret; -} - errno_t ad_get_common_options(TALLOC_CTX *mem_ctx, struct confdb_ctx *cdb, diff -Nru sssd-1.15.0/src/providers/ad/ad_common.h sssd-1.15.2/src/providers/ad/ad_common.h --- sssd-1.15.0/src/providers/ad/ad_common.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ad/ad_common.h 2017-03-15 16:53:24.000000000 +0000 @@ -99,6 +99,10 @@ struct be_nsupdate_ctx *dyndns_ctx; }; +char *create_subdom_conf_path(TALLOC_CTX *mem_ctx, + const char *conf_path, + const char *subdom_name); + errno_t ad_get_common_options(TALLOC_CTX *mem_ctx, struct confdb_ctx *cdb, @@ -106,20 +110,32 @@ struct sss_domain_info *dom, struct ad_options **_opts); -struct ad_options *ad_create_default_options(TALLOC_CTX *mem_ctx); +/* FIXME: ad_get_common_options and ad_create_options are + * similar. The later is subdomain specific. It may be + * good to merge the two into one more generic funtion. */ +struct ad_options *ad_create_options(TALLOC_CTX *mem_ctx, + struct confdb_ctx *cdb, + const char *conf_path, + struct sss_domain_info *subdom); struct ad_options *ad_create_2way_trust_options(TALLOC_CTX *mem_ctx, + struct confdb_ctx *cdb, + const char *conf_path, const char *realm, - const char *ad_domain, + struct sss_domain_info *subdom, const char *hostname, const char *keytab); struct ad_options *ad_create_1way_trust_options(TALLOC_CTX *mem_ctx, - const char *ad_domain, + struct confdb_ctx *cdb, + const char *conf_path, + struct sss_domain_info *subdom, const char *hostname, const char *keytab, const char *sasl_authid); +errno_t ad_set_search_bases(struct sdap_options *id_opts); + errno_t ad_failover_init(TALLOC_CTX *mem_ctx, struct be_ctx *ctx, const char *primary_servers, diff -Nru sssd-1.15.0/src/providers/ad/ad_id.c sssd-1.15.2/src/providers/ad/ad_id.c --- sssd-1.15.0/src/providers/ad/ad_id.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ad/ad_id.c 2017-03-15 16:53:24.000000000 +0000 @@ -337,6 +337,7 @@ goto done; } /* fall through */ + SSS_ATTRIBUTE_FALLTHROUGH; case BE_FILTER_SECID: csid = sid == NULL ? filter_value : sid; diff -Nru sssd-1.15.0/src/providers/ad/ad_pac.c sssd-1.15.2/src/providers/ad/ad_pac.c --- sssd-1.15.0/src/providers/ad/ad_pac.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ad/ad_pac.c 2017-03-15 16:53:24.000000000 +0000 @@ -51,7 +51,7 @@ } if (ar->extra_value && strcmp(ar->extra_value, EXTRA_NAME_IS_UPN) == 0) { - ret = sysdb_search_user_by_upn(tmp_ctx, dom, ar->filter_value, + ret = sysdb_search_user_by_upn(tmp_ctx, dom, false, ar->filter_value, user_attrs, &msg); } else { switch (ar->filter_type) { @@ -134,7 +134,7 @@ pac_expires = ldb_msg_find_attr_as_uint64(msg, SYSDB_PAC_BLOB_EXPIRE, 0); now = time(NULL); if (pac_expires < now) { - DEBUG(SSSDBG_TRACE_FUNC, "PAC avaiable but too old.\n"); + DEBUG(SSSDBG_TRACE_FUNC, "PAC available but too old.\n"); talloc_free(msg); return ENOENT; } diff -Nru sssd-1.15.0/src/providers/ad/ad_subdomains.c sssd-1.15.2/src/providers/ad/ad_subdomains.c --- sssd-1.15.0/src/providers/ad/ad_subdomains.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ad/ad_subdomains.c 2017-03-15 16:53:24.000000000 +0000 @@ -156,8 +156,11 @@ struct sdap_domain *sdom; errno_t ret; const char *realm; + const char *servers; + const char *backup_servers; const char *hostname; const char *keytab; + char *subdom_conf_path; realm = dp_opt_get_cstring(id_ctx->ad_options->basic, AD_KRB5_REALM); hostname = dp_opt_get_cstring(id_ctx->ad_options->basic, AD_HOSTNAME); @@ -168,8 +171,18 @@ return EINVAL; } - ad_options = ad_create_2way_trust_options(id_ctx, realm, ad_domain, + subdom_conf_path = create_subdom_conf_path(id_ctx, + be_ctx->conf_path, + subdom->name); + if (subdom_conf_path == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "subdom_conf_path failed\n"); + return ENOMEM; + } + + ad_options = ad_create_2way_trust_options(id_ctx, be_ctx->cdb, + subdom_conf_path, realm, subdom, hostname, keytab); + talloc_free(subdom_conf_path); if (ad_options == NULL) { DEBUG(SSSDBG_OP_FAILURE, "Cannot initialize AD options\n"); talloc_free(ad_options); @@ -190,7 +203,10 @@ return ENOMEM; } - ret = ad_failover_init(ad_options, be_ctx, NULL, NULL, realm, + servers = dp_opt_get_string(ad_options->basic, AD_SERVER); + backup_servers = dp_opt_get_string(ad_options->basic, AD_BACKUP_SERVER); + + ret = ad_failover_init(ad_options, be_ctx, servers, backup_servers, realm, service_name, gc_service_name, subdom->name, &ad_options->service); if (ret != EOK) { @@ -948,6 +964,7 @@ static struct tevent_req * ad_get_root_domain_send(TALLOC_CTX *mem_ctx, struct tevent_context *ev, + const char *domain, const char *forest, struct sdap_handle *sh, struct ad_subdomains_ctx *sd_ctx) @@ -968,7 +985,7 @@ return NULL; } - if (forest != NULL && strcasecmp(sd_ctx->be_ctx->domain->name, forest) == 0) { + if (forest != NULL && strcasecmp(domain, forest) == 0) { state->root_id_ctx = sd_ctx->ad_id_ctx; state->root_domain_attrs = NULL; ret = EOK; @@ -1230,6 +1247,7 @@ struct ad_subdomains_refresh_state *state; struct tevent_req *req; const char *realm; + const char *ad_domain; char *master_sid; char *flat_name; char *forest; @@ -1277,7 +1295,14 @@ } } - subreq = ad_get_root_domain_send(state, state->ev, forest, + ad_domain = dp_opt_get_cstring(state->ad_options->basic, AD_DOMAIN); + if (ad_domain == NULL) { + DEBUG(SSSDBG_CONF_SETTINGS, + "Missing AD domain name, falling back to sssd domain name\n"); + ad_domain = state->sd_ctx->be_ctx->domain->name; + } + + subreq = ad_get_root_domain_send(state, state->ev, ad_domain, forest, sdap_id_op_handle(state->sdap_op), state->sd_ctx); if (subreq == NULL) { diff -Nru sssd-1.15.0/src/providers/be_dyndns.c sssd-1.15.2/src/providers/be_dyndns.c --- sssd-1.15.0/src/providers/be_dyndns.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/be_dyndns.c 2017-03-15 16:53:24.000000000 +0000 @@ -435,11 +435,15 @@ /* Add the server, realm and headers */ update_msg = talloc_asprintf(tmp_ctx, "server %s\n%s", servername, realm_directive); - } else { + } else if (realm != NULL) { DEBUG(SSSDBG_FUNC_DATA, "Creating update message for realm [%s].\n", realm); /* Add the realm headers */ update_msg = talloc_asprintf(tmp_ctx, "%s", realm_directive); + } else { + DEBUG(SSSDBG_FUNC_DATA, + "Creating update message for auto-discovered realm.\n"); + update_msg = talloc_asprintf(tmp_ctx, "%s", realm_directive); } talloc_free(realm_directive); if (update_msg == NULL) { diff -Nru sssd-1.15.0/src/providers/data_provider/dp.h sssd-1.15.2/src/providers/data_provider/dp.h --- sssd-1.15.0/src/providers/data_provider/dp.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/data_provider/dp.h 2017-03-15 16:53:24.000000000 +0000 @@ -161,4 +161,18 @@ void dp_terminate_domain_requests(struct data_provider *provider, const char *domain); +void dp_sbus_domain_active(struct data_provider *provider, + struct sss_domain_info *dom); +void dp_sbus_domain_inconsistent(struct data_provider *provider, + struct sss_domain_info *dom); + +void dp_sbus_reset_users_ncache(struct data_provider *provider, + struct sss_domain_info *dom); +void dp_sbus_reset_groups_ncache(struct data_provider *provider, + struct sss_domain_info *dom); + +void dp_sbus_reset_users_memcache(struct data_provider *provider); +void dp_sbus_reset_groups_memcache(struct data_provider *provider); +void dp_sbus_reset_initgr_memcache(struct data_provider *provider); + #endif /* _DP_H_ */ diff -Nru sssd-1.15.0/src/providers/data_provider/dp_resp_client.c sssd-1.15.2/src/providers/data_provider/dp_resp_client.c --- sssd-1.15.0/src/providers/data_provider/dp_resp_client.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/providers/data_provider/dp_resp_client.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,191 @@ +/* + SSSD + + Data Provider Responder client - DP calls responder interface + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include "config.h" +#include +#include + +#include "confdb/confdb.h" +#include "sbus/sssd_dbus.h" +#include "providers/data_provider.h" +#include "providers/data_provider/dp_private.h" +#include "responder/common/iface/responder_iface.h" +#include "responder/nss/nss_iface.h" + +/* List of DP clients that deal with users or groups */ +/* FIXME - it would be much cleaner to implement sbus signals + * and let the responder subscribe to these messages rather than + * keep a list here.. + * https://fedorahosted.org/sssd/ticket/2233 + */ +static enum dp_clients user_clients[] = { + DPC_NSS, + DPC_PAM, + DPC_IFP, + DPC_PAC, + DPC_SUDO, + + DP_CLIENT_SENTINEL +}; + +static void send_msg_to_all_clients(struct data_provider *provider, + struct DBusMessage *msg) +{ + struct dp_client *cli; + int i; + + for (i = 0; provider->clients[i] != NULL; i++) { + cli = provider->clients[i]; + if (cli != NULL) { + sbus_conn_send_reply(dp_client_conn(cli), msg); + } + } +} + +static void send_msg_to_selected_clients(struct data_provider *provider, + struct DBusMessage *msg, + enum dp_clients *clients) +{ + struct dp_client *cli; + int i; + + for (i = 0; clients[i] != DP_CLIENT_SENTINEL; i++) { + cli = provider->clients[clients[i]]; + if (cli != NULL) { + sbus_conn_send_reply(dp_client_conn(cli), msg); + } + } +} + +static void dp_sbus_set_domain_state(struct data_provider *provider, + struct sss_domain_info *dom, + enum sss_domain_state state) +{ + DBusMessage *msg; + const char *method = NULL; + + switch (state) { + case DOM_ACTIVE: + DEBUG(SSSDBG_TRACE_FUNC, "Ordering responders to enable domain %s\n", + dom->name); + method = IFACE_RESPONDER_DOMAIN_SETACTIVE; + break; + case DOM_INCONSISTENT: + DEBUG(SSSDBG_TRACE_FUNC, "Ordering responders to disable domain %s\n", + dom->name); + method = IFACE_RESPONDER_DOMAIN_SETINCONSISTENT; + break; + default: + /* No other methods provided at the moment */ + return; + } + + sss_domain_set_state(dom, state); + + msg = sbus_create_message(NULL, NULL, RESPONDER_PATH, + IFACE_RESPONDER_DOMAIN, method, + DBUS_TYPE_STRING, &dom->name); + if (msg == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Out of memory?!\n"); + return; + } + + send_msg_to_all_clients(provider, msg); + dbus_message_unref(msg); + return; +} + +void dp_sbus_domain_active(struct data_provider *provider, + struct sss_domain_info *dom) +{ + return dp_sbus_set_domain_state(provider, dom, DOM_ACTIVE); +} + +void dp_sbus_domain_inconsistent(struct data_provider *provider, + struct sss_domain_info *dom) +{ + return dp_sbus_set_domain_state(provider, dom, DOM_INCONSISTENT); +} + +static void dp_sbus_reset_ncache(struct data_provider *provider, + struct sss_domain_info *dom, + const char *method) +{ + DBusMessage *msg; + + msg = sbus_create_message(NULL, NULL, RESPONDER_PATH, + IFACE_RESPONDER_NCACHE, method); + if (msg == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Out of memory?!\n"); + return; + } + + send_msg_to_selected_clients(provider, msg, user_clients); + dbus_message_unref(msg); + return; +} + +void dp_sbus_reset_users_ncache(struct data_provider *provider, + struct sss_domain_info *dom) +{ + return dp_sbus_reset_ncache(provider, dom, + IFACE_RESPONDER_NCACHE_RESETUSERS); +} + +void dp_sbus_reset_groups_ncache(struct data_provider *provider, + struct sss_domain_info *dom) +{ + return dp_sbus_reset_ncache(provider, dom, + IFACE_RESPONDER_NCACHE_RESETGROUPS); +} + +static void dp_sbus_reset_memcache(struct data_provider *provider, + const char *method) +{ + DBusMessage *msg; + + msg = sbus_create_message(NULL, NULL, NSS_MEMORYCACHE_PATH, + IFACE_NSS_MEMORYCACHE, method); + if (msg == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Out of memory?!\n"); + return; + } + + send_msg_to_selected_clients(provider, msg, user_clients); + dbus_message_unref(msg); + return; +} + +void dp_sbus_reset_users_memcache(struct data_provider *provider) +{ + return dp_sbus_reset_memcache(provider, + IFACE_NSS_MEMORYCACHE_INVALIDATEALLUSERS); +} + +void dp_sbus_reset_groups_memcache(struct data_provider *provider) +{ + return dp_sbus_reset_memcache(provider, + IFACE_NSS_MEMORYCACHE_INVALIDATEALLGROUPS); +} + +void dp_sbus_reset_initgr_memcache(struct data_provider *provider) +{ + return dp_sbus_reset_memcache(provider, + IFACE_NSS_MEMORYCACHE_INVALIDATEALLINITGROUPS); +} diff -Nru sssd-1.15.0/src/providers/data_provider_be.c sssd-1.15.2/src/providers/data_provider_be.c --- sssd-1.15.0/src/providers/data_provider_be.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/data_provider_be.c 2017-03-15 16:53:24.000000000 +0000 @@ -166,8 +166,10 @@ tv = tevent_timeval_current_ofs(reset_status_timeout, 0); switch (subdom->state) { + case DOM_INCONSISTENT: case DOM_DISABLED: - DEBUG(SSSDBG_MINOR_FAILURE, "Won't touch disabled subdomain\n"); + DEBUG(SSSDBG_MINOR_FAILURE, + "Won't touch disabled or inconsistent subdomain\n"); return; case DOM_INACTIVE: DEBUG(SSSDBG_TRACE_ALL, "Subdomain already inactive\n"); diff -Nru sssd-1.15.0/src/providers/data_provider.h sssd-1.15.2/src/providers/data_provider.h --- sssd-1.15.0/src/providers/data_provider.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/data_provider.h 2017-03-15 16:53:24.000000000 +0000 @@ -169,7 +169,6 @@ struct sss_auth_token *newauthtok; uint32_t cli_pid; char *logon_name; - bool name_is_upn; int pam_status; int response_delay; @@ -229,6 +228,11 @@ char **address, const char *domain_name); +/* Reserved filter name for request which waits until the files provider finishes mirroring + * the file content + */ +#define DP_REQ_OPT_FILES_INITGR "files_initgr_request" + /* Helpers */ #define NULL_STRING { .string = NULL } diff -Nru sssd-1.15.0/src/providers/fail_over.c sssd-1.15.2/src/providers/fail_over.c --- sssd-1.15.0/src/providers/fail_over.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/fail_over.c 2017-03-15 16:53:24.000000000 +0000 @@ -376,12 +376,18 @@ "Port status of port %d for server '%s' is '%s'\n", server->port, SERVER_NAME(server), str_port_status(server->port_status)); + if (server->port_status == PORT_NOT_WORKING) { + DEBUG(SSSDBG_MINOR_FAILURE, "SSSD is unable to complete the full " + "connection request, this internal status does not necessarily " + "indicate network port issues.\n"); + } + timeout = server->service->ctx->opts->retry_timeout; if (timeout != 0 && server->port_status == PORT_NOT_WORKING) { gettimeofday(&tv, NULL); if (STATUS_DIFF(server, tv) > timeout) { DEBUG(SSSDBG_CONF_SETTINGS, - "Reseting the status of port %d for server '%s'\n", + "Resetting the status of port %d for server '%s'\n", server->port, SERVER_NAME(server)); server->port_status = PORT_NEUTRAL; server->last_status_change.tv_sec = tv.tv_sec; @@ -1145,6 +1151,7 @@ state->server->common); fo_set_server_status(state->server, SERVER_RESOLVING_NAME); /* FALLTHROUGH */ + SSS_ATTRIBUTE_FALLTHROUGH; case SERVER_RESOLVING_NAME: /* Name resolution is already under way. Just add ourselves into the * waiting queue so we get notified after the operation is finished. */ @@ -1284,6 +1291,7 @@ * "server" might be invalid now if the SRV * query collapsed * */ + SSS_ATTRIBUTE_FALLTHROUGH; case SRV_NEUTRAL: /* Request SRV lookup */ if (server != NULL && server != state->meta) { /* A server created by expansion of meta server was marked as @@ -1443,9 +1451,11 @@ break; case ERR_SRV_NOT_FOUND: /* fall through */ + SSS_ATTRIBUTE_FALLTHROUGH; case ERR_SRV_LOOKUP_ERROR: fo_set_port_status(state->meta, PORT_NOT_WORKING); /* fall through */ + SSS_ATTRIBUTE_FALLTHROUGH; default: DEBUG(SSSDBG_OP_FAILURE, "Unable to resolve SRV [%d]: %s\n", ret, sss_strerror(ret)); diff -Nru sssd-1.15.0/src/providers/files/files_id.c sssd-1.15.2/src/providers/files/files_id.c --- sssd-1.15.0/src/providers/files/files_id.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/providers/files/files_id.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,179 @@ +/* + SSSD + + files_id.c - Identity operaions on the files provider + + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include "providers/data_provider/dp.h" +#include "providers/files/files_private.h" + +struct files_account_info_handler_state { + struct dp_reply_std reply; + + struct files_id_ctx *id_ctx; +}; + +struct tevent_req * +files_account_info_handler_send(TALLOC_CTX *mem_ctx, + struct files_id_ctx *id_ctx, + struct dp_id_data *data, + struct dp_req_params *params) +{ + struct files_account_info_handler_state *state; + struct tevent_req *req; + struct tevent_req **update_req = NULL; + bool needs_update; + errno_t ret; + + req = tevent_req_create(mem_ctx, &state, + struct files_account_info_handler_state); + if (req == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "tevent_req_create() failed\n"); + return NULL; + } + state->id_ctx = id_ctx; + + switch (data->entry_type & BE_REQ_TYPE_MASK) { + case BE_REQ_USER: + if (data->filter_type != BE_FILTER_ENUM) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Unexpected user filter type: %d\n", data->filter_type); + ret = EINVAL; + goto immediate; + } + update_req = &id_ctx->users_req; + needs_update = id_ctx->updating_passwd ? true : false; + break; + case BE_REQ_GROUP: + if (data->filter_type != BE_FILTER_ENUM) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Unexpected group filter type: %d\n", data->filter_type); + ret = EINVAL; + goto immediate; + } + update_req = &id_ctx->groups_req; + needs_update = id_ctx->updating_groups ? true : false; + break; + case BE_REQ_INITGROUPS: + if (data->filter_type != BE_FILTER_NAME) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Unexpected initgr filter type: %d\n", data->filter_type); + ret = EINVAL; + goto immediate; + } + if (strcmp(data->filter_value, DP_REQ_OPT_FILES_INITGR) != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Unexpected initgr filter value: %d\n", data->filter_type); + ret = EINVAL; + goto immediate; + } + update_req = &id_ctx->initgroups_req; + needs_update = id_ctx->updating_groups || id_ctx->updating_passwd \ + ? true \ + : false; + break; + default: + DEBUG(SSSDBG_CRIT_FAILURE, + "Unexpected entry type: %d\n", data->entry_type & BE_REQ_TYPE_MASK); + ret = EINVAL; + goto immediate; + } + + if (needs_update == false) { + DEBUG(SSSDBG_TRACE_LIBS, "The files domain no longer needs an update\n"); + ret = EOK; + goto immediate; + } + + if (*update_req != NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "BUG: Received a concurrent update!\n"); + ret = EAGAIN; + goto immediate; + } + + /* id_ctx now must mark the requests as updated when the inotify-induced + * update finishes + */ + *update_req = req; + return req; + +immediate: + dp_reply_std_set(&state->reply, DP_ERR_DECIDE, ret, NULL); + + if (ret == EOK) { + tevent_req_done(req); + } else { + tevent_req_error(req, ret); + } + + tevent_req_post(req, params->ev); + return req; +} + +static void finish_update_req(struct tevent_req **update_req, + errno_t ret) +{ + if (*update_req == NULL) { + return; + } + + if (ret != EOK) { + tevent_req_error(*update_req, ret); + } else { + tevent_req_done(*update_req); + } + *update_req = NULL; +} + +void files_account_info_finished(struct files_id_ctx *id_ctx, + int req_type, + errno_t ret) +{ + switch (req_type) { + case BE_REQ_USER: + finish_update_req(&id_ctx->users_req, ret); + if (id_ctx->updating_groups == false) { + finish_update_req(&id_ctx->initgroups_req, ret); + } + break; + case BE_REQ_GROUP: + finish_update_req(&id_ctx->groups_req, ret); + if (id_ctx->updating_passwd == false) { + finish_update_req(&id_ctx->initgroups_req, ret); + } + break; + default: + DEBUG(SSSDBG_CRIT_FAILURE, + "Unexpected req_type %d\n", req_type); + return; + } +} + +errno_t files_account_info_handler_recv(TALLOC_CTX *mem_ctx, + struct tevent_req *req, + struct dp_reply_std *data) +{ + struct files_account_info_handler_state *state = NULL; + + state = tevent_req_data(req, struct files_account_info_handler_state); + + TEVENT_REQ_RETURN_ON_ERROR(req); + + *data = state->reply; + return EOK; +} diff -Nru sssd-1.15.0/src/providers/files/files_init.c sssd-1.15.2/src/providers/files/files_init.c --- sssd-1.15.0/src/providers/files/files_init.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/providers/files/files_init.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,92 @@ +/* + SSSD + + files_init.c - Initialization of the files provider + + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include "providers/data_provider/dp.h" +#include "providers/files/files_private.h" + +int sssm_files_init(TALLOC_CTX *mem_ctx, + struct be_ctx *be_ctx, + struct data_provider *provider, + const char *module_name, + void **_module_data) +{ + struct files_id_ctx *ctx; + int ret; + const char *passwd_file = NULL; + const char *group_file = NULL; + + /* So far this is mostly useful for tests */ + passwd_file = getenv("SSS_FILES_PASSWD"); + if (passwd_file == NULL) { + passwd_file = "/etc/passwd"; + } + + group_file = getenv("SSS_FILES_GROUP"); + if (group_file == NULL) { + group_file = "/etc/group"; + } + + ctx = talloc_zero(mem_ctx, struct files_id_ctx); + if (ctx == NULL) { + return ENOMEM; + } + ctx->be = be_ctx; + ctx->domain = be_ctx->domain; + ctx->passwd_file = passwd_file; + ctx->group_file = group_file; + + ctx->fctx = sf_init(ctx, be_ctx->ev, + ctx->passwd_file, ctx->group_file, + ctx); + if (ctx->fctx == NULL) { + ret = ENOMEM; + goto done; + } + + *_module_data = ctx; + ret = EOK; +done: + if (ret != EOK) { + talloc_free(ctx); + } + return ret; +} + +int sssm_files_id_init(TALLOC_CTX *mem_ctx, + struct be_ctx *be_ctx, + void *module_data, + struct dp_method *dp_methods) +{ + struct files_id_ctx *ctx; + + ctx = talloc_get_type(module_data, struct files_id_ctx); + if (ctx == NULL) { + return EINVAL; + } + + dp_set_method(dp_methods, DPM_ACCOUNT_HANDLER, + files_account_info_handler_send, + files_account_info_handler_recv, + ctx, struct files_id_ctx, + struct dp_id_data, struct dp_reply_std); + + return EOK; +} diff -Nru sssd-1.15.0/src/providers/files/files_ops.c sssd-1.15.2/src/providers/files/files_ops.c --- sssd-1.15.0/src/providers/files/files_ops.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/providers/files/files_ops.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,806 @@ +/* + SSSD + + Files provider operations + + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ +#include + +#include "config.h" + +#include "providers/files/files_private.h" +#include "db/sysdb.h" +#include "util/inotify.h" +#include "util/util.h" + +/* When changing this constant, make sure to also adjust the files integration + * test for reallocation branch + */ +#define FILES_REALLOC_CHUNK 64 + +#define PWD_MAXSIZE 1024 +#define GRP_MAXSIZE 2048 + +struct files_ctx { + struct snotify_ctx *pwd_watch; + struct snotify_ctx *grp_watch; + + struct files_ops_ctx *ops; +}; + +static errno_t enum_files_users(TALLOC_CTX *mem_ctx, + struct files_id_ctx *id_ctx, + struct passwd ***_users) +{ + errno_t ret, close_ret; + struct passwd *pwd_iter = NULL; + struct passwd *pwd = NULL; + struct passwd **users = NULL; + FILE *pwd_handle = NULL; + size_t n_users = 0; + + pwd_handle = fopen(id_ctx->passwd_file, "r"); + if (pwd_handle == NULL) { + ret = errno; + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot open passwd file %s [%d]\n", + id_ctx->passwd_file, ret); + goto done; + } + + users = talloc_zero_array(mem_ctx, struct passwd *, + FILES_REALLOC_CHUNK); + if (users == NULL) { + ret = ENOMEM; + goto done; + } + + while ((pwd_iter = fgetpwent(pwd_handle)) != NULL) { + /* FIXME - we might want to support paging of sorts to avoid allocating + * all users atop a memory context or only return users that differ from + * the local storage as a diff to minimize memory spikes + */ + DEBUG(SSSDBG_TRACE_LIBS, + "User found (%s, %s, %"SPRIuid", %"SPRIgid", %s, %s, %s)\n", + pwd_iter->pw_name, pwd_iter->pw_passwd, + pwd_iter->pw_uid, pwd_iter->pw_gid, + pwd_iter->pw_gecos, pwd_iter->pw_dir, + pwd_iter->pw_shell); + + pwd = talloc_zero(users, struct passwd); + if (pwd == NULL) { + ret = ENOMEM; + goto done; + } + + pwd->pw_uid = pwd_iter->pw_uid; + pwd->pw_gid = pwd_iter->pw_gid; + + pwd->pw_name = talloc_strdup(pwd, pwd_iter->pw_name); + if (pwd->pw_name == NULL) { + /* We only check pw_name here on purpose to allow broken + * records to be optionally rejected when saving them + * or fallback values to be used. + */ + ret = ENOMEM; + goto done; + } + + pwd->pw_dir = talloc_strdup(pwd, pwd_iter->pw_dir); + pwd->pw_gecos = talloc_strdup(pwd, pwd_iter->pw_gecos); + pwd->pw_shell = talloc_strdup(pwd, pwd_iter->pw_shell); + pwd->pw_passwd = talloc_strdup(pwd, pwd_iter->pw_passwd); + + users[n_users] = pwd; + n_users++; + if (n_users % FILES_REALLOC_CHUNK == 0) { + users = talloc_realloc(mem_ctx, + users, + struct passwd *, + talloc_array_length(users) + FILES_REALLOC_CHUNK); + if (users == NULL) { + ret = ENOMEM; + goto done; + } + } + } + + ret = EOK; + users[n_users] = NULL; + *_users = users; +done: + if (ret != EOK) { + talloc_free(users); + } + + if (pwd_handle) { + close_ret = fclose(pwd_handle); + if (close_ret != 0) { + close_ret = errno; + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot close passwd file %s [%d]\n", + id_ctx->passwd_file, close_ret); + } + } + return ret; +} + +static errno_t enum_files_groups(TALLOC_CTX *mem_ctx, + struct files_id_ctx *id_ctx, + struct group ***_groups) +{ + errno_t ret, close_ret; + struct group *grp_iter = NULL; + struct group *grp = NULL; + struct group **groups = NULL; + size_t n_groups = 0; + FILE *grp_handle = NULL; + + grp_handle = fopen(id_ctx->group_file, "r"); + if (grp_handle == NULL) { + ret = errno; + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot open group file %s [%d]\n", + id_ctx->group_file, ret); + goto done; + } + + groups = talloc_zero_array(mem_ctx, struct group *, + FILES_REALLOC_CHUNK); + if (groups == NULL) { + ret = ENOMEM; + goto done; + } + + while ((grp_iter = fgetgrent(grp_handle)) != NULL) { + DEBUG(SSSDBG_TRACE_LIBS, + "Group found (%s, %"SPRIgid")\n", + grp_iter->gr_name, grp_iter->gr_gid); + + grp = talloc_zero(groups, struct group); + if (grp == NULL) { + ret = ENOMEM; + goto done; + } + + grp->gr_gid = grp_iter->gr_gid; + grp->gr_name = talloc_strdup(grp, grp_iter->gr_name); + if (grp->gr_name == NULL) { + /* We only check gr_name here on purpose to allow broken + * records to be optionally rejected when saving them + * or fallback values to be used. + */ + ret = ENOMEM; + goto done; + } + grp->gr_passwd = talloc_strdup(grp, grp_iter->gr_passwd); + + if (grp_iter->gr_mem != NULL) { + size_t nmem; + + for (nmem = 0; grp_iter->gr_mem[nmem] != NULL; nmem++); + + grp->gr_mem = talloc_zero_array(grp, char *, nmem + 1); + if (grp->gr_mem == NULL) { + ret = ENOMEM; + goto done; + } + + for (nmem = 0; grp_iter->gr_mem[nmem] != NULL; nmem++) { + grp->gr_mem[nmem] = talloc_strdup(grp, grp_iter->gr_mem[nmem]); + if (grp->gr_mem[nmem] == NULL) { + ret = ENOMEM; + goto done; + } + } + } + + groups[n_groups] = grp; + n_groups++; + if (n_groups % FILES_REALLOC_CHUNK == 0) { + groups = talloc_realloc(mem_ctx, + groups, + struct group *, + talloc_array_length(groups) + FILES_REALLOC_CHUNK); + if (groups == NULL) { + ret = ENOMEM; + goto done; + } + } + } + + ret = EOK; + groups[n_groups] = NULL; + *_groups = groups; +done: + if (ret != EOK) { + talloc_free(groups); + } + + if (grp_handle) { + close_ret = fclose(grp_handle); + if (close_ret != 0) { + close_ret = errno; + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot close group file %s [%d]\n", + id_ctx->group_file, close_ret); + } + } + return ret; +} + +static errno_t delete_all_users(struct sss_domain_info *dom) +{ + TALLOC_CTX *tmp_ctx; + struct ldb_dn *base_dn; + errno_t ret; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Out of memory!\n"); + return ENOMEM; + } + + base_dn = sysdb_user_base_dn(tmp_ctx, dom); + if (base_dn == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Out of memory!\n"); + ret = ENOMEM; + goto done; + } + + ret = sysdb_delete_recursive(dom->sysdb, base_dn, true); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "Unable to delete users subtree [%d]: %s\n", + ret, sss_strerror(ret)); + goto done; + } + + ret = EOK; + +done: + talloc_free(tmp_ctx); + + return ret; +} + +static errno_t save_file_user(struct files_id_ctx *id_ctx, + struct passwd *pw) +{ + errno_t ret; + char *fqname; + TALLOC_CTX *tmp_ctx = NULL; + const char *shell; + const char *gecos; + struct sysdb_attrs *attrs = NULL; + + if (strcmp(pw->pw_name, "root") == 0 + || pw->pw_uid == 0 + || pw->pw_gid == 0) { + DEBUG(SSSDBG_TRACE_FUNC, "Skipping %s\n", pw->pw_name); + return EOK; + } + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + return ENOMEM; + } + + fqname = sss_create_internal_fqname(tmp_ctx, pw->pw_name, + id_ctx->domain->name); + if (fqname == NULL) { + ret = ENOMEM; + goto done; + } + + attrs = sysdb_new_attrs(tmp_ctx); + if (attrs == NULL) { + ret = ENOMEM; + goto done; + } + + if (pw->pw_shell && pw->pw_shell[0] != '\0') { + shell = pw->pw_shell; + } else { + shell = NULL; + } + + if (pw->pw_gecos && pw->pw_gecos[0] != '\0') { + gecos = pw->pw_gecos; + } else { + gecos = NULL; + } + + /* FIXME - optimize later */ + ret = sysdb_store_user(id_ctx->domain, + fqname, + pw->pw_passwd, + pw->pw_uid, + pw->pw_gid, + gecos, + pw->pw_dir, + shell, + NULL, attrs, + NULL, 0, 0); + if (ret != EOK) { + goto done; + } + + ret = EOK; +done: + talloc_free(tmp_ctx); + return ret; +} + +static errno_t sf_enum_groups(struct files_id_ctx *id_ctx); + +errno_t sf_enum_users(struct files_id_ctx *id_ctx) +{ + errno_t ret; + errno_t tret; + TALLOC_CTX *tmp_ctx = NULL; + struct passwd **users = NULL; + bool in_transaction = false; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + return ENOMEM; + } + + ret = enum_files_users(tmp_ctx, id_ctx, &users); + if (ret != EOK) { + goto done; + } + + ret = sysdb_transaction_start(id_ctx->domain->sysdb); + if (ret != EOK) { + goto done; + } + in_transaction = true; + + /* remove previous cache contents */ + /* FIXME - this is terribly inefficient */ + ret = delete_all_users(id_ctx->domain); + if (ret != EOK) { + goto done; + } + + for (size_t i = 0; users[i]; i++) { + ret = save_file_user(id_ctx, users[i]); + if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "Cannot save user %s: [%d]: %s\n", + users[i]->pw_name, ret, sss_strerror(ret)); + continue; + } + } + + ret = sysdb_transaction_commit(id_ctx->domain->sysdb); + if (ret != EOK) { + goto done; + } + in_transaction = false; + + /* Covers the case when someone edits /etc/group, adds a group member and + * only then edits passwd and adds the user. The reverse is not needed, + * because member/memberof links are established when groups are saved. + */ + ret = sf_enum_groups(id_ctx); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "Cannot refresh groups\n"); + goto done; + } + + ret = EOK; +done: + if (in_transaction) { + tret = sysdb_transaction_cancel(id_ctx->domain->sysdb); + if (tret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot cancel transaction: %d\n", ret); + } + } + talloc_free(tmp_ctx); + return ret; +} + +static const char **get_cached_user_names(TALLOC_CTX *mem_ctx, + struct sss_domain_info *dom) +{ + errno_t ret; + struct ldb_result *res = NULL; + const char **user_names = NULL; + unsigned c = 0; + + ret = sysdb_enumpwent(mem_ctx, dom, &res); + if (ret != EOK) { + goto done; + } + + user_names = talloc_zero_array(mem_ctx, const char *, res->count + 1); + if (user_names == NULL) { + goto done; + } + + for (unsigned i = 0; i < res->count; i++) { + user_names[c] = ldb_msg_find_attr_as_string(res->msgs[i], + SYSDB_NAME, + NULL); + if (user_names[c] == NULL) { + continue; + } + c++; + } + +done: + /* Don't free res and keep it around to avoid duplicating the names */ + return user_names; +} + +static errno_t delete_all_groups(struct sss_domain_info *dom) +{ + TALLOC_CTX *tmp_ctx; + struct ldb_dn *base_dn; + errno_t ret; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Out of memory!\n"); + return ENOMEM; + } + + base_dn = sysdb_group_base_dn(tmp_ctx, dom); + if (base_dn == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Out of memory!\n"); + ret = ENOMEM; + goto done; + } + + ret = sysdb_delete_recursive(dom->sysdb, base_dn, true); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "Unable to delete groups subtree [%d]: %s\n", + ret, sss_strerror(ret)); + goto done; + } + + ret = EOK; + +done: + talloc_free(tmp_ctx); + + return ret; +} + +static errno_t save_file_group(struct files_id_ctx *id_ctx, + struct group *grp, + const char **cached_users) +{ + errno_t ret; + char *fqname; + struct sysdb_attrs *attrs = NULL; + TALLOC_CTX *tmp_ctx = NULL; + char **fq_gr_files_mem; + const char **fq_gr_mem; + unsigned mi = 0; + + if (strcmp(grp->gr_name, "root") == 0 + || grp->gr_gid == 0) { + DEBUG(SSSDBG_TRACE_FUNC, "Skipping %s\n", grp->gr_name); + return EOK; + } + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + return ENOMEM; + } + + fqname = sss_create_internal_fqname(tmp_ctx, grp->gr_name, + id_ctx->domain->name); + if (fqname == NULL) { + ret = ENOMEM; + goto done; + + } + + attrs = sysdb_new_attrs(tmp_ctx); + if (attrs == NULL) { + ret = ENOMEM; + goto done; + } + + if (grp->gr_mem && grp->gr_mem[0]) { + fq_gr_files_mem = sss_create_internal_fqname_list( + tmp_ctx, + (const char *const*) grp->gr_mem, + id_ctx->domain->name); + if (fq_gr_files_mem == NULL) { + ret = ENOMEM; + goto done; + } + + fq_gr_mem = talloc_zero_array(tmp_ctx, const char *, + talloc_array_length(fq_gr_files_mem)); + if (fq_gr_mem == NULL) { + ret = ENOMEM; + goto done; + } + + for (unsigned i=0; fq_gr_files_mem[i] != NULL; i++) { + if (string_in_list(fq_gr_files_mem[i], + discard_const(cached_users), + true)) { + fq_gr_mem[mi] = fq_gr_files_mem[i]; + mi++; + + DEBUG(SSSDBG_TRACE_LIBS, + "User %s is cached, will become a member of %s\n", + fq_gr_files_mem[i], grp->gr_name); + } else { + ret = sysdb_attrs_add_string(attrs, + SYSDB_GHOST, + fq_gr_files_mem[i]); + if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "Cannot add ghost %s for group %s\n", + fq_gr_files_mem[i], fqname); + continue; + } + + DEBUG(SSSDBG_TRACE_LIBS, + "User %s is not cached, will become a ghost of %s\n", + fq_gr_files_mem[i], grp->gr_name); + } + } + + if (fq_gr_mem != NULL && fq_gr_mem[0] != NULL) { + ret = sysdb_attrs_users_from_str_list( + attrs, SYSDB_MEMBER, id_ctx->domain->name, + (const char *const *) fq_gr_mem); + if (ret) { + DEBUG(SSSDBG_OP_FAILURE, "Could not add group members\n"); + goto done; + } + } + + } + + ret = sysdb_store_group(id_ctx->domain, fqname, grp->gr_gid, + attrs, 0, 0); + if (ret) { + DEBUG(SSSDBG_OP_FAILURE, "Could not add group to cache\n"); + goto done; + } + + ret = EOK; +done: + talloc_free(tmp_ctx); + return ret; +} + +static errno_t sf_enum_groups(struct files_id_ctx *id_ctx) +{ + errno_t ret; + errno_t tret; + TALLOC_CTX *tmp_ctx = NULL; + struct group **groups = NULL; + bool in_transaction = false; + const char **cached_users = NULL; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + return ENOMEM; + } + + ret = enum_files_groups(tmp_ctx, id_ctx, &groups); + if (ret != EOK) { + goto done; + } + + cached_users = get_cached_user_names(tmp_ctx, id_ctx->domain); + if (cached_users == NULL) { + goto done; + } + + ret = sysdb_transaction_start(id_ctx->domain->sysdb); + if (ret != EOK) { + goto done; + } + in_transaction = true; + + /* remove previous cache contents */ + ret = delete_all_groups(id_ctx->domain); + if (ret != EOK) { + goto done; + } + + for (size_t i = 0; groups[i]; i++) { + ret = save_file_group(id_ctx, groups[i], cached_users); + if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "Cannot save group %s\n", groups[i]->gr_name); + continue; + } + } + + ret = sysdb_transaction_commit(id_ctx->domain->sysdb); + if (ret != EOK) { + goto done; + } + in_transaction = false; + + ret = EOK; +done: + if (in_transaction) { + tret = sysdb_transaction_cancel(id_ctx->domain->sysdb); + if (tret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot cancel transaction: %d\n", ret); + } + } + talloc_free(tmp_ctx); + return ret; +} + +static void sf_cb_done(struct files_id_ctx *id_ctx) +{ + /* Only activate a domain when both callbacks are done */ + if (id_ctx->updating_passwd == false + && id_ctx->updating_groups == false) { + dp_sbus_domain_active(id_ctx->be->provider, + id_ctx->domain); + } +} + +static int sf_passwd_cb(const char *filename, uint32_t flags, void *pvt) +{ + struct files_id_ctx *id_ctx; + errno_t ret; + + id_ctx = talloc_get_type(pvt, struct files_id_ctx); + if (id_ctx == NULL) { + return EINVAL; + } + + DEBUG(SSSDBG_TRACE_FUNC, "passwd notification\n"); + + if (strcmp(filename, id_ctx->passwd_file) != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Wrong file, expected %s, got %s\n", + id_ctx->passwd_file, filename); + return EINVAL; + } + + id_ctx->updating_passwd = true; + dp_sbus_domain_inconsistent(id_ctx->be->provider, id_ctx->domain); + + dp_sbus_reset_users_ncache(id_ctx->be->provider, id_ctx->domain); + dp_sbus_reset_users_memcache(id_ctx->be->provider); + dp_sbus_reset_initgr_memcache(id_ctx->be->provider); + + ret = sf_enum_users(id_ctx); + + id_ctx->updating_passwd = false; + sf_cb_done(id_ctx); + files_account_info_finished(id_ctx, BE_REQ_USER, ret); + return ret; +} + +static int sf_group_cb(const char *filename, uint32_t flags, void *pvt) +{ + struct files_id_ctx *id_ctx; + errno_t ret; + + id_ctx = talloc_get_type(pvt, struct files_id_ctx); + if (id_ctx == NULL) { + return EINVAL; + } + + DEBUG(SSSDBG_TRACE_FUNC, "group notification\n"); + + if (strcmp(filename, id_ctx->group_file) != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Wrong file, expected %s, got %s\n", + id_ctx->group_file, filename); + return EINVAL; + } + + id_ctx->updating_groups = true; + dp_sbus_domain_inconsistent(id_ctx->be->provider, id_ctx->domain); + + dp_sbus_reset_groups_ncache(id_ctx->be->provider, id_ctx->domain); + dp_sbus_reset_groups_memcache(id_ctx->be->provider); + dp_sbus_reset_initgr_memcache(id_ctx->be->provider); + + ret = sf_enum_groups(id_ctx); + + id_ctx->updating_groups = false; + sf_cb_done(id_ctx); + files_account_info_finished(id_ctx, BE_REQ_GROUP, ret); + return ret; +} + +static void startup_enum_files(struct tevent_context *ev, + struct tevent_immediate *imm, + void *pvt) +{ + struct files_id_ctx *id_ctx = talloc_get_type(pvt, struct files_id_ctx); + errno_t ret; + + talloc_zfree(imm); + + ret = sf_enum_users(id_ctx); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Enumerating users failed, data might be inconsistent!\n"); + } + + ret = sf_enum_groups(id_ctx); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Enumerating groups failed, data might be inconsistent!\n"); + } +} + +static struct snotify_ctx *sf_setup_watch(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + const char *filename, + snotify_cb_fn fn, + struct files_id_ctx *id_ctx) +{ + return snotify_create(mem_ctx, ev, SNOTIFY_WATCH_DIR, + filename, NULL, + IN_DELETE_SELF | IN_CLOSE_WRITE | IN_MOVE_SELF | \ + IN_CREATE | IN_MOVED_TO, + fn, id_ctx); +} + +struct files_ctx *sf_init(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + const char *passwd_file, + const char *group_file, + struct files_id_ctx *id_ctx) +{ + struct files_ctx *fctx; + struct tevent_immediate *imm; + + fctx = talloc(mem_ctx, struct files_ctx); + if (fctx == NULL) { + return NULL; + } + + fctx->pwd_watch = sf_setup_watch(fctx, ev, passwd_file, + sf_passwd_cb, id_ctx); + fctx->grp_watch = sf_setup_watch(fctx, ev, group_file, + sf_group_cb, id_ctx); + if (fctx->pwd_watch == NULL || fctx->grp_watch == NULL) { + talloc_free(fctx); + return NULL; + } + + /* Enumerate users and groups on startup to process any changes when + * sssd was down. We schedule a request here to minimize the time + * we spend in the init function + */ + imm = tevent_create_immediate(id_ctx); + if (imm == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "tevent_create_immediate failed.\n"); + talloc_free(fctx); + return NULL; + } + tevent_schedule_immediate(imm, ev, startup_enum_files, id_ctx); + + return fctx; +} diff -Nru sssd-1.15.0/src/providers/files/files_private.h sssd-1.15.2/src/providers/files/files_private.h --- sssd-1.15.0/src/providers/files/files_private.h 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/providers/files/files_private.h 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,74 @@ +/* + SSSD + + Files provider declarations + + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#ifndef __FILES_PRIVATE_H_ +#define __FILES_PRIVATE_H_ + +#include "config.h" + +#include +#include +#include +#include +#include +#include +#include + +#include "providers/data_provider/dp.h" + +struct files_id_ctx { + struct be_ctx *be; + struct sss_domain_info *domain; + struct files_ctx *fctx; + + const char *passwd_file; + const char *group_file; + + bool updating_passwd; + bool updating_groups; + + struct tevent_req *users_req; + struct tevent_req *groups_req; + struct tevent_req *initgroups_req; +}; + +/* files_ops.c */ +struct files_ctx *sf_init(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + const char *passwd_file, + const char *group_file, + struct files_id_ctx *id_ctx); + +/* files_id.c */ +struct tevent_req * +files_account_info_handler_send(TALLOC_CTX *mem_ctx, + struct files_id_ctx *id_ctx, + struct dp_id_data *data, + struct dp_req_params *params); + +errno_t files_account_info_handler_recv(TALLOC_CTX *mem_ctx, + struct tevent_req *req, + struct dp_reply_std *data); + +void files_account_info_finished(struct files_id_ctx *id_ctx, + int req_type, + errno_t ret); +#endif /* __FILES_PRIVATE_H_ */ diff -Nru sssd-1.15.0/src/providers/ipa/ipa_id.c sssd-1.15.2/src/providers/ipa/ipa_id.c --- sssd-1.15.0/src/providers/ipa/ipa_id.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ipa/ipa_id.c 2017-03-15 16:53:24.000000000 +0000 @@ -489,6 +489,8 @@ size_t group_cnt; size_t group_idx; + struct ldb_result *res; + size_t res_index; int dp_error; }; @@ -717,6 +719,7 @@ return EOK; } +static int ipa_id_get_account_info_post_proc_step(struct tevent_req *req); static void ipa_id_get_user_groups_done(struct tevent_req *subreq); static void ipa_id_get_account_info_orig_done(struct tevent_req *subreq) @@ -727,9 +730,14 @@ struct ipa_id_get_account_info_state); int dp_error = DP_ERR_FATAL; int ret; - const char *uuid; - const char *class; - enum sysdb_member_type type; + const char *attrs[] = { SYSDB_NAME, + SYSDB_UIDNUM, + SYSDB_SID_STR, + SYSDB_OBJECTCLASS, + SYSDB_UUID, + SYSDB_GHOST, + SYSDB_HOMEDIR, + NULL }; ret = sdap_handle_acct_req_recv(subreq, &dp_error, NULL, NULL); talloc_zfree(subreq); @@ -744,24 +752,79 @@ return; } - ret = get_object_from_cache(state, state->domain, state->ar, - &state->obj_msg); - if (ret == ENOENT) { - DEBUG(SSSDBG_MINOR_FAILURE, "Object not found, ending request\n"); - state->dp_error = DP_ERR_OK; - tevent_req_done(req); + /* Lookups by certificate can return muliple results and need special + * handling because get_object_from_cache() expects a unique match */ + state->res = NULL; + state->res_index = 0; + if (state->ar->filter_type == BE_FILTER_CERT) { + ret = sysdb_search_object_by_cert(state, state->domain, + state->ar->filter_value, attrs, + &(state->res)); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to make request to our cache: [%d]: [%s]\n", + ret, sss_strerror(ret)); + goto fail; + } + if (state->res->count == 0) { + DEBUG(SSSDBG_OP_FAILURE, "Object not found in our cache.\n"); + ret = ENOENT; + goto fail; + } + + state->obj_msg = state->res->msgs[0]; + if (state->res->count == 1) { + /* Just process the unique result, no need to iterate */ + state->res = NULL; + } + } else { + ret = get_object_from_cache(state, state->domain, state->ar, + &state->obj_msg); + if (ret == ENOENT) { + DEBUG(SSSDBG_MINOR_FAILURE, "Object not found, ending request\n"); + state->dp_error = DP_ERR_OK; + tevent_req_done(req); + return; + } else if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "get_object_from_cache failed.\n"); + goto fail; + } + } + + ret = ipa_id_get_account_info_post_proc_step(req); + if (ret == EAGAIN) { return; } else if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "get_object_from_cache failed.\n"); + DEBUG(SSSDBG_OP_FAILURE, "ipa_id_get_account_info_post_proc_step failed.\n"); goto fail; } + state->dp_error = DP_ERR_OK; + tevent_req_done(req); + return; + +fail: + state->dp_error = dp_error; + tevent_req_error(req, ret); + return; +} + +static int ipa_id_get_account_info_post_proc_step(struct tevent_req *req) +{ + int ret; + const char *uuid; + const char *class; + enum sysdb_member_type type; + struct tevent_req *subreq; + struct ipa_id_get_account_info_state *state = tevent_req_data(req, + struct ipa_id_get_account_info_state); + class = ldb_msg_find_attr_as_string(state->obj_msg, SYSDB_OBJECTCLASS, NULL); if (class == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Cannot find an objectclass.\n"); ret = EINVAL; - goto fail; + goto done; } @@ -781,7 +844,7 @@ &state->user_groups); if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "Cannot get UUID list: %d\n", ret); - goto fail; + goto done; } } } @@ -792,14 +855,14 @@ if (uuid == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Cannot find a UUID.\n"); ret = EINVAL; - goto fail; + goto done; } ret = get_dp_id_data_for_uuid(state, uuid, state->domain->name, &state->ar); if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "get_dp_id_data_for_sid failed.\n"); - goto fail; + goto done; } subreq = ipa_get_ad_override_send(state, state->ev, @@ -811,10 +874,11 @@ if (subreq == NULL) { DEBUG(SSSDBG_OP_FAILURE, "ipa_get_ad_override_send failed.\n"); ret = ENOMEM; - goto fail; + goto done; } tevent_req_set_callback(subreq, ipa_id_get_account_info_done, req); - return; + ret = EAGAIN; + goto done; } else { if (strcmp(class, SYSDB_USER_CLASS) == 0) { type = SYSDB_MEMBER_USER; @@ -827,7 +891,7 @@ state->override_attrs, state->obj_msg->dn); if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "sysdb_store_override failed.\n"); - goto fail; + goto done; } } @@ -840,10 +904,11 @@ if (subreq == NULL) { DEBUG(SSSDBG_OP_FAILURE, "ipa_resolve_user_list_send failed.\n"); ret = ENOMEM; - goto fail; + goto done; } tevent_req_set_callback(subreq, ipa_id_get_user_list_done, req); - return; + ret = EAGAIN; + goto done; } if (state->user_groups != NULL) { @@ -854,20 +919,23 @@ if (subreq == NULL) { DEBUG(SSSDBG_OP_FAILURE, "ipa_resolve_user_list_send failed.\n"); ret = ENOMEM; - goto fail; + goto done; } tevent_req_set_callback(subreq, ipa_id_get_user_groups_done, req); - return; + ret = EAGAIN; + goto done; } - state->dp_error = DP_ERR_OK; - tevent_req_done(req); - return; + ret = EOK; -fail: - state->dp_error = dp_error; - tevent_req_error(req, ret); - return; +done: + if (ret == EOK && state->res != NULL + && ++state->res_index < state->res->count) { + state->obj_msg = state->res->msgs[state->res_index]; + ret = ipa_id_get_account_info_post_proc_step(req); + } + + return ret; } static void ipa_id_get_account_info_done(struct tevent_req *subreq) @@ -940,6 +1008,18 @@ return; } + if (state->res != NULL && ++state->res_index < state->res->count) { + state->obj_msg = state->res->msgs[state->res_index]; + ret = ipa_id_get_account_info_post_proc_step(req); + if (ret == EAGAIN) { + return; + } else if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "ipa_id_get_account_info_post_proc_step failed.\n"); + goto fail; + } + } + state->dp_error = DP_ERR_OK; tevent_req_done(req); return; @@ -966,6 +1046,18 @@ goto fail; } + if (state->res != NULL && ++state->res_index < state->res->count) { + state->obj_msg = state->res->msgs[state->res_index]; + ret = ipa_id_get_account_info_post_proc_step(req); + if (ret == EAGAIN) { + return; + } else if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "ipa_id_get_account_info_post_proc_step failed.\n"); + goto fail; + } + } + state->dp_error = DP_ERR_OK; tevent_req_done(req); return; @@ -992,6 +1084,18 @@ goto fail; } + if (state->res != NULL && ++state->res_index < state->res->count) { + state->obj_msg = state->res->msgs[state->res_index]; + ret = ipa_id_get_account_info_post_proc_step(req); + if (ret == EAGAIN) { + return; + } else if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "ipa_id_get_account_info_post_proc_step failed.\n"); + goto fail; + } + } + state->dp_error = DP_ERR_OK; tevent_req_done(req); return; diff -Nru sssd-1.15.0/src/providers/ipa/ipa_subdomains_id.c sssd-1.15.2/src/providers/ipa/ipa_subdomains_id.c --- sssd-1.15.0/src/providers/ipa/ipa_subdomains_id.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ipa/ipa_subdomains_id.c 2017-03-15 16:53:24.000000000 +0000 @@ -1007,6 +1007,12 @@ ret, sss_strerror(ret)); goto done; } + if (res->count != 1) { + DEBUG(SSSDBG_OP_FAILURE, + "More than one result found in our cache\n"); + ret = EINVAL; + goto done; + } *_msg = res->msgs[0]; @@ -1051,7 +1057,7 @@ case BE_REQ_USER_AND_GROUP: if (ar->extra_value && strcmp(ar->extra_value, EXTRA_NAME_IS_UPN) == 0) { - ret = sysdb_search_user_by_upn(mem_ctx, dom, ar->filter_value, + ret = sysdb_search_user_by_upn(mem_ctx, dom, false, ar->filter_value, attrs, &msg); } else { ret = sysdb_search_user_by_name(mem_ctx, dom, ar->filter_value, diff -Nru sssd-1.15.0/src/providers/ipa/ipa_subdomains_server.c sssd-1.15.2/src/providers/ipa/ipa_subdomains_server.c --- sssd-1.15.0/src/providers/ipa/ipa_subdomains_server.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ipa/ipa_subdomains_server.c 2017-03-15 16:53:24.000000000 +0000 @@ -129,6 +129,8 @@ static struct ad_options * ipa_create_1way_trust_ctx(struct ipa_id_ctx *id_ctx, + struct be_ctx *be_ctx, + const char *subdom_conf_path, const char *forest, const char *forest_realm, struct sss_domain_info *subdom) @@ -136,9 +138,7 @@ char *keytab; char *principal; struct ad_options *ad_options; - const char *ad_domain; - ad_domain = subdom->name; keytab = forest_keytab(id_ctx, forest); principal = subdomain_trust_princ(id_ctx, forest_realm, subdom); if (keytab == NULL || principal == NULL) { @@ -146,7 +146,9 @@ } ad_options = ad_create_1way_trust_options(id_ctx, - ad_domain, + be_ctx->cdb, + subdom_conf_path, + subdom, id_ctx->server_mode->hostname, keytab, principal); @@ -159,32 +161,46 @@ return ad_options; } -static struct ad_options *ipa_ad_options_new(struct ipa_id_ctx *id_ctx, +static struct ad_options *ipa_ad_options_new(struct be_ctx *be_ctx, + struct ipa_id_ctx *id_ctx, struct sss_domain_info *subdom) { struct ad_options *ad_options = NULL; uint32_t direction; const char *forest; const char *forest_realm; + char *subdom_conf_path; /* Trusts are only established with forest roots */ direction = subdom->forest_root->trust_direction; forest_realm = subdom->forest_root->realm; forest = subdom->forest_root->forest; + subdom_conf_path = create_subdom_conf_path(id_ctx, + be_ctx->conf_path, + subdom->name); + if (subdom_conf_path == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "subdom_conf_path failed\n"); + return NULL; + } + if (direction & LSA_TRUST_DIRECTION_OUTBOUND) { ad_options = ad_create_2way_trust_options(id_ctx, + be_ctx->cdb, + subdom_conf_path, id_ctx->server_mode->realm, - subdom->name, + subdom, id_ctx->server_mode->hostname, NULL); } else if (direction & LSA_TRUST_DIRECTION_INBOUND) { - ad_options = ipa_create_1way_trust_ctx(id_ctx, forest, + ad_options = ipa_create_1way_trust_ctx(id_ctx, be_ctx, + subdom_conf_path, forest, forest_realm, subdom); } else { DEBUG(SSSDBG_CRIT_FAILURE, "Unsupported trust direction!\n"); ad_options = NULL; } + talloc_free(subdom_conf_path); if (ad_options == NULL) { DEBUG(SSSDBG_OP_FAILURE, "Cannot initialize AD options\n"); @@ -207,6 +223,8 @@ struct ad_srv_plugin_ctx *srv_ctx; const char *ad_domain; const char *ad_site_override; + const char *ad_servers; + const char *ad_backup_servers; struct sdap_domain *sdom; errno_t ret; const char *extra_attrs; @@ -214,7 +232,7 @@ ad_domain = subdom->name; DEBUG(SSSDBG_TRACE_LIBS, "Setting up AD subdomain %s\n", subdom->name); - ad_options = ipa_ad_options_new(id_ctx, subdom); + ad_options = ipa_ad_options_new(be_ctx, id_ctx, subdom); if (ad_options == NULL) { DEBUG(SSSDBG_OP_FAILURE, "Cannot initialize AD options\n"); talloc_free(ad_options); @@ -231,7 +249,7 @@ ret = dp_opt_set_string(ad_options->id->basic, SDAP_USER_EXTRA_ATTRS, extra_attrs); if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "dp_opt_get_string failed.\n"); + DEBUG(SSSDBG_OP_FAILURE, "dp_opt_set_string failed.\n"); talloc_free(ad_options); return ret; } @@ -263,9 +281,12 @@ return ENOMEM; } + ad_servers = dp_opt_get_string(ad_options->basic, AD_SERVER); + ad_backup_servers = dp_opt_get_string(ad_options->basic, AD_BACKUP_SERVER); + /* Set KRB5 realm to same as the one of IPA when IPA * is able to attach PAC. For testing, use hardcoded. */ - ret = ad_failover_init(ad_options, be_ctx, NULL, NULL, + ret = ad_failover_init(ad_options, be_ctx, ad_servers, ad_backup_servers, id_ctx->server_mode->realm, service_name, gc_service_name, subdom->name, &ad_options->service); @@ -313,6 +334,13 @@ return EFAULT; } + ret = ad_set_search_bases(ad_options->id); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "Cannot initialize AD search bases\n"); + talloc_free(ad_options); + return ret; + } + sdap_inherit_options(subdom->parent->sd_inherit, id_ctx->sdap_id_ctx->opts, ad_id_ctx->sdap_id_ctx->opts); diff -Nru sssd-1.15.0/src/providers/ipa/ipa_sudo_conversion.c sssd-1.15.2/src/providers/ipa/ipa_sudo_conversion.c --- sssd-1.15.0/src/providers/ipa/ipa_sudo_conversion.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ipa/ipa_sudo_conversion.c 2017-03-15 16:53:24.000000000 +0000 @@ -746,12 +746,15 @@ static const char * convert_host(TALLOC_CTX *mem_ctx, struct ipa_sudo_conv *conv, - const char *value) + const char *value, + bool *skip_entry) { char *rdn; const char *group; errno_t ret; + *skip_entry = false; + ret = ipa_get_rdn(mem_ctx, conv->dom->sysdb, value, &rdn, MATCHRDN_HOST(conv->map_host)); if (ret == EOK) { @@ -765,7 +768,8 @@ ret = ipa_get_rdn(mem_ctx, conv->dom->sysdb, value, &rdn, MATCHRDN_HOSTGROUP(conv->map_hostgroup)); if (ret == ENOENT) { - DEBUG(SSSDBG_CRIT_FAILURE, "Unexpected DN %s\n", value); + DEBUG(SSSDBG_CRIT_FAILURE, "Unexpected DN %s: Skipping\n", value); + *skip_entry = true; return NULL; } else if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "ipa_get_rdn() failed on value %s [%d]: %s\n", @@ -782,12 +786,15 @@ static const char * convert_user(TALLOC_CTX *mem_ctx, struct ipa_sudo_conv *conv, - const char *value) + const char *value, + bool *skip_entry) { char *rdn; const char *group; errno_t ret; + *skip_entry = false; + ret = ipa_get_rdn(mem_ctx, conv->dom->sysdb, value, &rdn, MATCHRDN_USER(conv->map_user)); if (ret == EOK) { @@ -801,7 +808,8 @@ ret = ipa_get_rdn(mem_ctx, conv->dom->sysdb, value, &rdn, MATCHRDN_GROUP(conv->map_group)); if (ret == ENOENT) { - DEBUG(SSSDBG_CRIT_FAILURE, "Unexpected DN %s\n", value); + DEBUG(SSSDBG_CRIT_FAILURE, "Unexpected DN %s: Skipping\n", value); + *skip_entry = true; return NULL; } else if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "ipa_get_rdn() failed on value %s [%d]: %s\n", @@ -818,12 +826,15 @@ static const char * convert_user_fqdn(TALLOC_CTX *mem_ctx, struct ipa_sudo_conv *conv, - const char *value) + const char *value, + bool *skip_entry) { const char *shortname = NULL; char *fqdn = NULL; - shortname = convert_user(mem_ctx, conv, value); + *skip_entry = false; + + shortname = convert_user(mem_ctx, conv, value, skip_entry); if (shortname == NULL) { return NULL; } @@ -836,15 +847,19 @@ static const char * convert_group(TALLOC_CTX *mem_ctx, struct ipa_sudo_conv *conv, - const char *value) + const char *value, + bool *skip_entry) { char *rdn; errno_t ret; + *skip_entry = false; + ret = ipa_get_rdn(mem_ctx, conv->dom->sysdb, value, &rdn, MATCHRDN_GROUP(conv->map_group)); if (ret == ENOENT) { - DEBUG(SSSDBG_CRIT_FAILURE, "Unexpected DN %s\n", value); + DEBUG(SSSDBG_CRIT_FAILURE, "Unexpected DN %s: Skipping\n", value); + *skip_entry = true; return NULL; } else if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "ipa_get_rdn() failed on value %s [%d]: %s\n", @@ -858,7 +873,8 @@ static const char * convert_runasextusergroup(TALLOC_CTX *mem_ctx, struct ipa_sudo_conv *conv, - const char *value) + const char *value, + bool *skip_entry) { return talloc_asprintf(mem_ctx, "%%%s", value); } @@ -866,8 +882,12 @@ static const char * convert_cat(TALLOC_CTX *mem_ctx, struct ipa_sudo_conv *conv, - const char *value) + const char *value, + bool *skip_entry) { + + *skip_entry = false; + if (strcmp(value, "all") == 0) { return talloc_strdup(mem_ctx, "ALL"); } @@ -885,12 +905,14 @@ const char *value; errno_t ret; int i, j; + bool skip_entry; static struct { const char *ipa; const char *sudo; const char *(*conv_fn)(TALLOC_CTX *mem_ctx, struct ipa_sudo_conv *conv, - const char *value); + const char *value, + bool *skip_entry); } table[] = {{SYSDB_NAME, SYSDB_SUDO_CACHE_AT_CN , NULL}, {SYSDB_IPA_SUDORULE_HOST, SYSDB_SUDO_CACHE_AT_HOST , convert_host}, {SYSDB_IPA_SUDORULE_USER, SYSDB_SUDO_CACHE_AT_USER , convert_user_fqdn}, @@ -931,10 +953,14 @@ for (j = 0; values[j] != NULL; j++) { if (table[i].conv_fn != NULL) { - value = table[i].conv_fn(tmp_ctx, conv, values[j]); + value = table[i].conv_fn(tmp_ctx, conv, values[j], &skip_entry); if (value == NULL) { - ret = ENOMEM; - goto done; + if (skip_entry) { + continue; + } else { + ret = ENOMEM; + goto done; + } } } else { value = values[j]; diff -Nru sssd-1.15.0/src/providers/krb5/krb5_auth.c sssd-1.15.2/src/providers/krb5/krb5_auth.c --- sssd-1.15.0/src/providers/krb5/krb5_auth.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/krb5/krb5_auth.c 2017-03-15 16:53:24.000000000 +0000 @@ -344,8 +344,13 @@ domain->cache_credentials_min_ff_length); ret = EINVAL; } - } else { + } else if (sss_authtok_get_type(pd->authtok) == + SSS_AUTHTOK_TYPE_PASSWORD) { ret = sss_authtok_get_password(pd->authtok, &password, NULL); + } else { + DEBUG(SSSDBG_MINOR_FAILURE, "Cannot cache authtok type [%d].\n", + sss_authtok_get_type(pd->authtok)); + ret = EINVAL; } break; case SSS_PAM_CHAUTHTOK: @@ -466,7 +471,9 @@ case SSS_PAM_AUTHENTICATE: case SSS_PAM_CHAUTHTOK: if (authtok_type != SSS_AUTHTOK_TYPE_PASSWORD - && authtok_type != SSS_AUTHTOK_TYPE_2FA) { + && authtok_type != SSS_AUTHTOK_TYPE_2FA + && authtok_type != SSS_AUTHTOK_TYPE_SC_PIN + && authtok_type != SSS_AUTHTOK_TYPE_SC_KEYPAD) { /* handle empty password gracefully */ if (authtok_type == SSS_AUTHTOK_TYPE_EMPTY) { DEBUG(SSSDBG_CRIT_FAILURE, @@ -965,6 +972,7 @@ DEBUG(SSSDBG_CRIT_FAILURE, "krb5_delete_ccname failed.\n"); } /* FALLTHROUGH */ + SSS_ATTRIBUTE_FALLTHROUGH; case ERR_CREDS_EXPIRED: /* If the password is expired we can safely remove the ccache from the @@ -1022,6 +1030,12 @@ ret = EOK; goto done; + case ERR_NO_AUTH_METHOD_AVAILABLE: + state->pam_status = PAM_NO_MODULE_DATA; + state->dp_err = DP_ERR_OK; + ret = EOK; + goto done; + default: DEBUG(SSSDBG_IMPORTANT_INFO, "The krb5_child process returned an error. Please inspect the " @@ -1184,6 +1198,7 @@ switch (pd->cmd) { case SSS_PAM_AUTHENTICATE: + case SSS_PAM_PREAUTH: case SSS_CMD_RENEW: case SSS_PAM_CHAUTHTOK_PRELIM: case SSS_PAM_CHAUTHTOK: diff -Nru sssd-1.15.0/src/providers/krb5/krb5_child.c sssd-1.15.2/src/providers/krb5/krb5_child.c --- sssd-1.15.0/src/providers/krb5/krb5_child.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/krb5/krb5_child.c 2017-03-15 16:53:24.000000000 +0000 @@ -64,6 +64,7 @@ krb5_creds *creds; bool otp; bool password_prompting; + bool pkinit_prompting; char *otp_vendor; char *otp_token_id; char *otp_challenge; @@ -587,6 +588,138 @@ return ret; } +static bool pkinit_identity_matches(const char *identity, + const char *token_name, + const char *module_name) +{ + TALLOC_CTX *tmp_ctx = NULL; + char *str; + bool res = false; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "talloc_new failed.\n"); + return false; + } + + str = talloc_asprintf(tmp_ctx, "module_name=%s", module_name); + if (str == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_asprintf failed.\n"); + goto done; + } + + if (strstr(identity, str) == NULL) { + DEBUG(SSSDBG_TRACE_ALL, "Identity [%s] does not contain [%s].\n", + identity, str); + goto done; + } + DEBUG(SSSDBG_TRACE_ALL, "Found [%s] in identity [%s].\n", str, identity); + + str = talloc_asprintf(tmp_ctx, "token=%s", token_name); + if (str == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_asprintf failed.\n"); + goto done; + } + + if (strstr(identity, str) == NULL) { + DEBUG(SSSDBG_TRACE_ALL, "Identity [%s] does not contain [%s].\n", + identity, str); + goto done; + } + DEBUG(SSSDBG_TRACE_ALL, "Found [%s] in identity [%s].\n", str, identity); + + res = true; + +done: + talloc_free(tmp_ctx); + + return res; +} + +static krb5_error_code answer_pkinit(krb5_context ctx, + struct krb5_req *kr, + krb5_responder_context rctx) +{ + krb5_error_code kerr; + const char *pin = NULL; + const char *token_name = NULL; + const char *module_name = NULL; + krb5_responder_pkinit_challenge *chl = NULL; + size_t c; + + kerr = krb5_responder_pkinit_get_challenge(ctx, rctx, &chl); + if (kerr != EOK || chl == NULL) { + DEBUG(SSSDBG_OP_FAILURE, + "krb5_responder_pkinit_get_challenge failed.\n"); + return kerr; + } + if (chl->identities == NULL || chl->identities[0] == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "No identities for pkinit!\n"); + kerr = EINVAL; + goto done; + } + + if (DEBUG_IS_SET(SSSDBG_TRACE_ALL)) { + for (c = 0; chl->identities[c] != NULL; c++) { + DEBUG(SSSDBG_TRACE_ALL, "[%zu] Identity [%s] flags [%"PRId32"].\n", + c, chl->identities[c]->identity, + chl->identities[c]->token_flags); + } + } + + DEBUG(SSSDBG_TRACE_ALL, "Setting pkinit_prompting.\n"); + kr->pkinit_prompting = true; + + if (kr->pd->cmd == SSS_PAM_AUTHENTICATE + && (sss_authtok_get_type(kr->pd->authtok) + == SSS_AUTHTOK_TYPE_SC_PIN + || sss_authtok_get_type(kr->pd->authtok) + == SSS_AUTHTOK_TYPE_SC_KEYPAD)) { + kerr = sss_authtok_get_sc(kr->pd->authtok, &pin, NULL, + &token_name, NULL, + &module_name, NULL, + NULL, NULL); + if (kerr != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "sss_authtok_get_sc failed.\n"); + goto done; + } + + for (c = 0; chl->identities[c] != NULL; c++) { + if (chl->identities[c]->identity != NULL + && pkinit_identity_matches(chl->identities[c]->identity, + token_name, module_name)) { + break; + } + } + + if (chl->identities[c] == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, + "No matching identity for [%s][%s] found in pkinit challenge.\n", + token_name, module_name); + kerr = EINVAL; + goto done; + } + + kerr = krb5_responder_pkinit_set_answer(ctx, rctx, + chl->identities[c]->identity, + pin); + if (kerr != 0) { + DEBUG(SSSDBG_OP_FAILURE, + "krb5_responder_set_answer failed.\n"); + } + + goto done; + } + + kerr = EOK; + +done: + krb5_responder_pkinit_challenge_free(ctx, rctx, chl); + + return kerr; +} + static krb5_error_code sss_krb5_responder(krb5_context ctx, void *data, krb5_responder_context rctx) @@ -634,6 +767,9 @@ return kerr; } + } else if (strcmp(question_list[c], + KRB5_RESPONDER_QUESTION_PKINIT) == 0) { + return answer_pkinit(ctx, kr, rctx); } } } @@ -661,18 +797,23 @@ size_t c; struct krb5_req *kr = talloc_get_type(data, struct krb5_req); + if (kr == NULL) { + return EINVAL; + } + DEBUG(SSSDBG_TRACE_ALL, "sss_krb5_prompter name [%s] banner [%s] num_prompts [%d] EINVAL.\n", name, banner, num_prompts); if (num_prompts != 0) { - DEBUG(SSSDBG_CRIT_FAILURE, "Cannot handle password prompts.\n"); if (DEBUG_IS_SET(SSSDBG_TRACE_ALL)) { for (c = 0; c < num_prompts; c++) { DEBUG(SSSDBG_TRACE_ALL, "Prompt [%zu][%s].\n", c, prompts[c].prompt); } } + + DEBUG(SSSDBG_CRIT_FAILURE, "Cannot handle password prompts.\n"); return KRB5_LIBOS_CANTREADPWD; } @@ -1036,6 +1177,63 @@ return EOK; } +static errno_t get_pkinit_identity(TALLOC_CTX *mem_ctx, + struct sss_auth_token *authtok, + char **_identity) +{ + int ret; + char *identity; + const char *token_name; + const char *module_name; + const char *key_id; + + ret = sss_authtok_get_sc(authtok, NULL, NULL, + &token_name, NULL, + &module_name, NULL, + &key_id, NULL); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "sss_authtok_get_sc failed.\n"); + return ret; + } + + DEBUG(SSSDBG_TRACE_ALL, "Got [%s][%s].\n", token_name, module_name); + + if (module_name == NULL || *module_name == '\0') { + module_name = "p11-kit-proxy.so"; + } + + identity = talloc_asprintf(mem_ctx, "PKCS11:module_name=%s", module_name); + if (identity == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strdup failed.\n"); + return ENOMEM; + } + + if (token_name != NULL && *token_name != '\0') { + identity = talloc_asprintf_append(identity, ":token=%s", + token_name); + if (identity == NULL) { + DEBUG(SSSDBG_OP_FAILURE, + "talloc_asprintf_append failed.\n"); + return ENOMEM; + } + } + + if (key_id != NULL && *key_id != '\0') { + identity = talloc_asprintf_append(identity, ":certid=%s", key_id); + if (identity == NULL) { + DEBUG(SSSDBG_OP_FAILURE, + "talloc_asprintf_append failed.\n"); + return ENOMEM; + } + } + + *_identity = identity; + + DEBUG(SSSDBG_TRACE_ALL, "Using pkinit identity [%s].\n", identity); + + return EOK; +} + static errno_t add_ticket_times_and_upn_to_response(struct krb5_req *kr) { int ret; @@ -1268,6 +1466,8 @@ int realm_length; krb5_error_code kerr; char *cc_name; + int ret; + char *identity = NULL; kerr = sss_krb5_get_init_creds_opt_set_expire_callback(kr->ctx, kr->options, sss_krb5_expire_callback_func, @@ -1284,6 +1484,30 @@ return KRB5KRB_ERR_GENERIC; } + if (sss_authtok_get_type(kr->pd->authtok) == SSS_AUTHTOK_TYPE_SC_PIN + || sss_authtok_get_type(kr->pd->authtok) + == SSS_AUTHTOK_TYPE_SC_KEYPAD) { + DEBUG(SSSDBG_TRACE_ALL, + "Found Smartcard credentials, trying pkinit.\n"); + + ret = get_pkinit_identity(kr, kr->pd->authtok, &identity); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "get_pkinit_identity failed.\n"); + return ret; + } + + kerr = krb5_get_init_creds_opt_set_pa(kr->ctx, kr->options, + "X509_user_identity", identity); + talloc_free(identity); + if (kerr != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, + "krb5_get_init_creds_opt_set_pa failed.\n"); + return kerr; + } + + /* TODO: Maybe X509_anchors should be added here as well */ + } + DEBUG(SSSDBG_TRACE_FUNC, "Attempting kinit for realm [%s]\n",realm_name); kerr = krb5_get_init_creds_password(kr->ctx, kr->creds, kr->princ, @@ -1294,12 +1518,25 @@ /* Any errors are ignored during pre-auth, only data is collected to * be send back to the client.*/ DEBUG(SSSDBG_TRACE_FUNC, - "krb5_get_init_creds_password returned [%d} during pre-auth.\n", + "krb5_get_init_creds_password returned [%d] during pre-auth.\n", kerr); return 0; } else { if (kerr != 0) { KRB5_CHILD_DEBUG(SSSDBG_CRIT_FAILURE, kerr); + + /* If during authentication either the MIT Kerberos pkinit + * pre-auth module is missing or no Smartcard is inserted and only + * pkinit is available KRB5_PREAUTH_FAILED is returned. + * ERR_NO_AUTH_METHOD_AVAILABLE is used to indicate to the + * frontend that local authentication might be tried. */ + if (kr->pd->cmd == SSS_PAM_AUTHENTICATE + && kerr == KRB5_PREAUTH_FAILED + && kr->password_prompting == false + && kr->otp == false + && kr->pkinit_prompting == false) { + return ERR_NO_AUTH_METHOD_AVAILABLE; + } return kerr; } } @@ -1367,6 +1604,12 @@ static errno_t map_krb5_error(krb5_error_code kerr) { + /* just pass SSSD's internal error codes */ + if (kerr > 0 && IS_SSSD_ERROR(kerr)) { + DEBUG(SSSDBG_CRIT_FAILURE, "[%d][%s].\n", kerr, sss_strerror(kerr)); + return kerr; + } + if (kerr != 0) { KRB5_CHILD_DEBUG(SSSDBG_CRIT_FAILURE, kerr); } @@ -1615,9 +1858,12 @@ DEBUG(SSSDBG_TRACE_LIBS, "Attempting to get a TGT\n"); - /* No password is needed for pre-auth, or if we have 2FA */ + /* No password is needed for pre-auth or if we have 2FA or SC */ if (kr->pd->cmd != SSS_PAM_PREAUTH - && sss_authtok_get_type(kr->pd->authtok) != SSS_AUTHTOK_TYPE_2FA) { + && sss_authtok_get_type(kr->pd->authtok) != SSS_AUTHTOK_TYPE_2FA + && sss_authtok_get_type(kr->pd->authtok) != SSS_AUTHTOK_TYPE_SC_PIN + && sss_authtok_get_type(kr->pd->authtok) + != SSS_AUTHTOK_TYPE_SC_KEYPAD) { ret = sss_authtok_get_password(kr->pd->authtok, &password, NULL); switch (ret) { case EOK: @@ -1641,7 +1887,12 @@ if (kr->pd->cmd == SSS_PAM_PREAUTH) { /* add OTP tokeninfo messge if available */ if (kr->otp) { - kerr = k5c_attach_otp_info_msg(kr); + ret = k5c_attach_otp_info_msg(kr); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "k5c_attach_otp_info_msg failed.\n"); + goto done; + } } if (kr->password_prompting) { @@ -1651,6 +1902,15 @@ goto done; } } + + if (kr->pkinit_prompting) { + ret = pam_add_response(kr->pd, SSS_CERT_AUTH_PROMPTING, 0, + NULL); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "pam_add_response failed.\n"); + goto done; + } + } } else { if (kerr == 0) { kerr = k5c_attach_ccname_msg(kr); @@ -1856,7 +2116,9 @@ ret = sss_authtok_set_ccfile(tok, (char *)(buf + *p), 0); break; case SSS_AUTHTOK_TYPE_2FA: - ret = sss_authtok_set(tok, SSS_AUTHTOK_TYPE_2FA, (buf + *p), + case SSS_AUTHTOK_TYPE_SC_PIN: + case SSS_AUTHTOK_TYPE_SC_KEYPAD: + ret = sss_authtok_set(tok, auth_token_type, (buf + *p), auth_token_length); break; default: @@ -1916,6 +2178,7 @@ *offline ? "true" : "false", kr->upn ? kr->upn : "none"); if (pd->cmd == SSS_PAM_AUTHENTICATE || + pd->cmd == SSS_PAM_PREAUTH || pd->cmd == SSS_CMD_RENEW || pd->cmd == SSS_PAM_CHAUTHTOK_PRELIM || pd->cmd == SSS_PAM_CHAUTHTOK) { SAFEALIGN_COPY_UINT32_CHECK(&len, buf + p, size, &p); @@ -2799,11 +3062,16 @@ goto done; } - kerr = become_user(kr->uid, kr->gid); - if (kerr != 0) { - DEBUG(SSSDBG_CRIT_FAILURE, "become_user failed.\n"); - ret = EFAULT; - goto done; + /* pkinit need access to pcscd */ + if ((sss_authtok_get_type(kr->pd->authtok) != SSS_AUTHTOK_TYPE_SC_PIN + && sss_authtok_get_type(kr->pd->authtok) + != SSS_AUTHTOK_TYPE_SC_KEYPAD)) { + kerr = become_user(kr->uid, kr->gid); + if (kerr != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, "become_user failed.\n"); + ret = EFAULT; + goto done; + } } DEBUG(SSSDBG_TRACE_INTERNAL, diff -Nru sssd-1.15.0/src/providers/krb5/krb5_child_handler.c sssd-1.15.2/src/providers/krb5/krb5_child_handler.c --- sssd-1.15.0/src/providers/krb5/krb5_child_handler.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/krb5/krb5_child_handler.c 2017-03-15 16:53:24.000000000 +0000 @@ -78,6 +78,8 @@ auth_token_length = len + 1; break; case SSS_AUTHTOK_TYPE_2FA: + case SSS_AUTHTOK_TYPE_SC_PIN: + case SSS_AUTHTOK_TYPE_SC_KEYPAD: data = (char *) sss_authtok_get_data(tok); auth_token_length = sss_authtok_get_size(tok); break; @@ -88,7 +90,9 @@ if (ret == EOK) { SAFEALIGN_COPY_UINT32(&buf->data[*rp], &auth_token_type, rp); SAFEALIGN_COPY_UINT32(&buf->data[*rp], &auth_token_length, rp); - safealign_memcpy(&buf->data[*rp], data, auth_token_length, rp); + if (data != NULL) { + safealign_memcpy(&buf->data[*rp], data, auth_token_length, rp); + } } return ret; @@ -143,6 +147,7 @@ buf->size = 8*sizeof(uint32_t) + strlen(kr->upn); if (kr->pd->cmd == SSS_PAM_AUTHENTICATE || + kr->pd->cmd == SSS_PAM_PREAUTH || kr->pd->cmd == SSS_CMD_RENEW || kr->pd->cmd == SSS_PAM_CHAUTHTOK_PRELIM || kr->pd->cmd == SSS_PAM_CHAUTHTOK) { @@ -185,6 +190,7 @@ safealign_memcpy(&buf->data[rp], kr->upn, strlen(kr->upn), &rp); if (kr->pd->cmd == SSS_PAM_AUTHENTICATE || + kr->pd->cmd == SSS_PAM_PREAUTH || kr->pd->cmd == SSS_CMD_RENEW || kr->pd->cmd == SSS_PAM_CHAUTHTOK_PRELIM || kr->pd->cmd == SSS_PAM_CHAUTHTOK) { diff -Nru sssd-1.15.0/src/providers/ldap/ldap_auth.c sssd-1.15.2/src/providers/ldap/ldap_auth.c --- sssd-1.15.0/src/providers/ldap/ldap_auth.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ldap/ldap_auth.c 2017-03-15 16:53:24.000000000 +0000 @@ -645,7 +645,13 @@ /* The token must be a password token */ if (sss_authtok_get_type(authtok) != SSS_AUTHTOK_TYPE_PASSWORD) { - tevent_req_error(req, ERR_AUTH_FAILED); + if (sss_authtok_get_type(authtok) == SSS_AUTHTOK_TYPE_SC_PIN + || sss_authtok_get_type(authtok) == SSS_AUTHTOK_TYPE_SC_KEYPAD) { + /* Tell frontend that we do not support Smartcard authentication */ + tevent_req_error(req, ERR_SC_AUTH_NOT_SUPPORTED); + } else { + tevent_req_error(req, ERR_AUTH_FAILED); + } return tevent_req_post(req, ev); } @@ -1028,6 +1034,9 @@ state->pd->account_locked = true; state->pd->pam_status = PAM_PERM_DENIED; break; + case ERR_SC_AUTH_NOT_SUPPORTED: + state->pd->pam_status = PAM_BAD_ITEM; + break; default: state->pd->pam_status = PAM_SYSTEM_ERR; break; diff -Nru sssd-1.15.0/src/providers/ldap/ldap_child.c sssd-1.15.2/src/providers/ldap/ldap_child.c --- sssd-1.15.0/src/providers/ldap/ldap_child.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ldap/ldap_child.c 2017-03-15 16:53:24.000000000 +0000 @@ -276,7 +276,8 @@ const char *keytab_name, const krb5_deltat lifetime, const char **ccname_out, - time_t *expire_time_out) + time_t *expire_time_out, + char **_krb5_msg) { char *ccname; char *ccname_dummy; @@ -522,7 +523,14 @@ *expire_time_out = my_creds.times.endtime - kdc_time_offset; done: - if (krberr != 0) KRB5_SYSLOG(krberr); + if (krberr != 0) { + const char *krb5_msg; + + KRB5_SYSLOG(krberr); + krb5_msg = sss_krb5_get_error_message(context, krberr); + *_krb5_msg = talloc_strdup(memctx, krb5_msg); + sss_krb5_free_error_message(context, krb5_msg); + } if (keytab) krb5_kt_close(context, keytab); if (context) krb5_free_context(context); talloc_free(tmp_ctx); @@ -533,11 +541,11 @@ const char *ccname, time_t expire_time, krb5_error_code kerr, + char *krb5_msg, struct response **rsp) { int ret; struct response *r = NULL; - const char *krb5_msg = NULL; r = talloc_zero(mem_ctx, struct response); if (!r) return ENOMEM; @@ -550,15 +558,13 @@ if (kerr == 0) { ret = pack_buffer(r, EOK, kerr, ccname, expire_time); } else { - krb5_msg = sss_krb5_get_error_message(krb5_error_ctx, kerr); if (krb5_msg == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, - "sss_krb5_get_error_message failed.\n"); + "Empty krb5 error message for non-zero kerr: %"PRIi32"\n", + kerr); return ENOMEM; } - ret = pack_buffer(r, EFAULT, kerr, krb5_msg, 0); - sss_krb5_free_error_message(krb5_error_ctx, krb5_msg); } if (ret != EOK) { @@ -605,6 +611,7 @@ uint8_t *buf = NULL; ssize_t len = 0; const char *ccname = NULL; + char *krb5_msg = NULL; time_t expire_time = 0; struct input_buffer *ibuf = NULL; struct response *resp = NULL; @@ -721,13 +728,14 @@ kerr = ldap_child_get_tgt_sync(main_ctx, ibuf->context, ibuf->realm_str, ibuf->princ_str, ibuf->keytab_name, ibuf->lifetime, - &ccname, &expire_time); + &ccname, &expire_time, &krb5_msg); if (kerr != EOK) { DEBUG(SSSDBG_CRIT_FAILURE, "ldap_child_get_tgt_sync failed.\n"); /* Do not return, must report failure */ } - ret = prepare_response(main_ctx, ccname, expire_time, kerr, &resp); + ret = prepare_response(main_ctx, ccname, expire_time, kerr, krb5_msg, + &resp); if (ret != EOK) { DEBUG(SSSDBG_CRIT_FAILURE, "prepare_response failed. [%d][%s].\n", ret, strerror(ret)); diff -Nru sssd-1.15.0/src/providers/ldap/ldap_id.c sssd-1.15.2/src/providers/ldap/ldap_id.c --- sssd-1.15.0/src/providers/ldap/ldap_id.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ldap/ldap_id.c 2017-03-15 16:53:24.000000000 +0000 @@ -526,7 +526,7 @@ return; case BE_FILTER_NAME: if (state->name_is_upn == true) { - ret = sysdb_search_user_by_upn(state, state->domain, + ret = sysdb_search_user_by_upn(state, state->domain, false, state->filter_value, NULL, &msg); if (ret != EOK) { diff -Nru sssd-1.15.0/src/providers/ldap/sdap_async_initgroups.c sssd-1.15.2/src/providers/ldap/sdap_async_initgroups.c --- sssd-1.15.0/src/providers/ldap/sdap_async_initgroups.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ldap/sdap_async_initgroups.c 2017-03-15 16:53:24.000000000 +0000 @@ -23,6 +23,7 @@ #include "util/util.h" #include "db/sysdb.h" +#include "providers/ldap/sdap.h" #include "providers/ldap/sdap_async_private.h" #include "providers/ldap/ldap_common.h" #include "providers/ldap/sdap_idmap.h" @@ -2890,6 +2891,25 @@ return EOK; } +static int sdap_search_initgr_user_in_batch(struct sdap_get_initgr_state *state, + struct sysdb_attrs **users, + size_t count) +{ + int ret = EINVAL; + + for (size_t i = 0; i < count; i++) { + if (sdap_object_in_domain(state->opts, users[i], state->dom) == false) { + continue; + } + + state->orig_user = talloc_steal(state, users[i]); + ret = EOK; + break; + } + + return ret; +} + static void sdap_get_initgr_user(struct tevent_req *subreq) { struct tevent_req *req = tevent_req_callback_data(subreq, @@ -2951,13 +2971,11 @@ * the first search base because all bases in a single domain would * have the same DC= components */ - ret = sysdb_try_to_find_expected_dn(state->dom, "dc", - state->sdom->search_bases[0]->basedn, - usr_attrs, count, - &state->orig_user); + ret = sdap_search_initgr_user_in_batch(state, usr_attrs, count); if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, - "try_to_find_expected_dn failed. No matching DN found.\n"); + "sdap_search_initgr_user_in_batch failed. " + "No matching DN found.\n"); tevent_req_error(req, EINVAL); return; } diff -Nru sssd-1.15.0/src/providers/ldap/sdap.c sssd-1.15.2/src/providers/ldap/sdap.c --- sssd-1.15.0/src/providers/ldap/sdap.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ldap/sdap.c 2017-03-15 16:53:24.000000000 +0000 @@ -137,7 +137,7 @@ for (i = 0; i < num_entries; i++) { if (strcmp(map[i].sys_name, sysdb_attr) == 0) { - if (strcmp(map[i].name, ldap_attr) == 0) { + if (map[i].name != NULL && strcmp(map[i].name, ldap_attr) == 0) { return ALREADY_IN_MAP; } else { return CONFLICT_WITH_MAP; @@ -162,9 +162,9 @@ char *sysdb_attr; errno_t ret; + *_map = src_map; if (extra_attrs == NULL) { DEBUG(SSSDBG_FUNC_DATA, "No extra attributes\n"); - *_map = src_map; *_new_size = num_entries; return EOK; } @@ -177,6 +177,7 @@ if (map == NULL) { return ENOMEM; } + *_map = map; for (i = 0; *extra_attrs != NULL; extra_attrs++) { ret = split_extra_attr(map, *extra_attrs, &sysdb_attr, &ldap_attr); @@ -221,7 +222,6 @@ /* Sentinel */ memset(&map[num_entries+nextra], 0, sizeof(struct sdap_attr_map)); - *_map = map; *_new_size = num_entries + nextra; return EOK; } @@ -1673,9 +1673,9 @@ } } -static bool sdap_object_in_domain(struct sdap_options *opts, - struct sysdb_attrs *obj, - struct sss_domain_info *dom) +bool sdap_object_in_domain(struct sdap_options *opts, + struct sysdb_attrs *obj, + struct sss_domain_info *dom) { errno_t ret; const char *original_dn = NULL; @@ -1691,7 +1691,8 @@ sdmatch = sdap_domain_get_by_dn(opts, original_dn); if (sdmatch == NULL) { DEBUG(SSSDBG_FUNC_DATA, - "The group has no original DN, assuming our domain\n"); + "The original DN of the group cannot " + "be related to any search base\n"); return true; } diff -Nru sssd-1.15.0/src/providers/ldap/sdap_dyndns.c sssd-1.15.2/src/providers/ldap/sdap_dyndns.c --- sssd-1.15.0/src/providers/ldap/sdap_dyndns.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ldap/sdap_dyndns.c 2017-03-15 16:53:24.000000000 +0000 @@ -381,9 +381,6 @@ return; } } - - tevent_req_error(req, ret); - return; } if (state->update_ptr == false) { diff -Nru sssd-1.15.0/src/providers/ldap/sdap.h sssd-1.15.2/src/providers/ldap/sdap.h --- sssd-1.15.0/src/providers/ldap/sdap.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ldap/sdap.h 2017-03-15 16:53:24.000000000 +0000 @@ -512,6 +512,27 @@ int num_entries, struct sdap_attr_map **_map); +/** + * @brief Add attributes to a map + * + * sdap_extend_map() will call talloc_realloc() on the second argument so the + * original storage location might change. The return value _map will always + * contain the current memory location which can be used with talloc_free() + * even if there is an error. + * + * @param[in] memctx Talloc memory context + * @param[in] src_map Original map, should not be accessed anymore + * @param[in] num_entries Number of entries in the original map + * @param[in] extra_attrs NULL-terminated array of extra attribute pairs + * sysdb_attr:ldap_attr + * @param[out] _map New map + * @param[out] _new_size Number of entries in the new map + * + * @return + * - EOK success + * - ENOMEM memory allocation failed + * - ERR_DUP_EXTRA_ATTR sysdb attribute is already used + */ int sdap_extend_map(TALLOC_CTX *memctx, struct sdap_attr_map *src_map, size_t num_entries, @@ -616,4 +637,8 @@ size_t count, bool filter); +bool sdap_object_in_domain(struct sdap_options *opts, + struct sysdb_attrs *obj, + struct sss_domain_info *dom); + #endif /* _SDAP_H_ */ diff -Nru sssd-1.15.0/src/providers/ldap/sdap_idmap.c sssd-1.15.2/src/providers/ldap/sdap_idmap.c --- sssd-1.15.0/src/providers/ldap/sdap_idmap.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/ldap/sdap_idmap.c 2017-03-15 16:53:24.000000000 +0000 @@ -516,6 +516,7 @@ "sssd-ad(5) for an explanation of how to resolve this issue.\n", sid_str); /* Fall through intentionally */ + SSS_ATTRIBUTE_FALLTHROUGH; default: DEBUG(SSSDBG_MINOR_FAILURE, "Could not convert objectSID [%s] to a UNIX ID\n", diff -Nru sssd-1.15.0/src/providers/proxy/proxy_auth.c sssd-1.15.2/src/providers/proxy/proxy_auth.c --- sssd-1.15.0/src/providers/proxy/proxy_auth.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/proxy/proxy_auth.c 2017-03-15 16:53:24.000000000 +0000 @@ -737,6 +737,14 @@ state->auth_ctx = proxy_auth_ctx; state->be_ctx = params->be_ctx; + /* Tell frontend that we do not support Smartcard authentication */ + if (sss_authtok_get_type(pd->authtok) == SSS_AUTHTOK_TYPE_SC_PIN + || sss_authtok_get_type(pd->authtok) == SSS_AUTHTOK_TYPE_SC_KEYPAD) { + pd->pam_status = PAM_BAD_ITEM; + goto immediately; + } + + switch (pd->cmd) { case SSS_PAM_AUTHENTICATE: case SSS_PAM_CHAUTHTOK: diff -Nru sssd-1.15.0/src/providers/proxy/proxy_id.c sssd-1.15.2/src/providers/proxy/proxy_id.c --- sssd-1.15.0/src/providers/proxy/proxy_id.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/providers/proxy/proxy_id.c 2017-03-15 16:53:24.000000000 +0000 @@ -22,6 +22,7 @@ along with this program. If not, see . */ +#include #include "config.h" #include "util/sss_format.h" @@ -574,6 +575,143 @@ } while(0) +static errno_t remove_duplicit_group_members(TALLOC_CTX *mem_ctx, + struct group *orig_grp, + struct group **_grp) +{ + TALLOC_CTX *tmp_ctx; + hash_table_t *member_tbl = NULL; + struct hash_iter_context_t *iter; + hash_entry_t *entry; + hash_key_t key; + hash_value_t value; + struct group *grp; + size_t orig_member_count= 0; + size_t member_count= 0; + size_t i; + errno_t ret; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc failed.\n"); + return ENOMEM; + } + + if (orig_grp->gr_mem == NULL) { + ret = ENOENT; + goto done; + } + + for (i=0; orig_grp->gr_mem[i] != NULL; i++) { + orig_member_count++; + } + + if (orig_member_count == 0) { + ret = ENOENT; + goto done; + } + + ret = sss_hash_create(tmp_ctx, orig_member_count, &member_tbl); + if (ret != HASH_SUCCESS) { + DEBUG(SSSDBG_CRIT_FAILURE, "Failed to create hash table.\n"); + ret = ENOMEM; + goto done; + } + + for (i=0; orig_grp->gr_mem[i] != NULL; i++) { + key.type = HASH_KEY_STRING; + key.str = talloc_strdup(member_tbl, orig_grp->gr_mem[i]); + if (key.str == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strdup failed.\n"); + ret = ENOMEM; + goto done; + } + + value.type = HASH_VALUE_PTR; + value.ptr = talloc_strdup(member_tbl, orig_grp->gr_mem[i]); + if (key.str == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strdup failed.\n"); + ret = ENOMEM; + goto done; + } + + ret = hash_enter(member_tbl, &key, &value); + if (ret != HASH_SUCCESS) { + talloc_free(key.str); + ret = ENOMEM; + goto done; + } + } + + member_count = hash_count(member_tbl); + if (member_count == 0) { + ret = ENOENT; + goto done; + } + + grp = talloc(mem_ctx, struct group); + if (grp == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc failed.\n"); + ret = ENOMEM; + goto done; + } + + grp->gr_mem = talloc_zero_array(grp, char *, member_count + 1); + if (grp->gr_mem == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_zero_array failed.\n"); + ret = ENOMEM; + goto done; + } + + iter = new_hash_iter_context(member_tbl); + if (iter == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "new_hash_iter_context failed.\n"); + ret = EINVAL; + goto done; + } + + i = 0; + while ((entry = iter->next(iter)) != NULL) { + grp->gr_mem[i] = talloc_strdup(grp, entry->key.str); + if (grp->gr_mem[i] == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strdup failed.\n"); + ret = ENOMEM; + goto done; + } + i++; + } + grp->gr_mem[i] = NULL; + + grp->gr_gid = orig_grp->gr_gid; + + grp->gr_name = talloc_strdup(grp, orig_grp->gr_name); + if (grp->gr_name == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strdup failed.\n"); + ret = ENOMEM; + goto done; + } + + grp->gr_passwd = talloc_strdup(grp, orig_grp->gr_passwd); + if (grp->gr_passwd == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strdup failed.\n"); + ret = ENOMEM; + goto done; + } + + *_grp = talloc_steal(mem_ctx, grp); + ret = EOK; + +done: + talloc_zfree(tmp_ctx); + + if (ret == ENOENT) { + *_grp = talloc_steal(mem_ctx, orig_grp); + ret = EOK; + } + + return ret; +} + static errno_t proxy_process_missing_users(struct sysdb_ctx *sysdb, struct sss_domain_info *domain, struct sysdb_attrs *group_attrs, @@ -585,6 +723,7 @@ const char *alias) /* already qualified */ { errno_t ret, sret; + struct group *ngroup = NULL; struct sysdb_attrs *attrs = NULL; TALLOC_CTX *tmp_ctx; time_t now = time(NULL); @@ -596,7 +735,13 @@ return ENOMEM; } - DEBUG_GR_MEM(SSSDBG_TRACE_LIBS, grp); + ret = remove_duplicit_group_members(tmp_ctx, grp, &ngroup); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Failed to remove duplicit group members\n"); + goto done; + } + + DEBUG_GR_MEM(SSSDBG_TRACE_LIBS, ngroup); ret = sysdb_transaction_start(sysdb); if (ret != EOK) { @@ -605,7 +750,7 @@ } in_transaction = true; - if (grp->gr_mem && grp->gr_mem[0]) { + if (ngroup->gr_mem && ngroup->gr_mem[0]) { attrs = sysdb_new_attrs(tmp_ctx); if (!attrs) { DEBUG(SSSDBG_CRIT_FAILURE, "Allocation error ?!\n"); @@ -615,7 +760,7 @@ fq_gr_mem = sss_create_internal_fqname_list( tmp_ctx, - (const char *const*) grp->gr_mem, + (const char *const*) ngroup->gr_mem, dom->name); if (fq_gr_mem == NULL) { ret = ENOMEM; @@ -647,7 +792,7 @@ ret = sysdb_store_group(dom, real_name, - grp->gr_gid, + ngroup->gr_gid, attrs, dom->group_timeout, now); @@ -1403,6 +1548,7 @@ "Assume the user is only member of its " "primary group (%"SPRIgid")\n", pwd->pw_gid); /* fall through */ + SSS_ATTRIBUTE_FALLTHROUGH; case NSS_STATUS_SUCCESS: DEBUG(SSSDBG_CONF_SETTINGS, "User [%s] appears to be member of %lu " "groups\n", pwd->pw_name, num_gids); diff -Nru sssd-1.15.0/src/python/pyhbac.c sssd-1.15.2/src/python/pyhbac.c --- sssd-1.15.0/src/python/pyhbac.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/python/pyhbac.c 2017-03-15 16:53:24.000000000 +0000 @@ -1621,6 +1621,7 @@ goto fail; } /* FALLTHROUGH */ + SSS_ATTRIBUTE_FALLTHROUGH; case HBAC_EVAL_DENY: ret = PYNUMBER_FROMLONG(eres); break; diff -Nru sssd-1.15.0/src/responder/common/cache_req/cache_req.c sssd-1.15.2/src/responder/common/cache_req/cache_req.c --- sssd-1.15.0/src/responder/common/cache_req/cache_req.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/cache_req.c 2017-03-15 16:53:24.000000000 +0000 @@ -56,6 +56,8 @@ &cache_req_svc_by_port, &cache_req_netgroup_by_name, + + &cache_req_host_by_name, }; if (type >= CACHE_REQ_SENTINEL) { @@ -78,7 +80,6 @@ } cr->reqname = plugin->name; - cr->dp_type = plugin->dp_type; cr->plugin = plugin; CACHE_REQ_DEBUG(SSSDBG_TRACE_INTERNAL, cr, "Setting \"%s\" plugin\n", @@ -117,6 +118,9 @@ return NULL; } + cr->cache_first = rctx->cache_first; + cr->bypass_cache = cr->plugin->bypass_cache || cr->data->bypass_cache; + return cr; } @@ -306,7 +310,7 @@ return true; } -struct cache_req_state { +struct cache_req_search_domains_state { /* input data */ struct tevent_context *ev; struct cache_req *cr; @@ -318,10 +322,298 @@ size_t num_results; bool check_next; bool dp_success; + bool bypass_cache; + bool bypass_dp; }; -static errno_t cache_req_add_result(struct cache_req_state *state, - struct cache_req_result *new); +static errno_t cache_req_search_domains_next(struct tevent_req *req); + +static void cache_req_search_domains_done(struct tevent_req *subreq); + +struct tevent_req *cache_req_search_domains_send(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + struct cache_req *cr, + struct sss_domain_info *domain, + bool check_next, + bool bypass_cache, + bool bypass_dp) +{ + struct tevent_req *req; + struct cache_req_search_domains_state *state = NULL; + errno_t ret; + + req = tevent_req_create(mem_ctx, &state, + struct cache_req_search_domains_state); + if (req == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "tevent_req_create() failed\n"); + return NULL; + } + + state->ev = ev; + state->cr = cr; + + state->domain = domain; + state->check_next = check_next; + state->dp_success = true; + state->bypass_cache = bypass_cache; + state->bypass_dp = bypass_dp; + + ret = cache_req_search_domains_next(req); + if (ret == EAGAIN) { + return req; + } + + if (ret == EOK) { + tevent_req_done(req); + } else { + tevent_req_error(req, ret); + } + + tevent_req_post(req, ev); + return req; +} + +static errno_t cache_req_search_domains_next(struct tevent_req *req) +{ + struct cache_req_search_domains_state *state; + struct tevent_req *subreq; + struct cache_req *cr; + uint32_t next_domain_flag; + bool is_domain_valid; + bool allow_no_fqn; + errno_t ret; + + state = tevent_req_data(req, struct cache_req_search_domains_state); + cr = state->cr; + + next_domain_flag = cr->plugin->get_next_domain_flags; + allow_no_fqn = cr->plugin->allow_missing_fqn; + + while (state->domain != NULL) { + /* Check if this domain is valid for this request. */ + is_domain_valid = cache_req_validate_domain(cr, state->domain); + if (!is_domain_valid) { + state->domain = get_next_domain(state->domain, next_domain_flag); + continue; + } + + /* If not specified otherwise, we skip domains that require fully + * qualified names on domain less search. We do not descend into + * subdomains here since those are implicitly qualified. + */ + if (state->check_next && !allow_no_fqn && state->domain->fqnames) { + state->domain = get_next_domain(state->domain, 0); + continue; + } + + state->selected_domain = state->domain; + + if (state->domain == NULL) { + break; + } + + ret = cache_req_set_domain(cr, state->domain); + if (ret != EOK) { + return ret; + } + + subreq = cache_req_search_send(state, state->ev, cr, + state->bypass_cache, state->bypass_dp); + if (subreq == NULL) { + return ENOMEM; + } + + tevent_req_set_callback(subreq, cache_req_search_domains_done, req); + + /* we will continue with the following domain the next time */ + if (state->check_next) { + state->domain = get_next_domain(state->domain, + cr->plugin->get_next_domain_flags); + } + + return EAGAIN; + } + + /* If we've got some result from previous searches we want to return + * EOK here so the whole cache request is successfully finished. */ + if (state->num_results > 0) { + return EOK; + } + + /* We have searched all available domains and no result was found. + * + * If the plug-in uses a negative cache which is shared among all domains + * (e.g. unique identifiers such as user or group id or sid), we add it + * here and return object not found error. + * + * However, we can only set the negative cache if all data provider + * requests succeeded because only then we can be sure that it does + * not exist- + */ + if (state->dp_success) { + cache_req_global_ncache_add(cr); + } + + return ENOENT; +} + +static void cache_req_search_domains_done(struct tevent_req *subreq) +{ + struct cache_req_search_domains_state *state; + struct ldb_result *result; + struct tevent_req *req; + bool dp_success; + errno_t ret; + + req = tevent_req_callback_data(subreq, struct tevent_req); + state = tevent_req_data(req, struct cache_req_search_domains_state); + + ret = cache_req_search_recv(state, subreq, &result, &dp_success); + talloc_zfree(subreq); + + /* Remember if any DP request fails. */ + state->dp_success = !dp_success ? false : state->dp_success; + + switch (ret) { + case EOK: + /* We got some data from this search. Save it. */ + ret = cache_req_create_and_add_result(state, + state->cr, + state->selected_domain, + result, + state->cr->data->name.lookup, + &state->results, + &state->num_results); + if (ret != EOK) { + /* We were unable to save data. */ + goto done; + } + + if (!state->check_next || !state->cr->plugin->search_all_domains) { + /* We are not interested in more results. */ + ret = EOK; + goto done; + } + + break; + case ENOENT: + if (state->check_next == false) { + /* Not found. */ + ret = ENOENT; + goto done; + } + + /* Continue with next domain. */ + break; + default: + /* Some serious error has happened. Finish. */ + goto done; + } + + /* This is a domain less search, continue with the next domain. */ + ret = cache_req_search_domains_next(req); + +done: + if (ret == ENOENT && state->results != NULL) { + /* We have at least one result. */ + ret = EOK; + } + + switch (ret) { + case EOK: + tevent_req_done(req); + break; + case EAGAIN: + break; + default: + tevent_req_error(req, ret); + break; + } + + return; +} + +static errno_t +cache_req_search_domains_recv(TALLOC_CTX *mem_ctx, + struct tevent_req *req, + struct cache_req_result ***_results) +{ + struct cache_req_search_domains_state *state; + + state = tevent_req_data(req, struct cache_req_search_domains_state); + + TEVENT_REQ_RETURN_ON_ERROR(req); + + if (_results != NULL) { + *_results = talloc_steal(mem_ctx, state->results); + } + + return EOK; +} + +/** + * Return true if we should issue another search. + */ +static bool cache_req_search_schema(struct cache_req *cr, + const char *input_domain, + bool first_iteration, + bool *_bypass_cache, + bool *_bypass_dp) +{ + bool bypass_cache; + bool bypass_dp; + + if (cr->bypass_cache) { + /* The caller wants to contact Data Provider first + * or it is inferred by cache_req plug-in. */ + bypass_cache = true; + bypass_dp = false; + + if (!first_iteration) { + return false; + } + } else if (input_domain != NULL) { + /* We will search only one domain. */ + bypass_cache = false; + bypass_dp = false; + + if (!first_iteration) { + return false; + } + } else if (!cr->cache_first) { + /* We will search cache and on cache-miss + * contact domain provider sequentially. */ + bypass_cache = false; + bypass_dp = false; + + if (!first_iteration) { + return false; + } + } else { + /* We will first search the cache in all domains. If we don't get + * any match we will then contact Data Provider starting with the + * first domain again. */ + bypass_cache = first_iteration ? false : true; + bypass_dp = first_iteration ? true : false; + } + + *_bypass_cache = bypass_cache; + *_bypass_dp = bypass_dp; + + return true; +} + +struct cache_req_state { + /* input data */ + struct tevent_context *ev; + struct cache_req *cr; + const char *domain_name; + + /* work data */ + struct cache_req_result **results; + size_t num_results; + bool first_iteration; +}; static errno_t cache_req_process_input(TALLOC_CTX *mem_ctx, struct tevent_req *req, @@ -331,9 +623,13 @@ static void cache_req_input_parsed(struct tevent_req *subreq); static errno_t cache_req_select_domains(struct tevent_req *req, - const char *domain); + const char *domain_name); -static errno_t cache_req_next_domain(struct tevent_req *req); +static errno_t cache_req_search_domains(struct tevent_req *req, + struct sss_domain_info *domain, + bool check_next, + bool bypass_cache, + bool bypass_dp); static void cache_req_done(struct tevent_req *subreq); @@ -358,18 +654,19 @@ } state->ev = ev; - state->dp_success = true; state->cr = cr = cache_req_create(state, rctx, data, ncache, midpoint); if (state->cr == NULL) { ret = ENOMEM; goto done; } + state->first_iteration = true; CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, cr, "New request '%s'\n", cr->reqname); ret = cache_req_is_well_known_object(state, cr, &result); if (ret == EOK) { - ret = cache_req_add_result(state, result); + ret = cache_req_add_result(state, result, &state->results, + &state->num_results); goto done; } else if (ret != ENOENT) { goto done; @@ -380,6 +677,7 @@ goto done; } + state->domain_name = domain; ret = cache_req_select_domains(req, domain); done: @@ -400,6 +698,7 @@ const char *domain) { struct tevent_req *subreq; + const char *default_domain; if (cr->data->name.input == NULL) { /* Input was not name, there is no need to process it further. */ @@ -411,11 +710,17 @@ return cache_req_set_name(cr, cr->data->name.input); } + default_domain = NULL; + if (!cr->plugin->ignore_default_domain) { + default_domain = cr->rctx->default_domain; + } + /* Parse name since it may contain a domain name. */ CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, cr, "Parsing input name [%s]\n", cr->data->name.input); - subreq = sss_parse_inp_send(mem_ctx, cr->rctx, cr->data->name.input); + subreq = sss_parse_inp_send(mem_ctx, cr->rctx, default_domain, + cr->data->name.input); if (subreq == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Unable to create tevent request!\n"); return ENOMEM; @@ -461,6 +766,7 @@ return; } + state->domain_name = domain; ret = cache_req_select_domains(req, domain); if (ret != EAGAIN) { tevent_req_error(req, ret); @@ -469,232 +775,105 @@ } static errno_t cache_req_select_domains(struct tevent_req *req, - const char *domain) + const char *domain_name) { struct cache_req_state *state = NULL; + struct sss_domain_info *domain; + bool check_next; + bool bypass_cache; + bool bypass_dp; + bool search; state = tevent_req_data(req, struct cache_req_state); - if (domain != NULL) { + search = cache_req_search_schema(state->cr, domain_name, + state->first_iteration, + &bypass_cache, &bypass_dp); + if (!search) { + /* We're done here. */ + return EOK; + } + + if (domain_name != NULL) { CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, state->cr, "Performing a single domain search\n"); - state->domain = responder_get_domain(state->cr->rctx, domain); - if (state->domain == NULL) { + domain = responder_get_domain(state->cr->rctx, domain_name); + if (domain == NULL) { return ERR_DOMAIN_NOT_FOUND; } - state->check_next = false; + check_next = false; } else { CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, state->cr, "Performing a multi-domain search\n"); - state->domain = state->cr->rctx->domains; - state->check_next = true; + domain = state->cr->rctx->domains; + check_next = true; } - return cache_req_next_domain(req); + return cache_req_search_domains(req, domain, check_next, + bypass_cache, bypass_dp); } -static errno_t cache_req_next_domain(struct tevent_req *req) +static errno_t cache_req_search_domains(struct tevent_req *req, + struct sss_domain_info *domain, + bool check_next, + bool bypass_cache, + bool bypass_dp) { - struct cache_req_state *state; struct tevent_req *subreq; - struct cache_req *cr; - uint32_t next_domain_flag; - bool is_domain_valid; - bool allow_no_fqn; - errno_t ret; + struct cache_req_state *state = NULL; state = tevent_req_data(req, struct cache_req_state); - cr = state->cr; - - next_domain_flag = cr->plugin->get_next_domain_flags; - allow_no_fqn = cr->plugin->allow_missing_fqn; - - while (state->domain != NULL) { - /* Check if this domain is valid for this request. */ - is_domain_valid = cache_req_validate_domain(cr, state->domain); - if (!is_domain_valid) { - state->domain = get_next_domain(state->domain, next_domain_flag); - continue; - } - - /* If not specified otherwise, we skip domains that require fully - * qualified names on domain less search. We do not descend into - * subdomains here since those are implicitly qualified. - */ - if (state->check_next && !allow_no_fqn && state->domain->fqnames) { - state->domain = get_next_domain(state->domain, 0); - continue; - } - - state->selected_domain = state->domain; - - if (state->domain == NULL) { - break; - } - - ret = cache_req_set_domain(cr, state->domain); - if (ret != EOK) { - return ret; - } - - subreq = cache_req_search_send(state, state->ev, cr); - if (subreq == NULL) { - return ENOMEM; - } - - tevent_req_set_callback(subreq, cache_req_done, req); - - /* we will continue with the following domain the next time */ - if (state->check_next) { - state->domain = get_next_domain(state->domain, - cr->plugin->get_next_domain_flags); - } - - return EAGAIN; - } - - /* If we've got some result from previous searches we want to return - * EOK here so the whole cache request is successfully finished. */ - if (state->num_results > 0) { - return EOK; - } - - /* We have searched all available domains and no result was found. - * - * If the plug-in uses a negative cache which is shared among all domains - * (e.g. unique identifiers such as user or group id or sid), we add it - * here and return object not found error. - * - * However, we can only set the negative cache if all data provider - * requests succeeded because only then we can be sure that it does - * not exist- - */ - if (state->dp_success) { - cache_req_global_ncache_add(cr); - } - - return ENOENT; -} - -static errno_t -cache_req_add_result(struct cache_req_state *state, - struct cache_req_result *new) -{ - struct cache_req_result **results = state->results; - size_t index; - size_t count; - - /* Make space for new results. */ - index = state->num_results; - count = state->num_results + 1; - - results = talloc_realloc(state, results, struct cache_req_result *, count + 1); - if (results == NULL) { - return ENOMEM; - } - - results[index] = talloc_steal(results, new); - results[index + 1] = NULL; - state->results = results; - state->num_results = count; - - return EOK; -} - -static errno_t -cache_req_create_and_add_result(struct cache_req_state *state, - struct sss_domain_info *domain, - struct ldb_result *ldb_result, - const char *name) -{ - struct cache_req_result *item; - errno_t ret; CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, state->cr, - "Found %u entries in domain %s\n", - ldb_result->count, domain->name); + "Search will %s the cache and %s the data provider\n", + bypass_cache ? "bypass" : "check", + bypass_dp ? "bypass" : "check"); - item = cache_req_create_result(state, domain, ldb_result, name, NULL); - if (item == NULL) { + subreq = cache_req_search_domains_send(state, state->ev, state->cr, domain, + check_next, bypass_cache, bypass_dp); + if (subreq == NULL) { return ENOMEM; } - ret = cache_req_add_result(state, item); - if (ret != EOK) { - talloc_free(item); - } - - return ret; + tevent_req_set_callback(subreq, cache_req_done, req); + return EAGAIN; } static void cache_req_done(struct tevent_req *subreq) { struct cache_req_state *state; - struct ldb_result *result; struct tevent_req *req; - bool dp_success; errno_t ret; req = tevent_req_callback_data(subreq, struct tevent_req); state = tevent_req_data(req, struct cache_req_state); - ret = cache_req_search_recv(state, subreq, &result, &dp_success); + ret = cache_req_search_domains_recv(state, subreq, &state->results); talloc_zfree(subreq); - /* Remember if any DP request fails. */ - state->dp_success = !dp_success ? false : state->dp_success; - - switch (ret) { - case EOK: - /* We got some data from this search. Save it. */ - ret = cache_req_create_and_add_result(state, state->selected_domain, - result, - state->cr->data->name.lookup); - if (ret != EOK) { - /* We were unable to save data. */ - goto done; - } - - if (!state->check_next || !state->cr->plugin->search_all_domains) { - /* We are not interested in more results. */ - ret = EOK; - goto done; - } + if (ret == ENOENT && state->first_iteration) { + /* Try again different search schema. */ + state->first_iteration = false; + ret = cache_req_select_domains(req, state->domain_name); + if (ret == EOK) { + /* We're done searching and we have found nothing. */ + ret = ENOENT; - break; - case ENOENT: - if (state->check_next == false) { - /* Lookup domain was specified as input. - * We don't want to try the next domain, - * but we may want to try UPN search. */ - - if (cache_req_assume_upn(state->cr)) { - /* Try UPN now. */ - ret = cache_req_select_domains(req, NULL); - goto done; + if (state->domain_name != NULL) { + /* Lookup domain was specified as input. Since we haven't + * found anything yet we may want to try UPN search with + * some plug-ins. */ + + if (cache_req_assume_upn(state->cr)) { + /* Try UPN now. */ + state->first_iteration = true; + ret = cache_req_select_domains(req, NULL); + } } - - /* Not found. */ - ret = ENOENT; - goto done; } - - break; - default: - /* Some serious error has happened. Finish. */ - goto done; - } - - /* This is a domain less search, continue with the next domain. */ - ret = cache_req_next_domain(req); - -done: - if (ret == ENOENT && state->results != NULL) { - /* We have at least one result. */ - ret = EOK; } switch (ret) { @@ -774,148 +953,3 @@ return req; } - -struct cache_req_result * -cache_req_create_result(TALLOC_CTX *mem_ctx, - struct sss_domain_info *domain, - struct ldb_result *ldb_result, - const char *lookup_name, - const char *well_known_domain) -{ - struct cache_req_result *result; - - result = talloc_zero(mem_ctx, struct cache_req_result); - if (result == NULL) { - return NULL; - } - - result->domain = domain; - result->ldb_result = talloc_steal(result, ldb_result); - result->count = ldb_result != NULL ? ldb_result->count : 0; - result->msgs = ldb_result != NULL ? ldb_result->msgs : NULL; - - if (lookup_name != NULL) { - result->lookup_name = talloc_strdup(result, lookup_name); - if (result->lookup_name == NULL) { - talloc_free(result); - return NULL; - } - } - - if (well_known_domain != NULL) { - result->well_known_domain = talloc_strdup(result, well_known_domain); - if (result->well_known_domain == NULL) { - talloc_free(result); - return NULL; - } - } - - return result; -} - -struct cache_req_result * -cache_req_create_result_from_msg(TALLOC_CTX *mem_ctx, - struct sss_domain_info *domain, - struct ldb_message *ldb_msg, - const char *lookup_name, - const char *well_known_domain) -{ - struct cache_req_result *result; - struct ldb_result *ldb_result; - errno_t ret; - - if (ldb_msg == NULL) { - DEBUG(SSSDBG_CRIT_FAILURE, "No message set!\n"); - return NULL; - } - - ldb_result = talloc_zero(NULL, struct ldb_result); - if (ldb_result == NULL) { - return NULL; - } - - ldb_result->extended = NULL; - ldb_result->controls = NULL; - ldb_result->refs = NULL; - ldb_result->count = 1; - ldb_result->msgs = talloc_zero_array(ldb_result, struct ldb_message *, 2); - if (ldb_result->msgs == NULL) { - ret = ENOMEM; - goto done; - } - - ldb_result->msgs[0] = talloc_steal(ldb_result->msgs, ldb_msg); - - result = cache_req_create_result(mem_ctx, domain, ldb_result, - lookup_name, well_known_domain); - if (result == NULL) { - ret = ENOMEM; - goto done; - } - - ret = EOK; - -done: - if (ret != EOK) { - talloc_free(ldb_result); - return NULL; - } - - return result; -} - -struct cache_req_result * -cache_req_copy_limited_result(TALLOC_CTX *mem_ctx, - struct cache_req_result *result, - uint32_t start, - uint32_t limit) -{ - struct cache_req_result *out = NULL; - struct ldb_result *ldb_result; - unsigned int left; - errno_t ret; - - if (start >= result->count) { - ret = ERANGE; - goto done; - } - - out = talloc_zero(mem_ctx, struct cache_req_result); - if (out == NULL) { - ret = ENOMEM; - goto done; - } - - ldb_result = talloc_zero(out, struct ldb_result); - if (ldb_result == NULL) { - ret = ENOMEM; - goto done; - } - - left = result->count - start; - - ldb_result->extended = result->ldb_result->extended; - ldb_result->controls = result->ldb_result->controls; - ldb_result->refs = result->ldb_result->refs; - ldb_result->msgs = &(result->ldb_result->msgs[start]); - ldb_result->count = left < limit ? left : limit; - - out->domain = result->domain; - out->ldb_result = ldb_result; - out->lookup_name = result->lookup_name; - out->count = ldb_result->count; - out->msgs = ldb_result->msgs; - - ret = EOK; - -done: - if (ret != EOK) { - DEBUG(SSSDBG_CRIT_FAILURE, "Unable to create cache request result " - "[%d]: %s\n", ret, sss_strerror(ret)); - - talloc_free(out); - return NULL; - } - - return out; -} diff -Nru sssd-1.15.0/src/responder/common/cache_req/cache_req_data.c sssd-1.15.2/src/responder/common/cache_req/cache_req_data.c --- sssd-1.15.0/src/responder/common/cache_req/cache_req_data.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/cache_req_data.c 2017-03-15 16:53:24.000000000 +0000 @@ -188,6 +188,29 @@ } break; + case CACHE_REQ_HOST_BY_NAME: + if (input->name.input == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Bug: name cannot be NULL!\n"); + ret = ERR_INTERNAL; + goto done; + } + + data->name.input = talloc_strdup(data, input->name.input); + if (data->name.input == NULL) { + ret = ENOMEM; + goto done; + } + + if (input->alias == NULL) { + break; + } + + data->alias = talloc_strdup(data, input->alias); + if (data->alias == NULL) { + ret = ENOMEM; + goto done; + } + break; case CACHE_REQ_SENTINEL: DEBUG(SSSDBG_CRIT_FAILURE, "Invalid cache request type!\n"); ret = ERR_INTERNAL; @@ -318,3 +341,31 @@ return cache_req_data_create(mem_ctx, type, &input); } + +struct cache_req_data * +cache_req_data_host(TALLOC_CTX *mem_ctx, + enum cache_req_type type, + const char *name, + const char *alias, + const char **attrs) +{ + struct cache_req_data input = {0}; + + input.name.input = name; + input.alias = alias; + input.attrs = attrs; + + return cache_req_data_create(mem_ctx, type, &input); +} + +void +cache_req_data_set_bypass_cache(struct cache_req_data *data, + bool bypass_cache) +{ + if (data == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "cache_req_data should never be NULL\n"); + return; + } + + data->bypass_cache = bypass_cache; +} diff -Nru sssd-1.15.0/src/responder/common/cache_req/cache_req.h sssd-1.15.2/src/responder/common/cache_req/cache_req.h --- sssd-1.15.0/src/responder/common/cache_req/cache_req.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/cache_req.h 2017-03-15 16:53:24.000000000 +0000 @@ -52,6 +52,8 @@ CACHE_REQ_NETGROUP_BY_NAME, + CACHE_REQ_HOST_BY_NAME, + CACHE_REQ_SENTINEL }; @@ -103,6 +105,16 @@ const char *protocol, uint16_t port); +struct cache_req_data * +cache_req_data_host(TALLOC_CTX *mem_ctx, + enum cache_req_type type, + const char *name, + const char *alias, + const char **attrs); +void +cache_req_data_set_bypass_cache(struct cache_req_data *data, + bool bypass_cache); + /* Output data. */ struct cache_req_result { @@ -186,6 +198,19 @@ cache_req_single_domain_recv(mem_ctx, req, _result) struct tevent_req * +cache_req_user_by_name_attrs_send(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + struct resp_ctx *rctx, + struct sss_nc_ctx *ncache, + int cache_refresh_percent, + const char *domain, + const char *name, + const char **attrs); + +#define cache_req_user_by_name_attrs_recv(mem_ctx, req, _result) \ + cache_req_single_domain_recv(mem_ctx, req, _result) + +struct tevent_req * cache_req_user_by_id_send(TALLOC_CTX *mem_ctx, struct tevent_context *ev, struct resp_ctx *rctx, @@ -364,4 +389,18 @@ #define cache_req_netgroup_by_name_recv(mem_ctx, req, _result) \ cache_req_single_domain_recv(mem_ctx, req, _result) +struct tevent_req * +cache_req_host_by_name_send(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + struct resp_ctx *rctx, + struct sss_nc_ctx *ncache, + int cache_refresh_percent, + const char *domain, + const char *name, + const char *alias, + const char **attrs); + +#define cache_req_host_by_name_recv(mem_ctx, req, _result) \ + cache_req_single_domain_recv(mem_ctx, req, _result) + #endif /* _CACHE_REQ_H_ */ diff -Nru sssd-1.15.0/src/responder/common/cache_req/cache_req_plugin.h sssd-1.15.2/src/responder/common/cache_req/cache_req_plugin.h --- sssd-1.15.0/src/responder/common/cache_req/cache_req_plugin.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/cache_req_plugin.h 2017-03-15 16:53:24.000000000 +0000 @@ -117,18 +117,29 @@ struct ldb_result **_result); /** - * Return parameters for Data Provider request. + * Send Data Provider request. * - * @return EOK If everything went fine. - * @return Other errno code in case of an error. + * @return Tevent request on success. + * @return NULL on error. */ -typedef errno_t -(*cache_req_dpreq_params_fn)(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag); +typedef struct tevent_req * +(*cache_req_dp_send_fn)(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result); + +/** + * Process result of Data Provider request. + * + * Do not free subreq! It will be freed in the caller. + * + * @return True if data provider request succeeded. + * @return False if there was an error. + */ +typedef bool +(*cache_req_dp_recv_fn)(struct tevent_req *subreq, + struct cache_req *cr); struct cache_req_plugin { /** @@ -137,11 +148,6 @@ const char *name; /** - * Data provider request type. - */ - enum sss_dp_acct_type dp_type; - - /** * Expiration timestamp attribute name. */ const char *attr_expiration; @@ -157,6 +163,11 @@ bool parse_name; /** + * True if default domain suffix should be ignored when parsing name. + */ + bool ignore_default_domain; + + /** * True if we always contact data provider. */ bool bypass_cache; @@ -197,7 +208,8 @@ cache_req_ncache_check_fn ncache_check_fn; cache_req_ncache_add_fn ncache_add_fn; cache_req_lookup_fn lookup_fn; - cache_req_dpreq_params_fn dpreq_params_fn; + cache_req_dp_send_fn dp_send_fn; + cache_req_dp_recv_fn dp_recv_fn; }; extern const struct cache_req_plugin cache_req_user_by_name; @@ -219,5 +231,6 @@ extern const struct cache_req_plugin cache_req_svc_by_name; extern const struct cache_req_plugin cache_req_svc_by_port; extern const struct cache_req_plugin cache_req_netgroup_by_name; +extern const struct cache_req_plugin cache_req_host_by_name; #endif /* _CACHE_REQ_PLUGIN_H_ */ diff -Nru sssd-1.15.0/src/responder/common/cache_req/cache_req_private.h sssd-1.15.2/src/responder/common/cache_req/cache_req_private.h --- sssd-1.15.0/src/responder/common/cache_req/cache_req_private.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/cache_req_private.h 2017-03-15 16:53:24.000000000 +0000 @@ -38,13 +38,10 @@ struct sss_nc_ctx *ncache; int midpoint; - /* Data Provider request type resolved from @type. - * FIXME: This is currently needed for data provider calls. We should - * refactor responder_dp.c to get rid of this member. */ - enum sss_dp_acct_type dp_type; - /* Domain related informations. */ struct sss_domain_info *domain; + bool cache_first; + bool bypass_cache; /* Debug information */ uint32_t reqid; @@ -81,6 +78,7 @@ uint32_t id; const char *cert; const char *sid; + const char *alias; const char **attrs; struct { @@ -88,12 +86,16 @@ struct cache_req_cased_name protocol; uint16_t port; } svc; + + bool bypass_cache; }; struct tevent_req * cache_req_search_send(TALLOC_CTX *mem_ctx, struct tevent_context *ev, - struct cache_req *cr); + struct cache_req *cr, + bool bypass_cache, + bool bypass_dp); errno_t cache_req_search_recv(TALLOC_CTX *mem_ctx, struct tevent_req *req, @@ -109,6 +111,12 @@ const char *domain, struct cache_req_data *data); +errno_t +cache_req_add_result(TALLOC_CTX *mem_ctx, + struct cache_req_result *new_result, + struct cache_req_result ***_results, + size_t *_num_results); + struct cache_req_result * cache_req_create_result(TALLOC_CTX *mem_ctx, struct sss_domain_info *domain, @@ -116,6 +124,19 @@ const char *lookup_name, const char *well_known_domain); +errno_t +cache_req_create_and_add_result(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct sss_domain_info *domain, + struct ldb_result *ldb_result, + const char *name, + struct cache_req_result ***_results, + size_t *_num_results); + +struct ldb_result * +cache_req_create_ldb_result_from_msg(TALLOC_CTX *mem_ctx, + struct ldb_message *ldb_msg); + struct cache_req_result * cache_req_create_result_from_msg(TALLOC_CTX *mem_ctx, struct sss_domain_info *domain, @@ -132,4 +153,8 @@ const char *sid, const char *name); +bool +cache_req_common_dp_recv(struct tevent_req *subreq, + struct cache_req *cr); + #endif /* _CACHE_REQ_PRIVATE_H_ */ diff -Nru sssd-1.15.0/src/responder/common/cache_req/cache_req_result.c sssd-1.15.2/src/responder/common/cache_req/cache_req_result.c --- sssd-1.15.0/src/responder/common/cache_req/cache_req_result.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/cache_req_result.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,239 @@ +/* + Authors: + Pavel Březina + + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include +#include +#include + +#include "util/util.h" +#include "responder/common/cache_req/cache_req_private.h" + +errno_t +cache_req_add_result(TALLOC_CTX *mem_ctx, + struct cache_req_result *new_result, + struct cache_req_result ***_results, + size_t *_num_results) +{ + struct cache_req_result **results = *_results; + size_t index; + size_t count; + + /* Make space for new results. */ + index = *_num_results; + count = *_num_results + 1; + + results = talloc_realloc(mem_ctx, results, struct cache_req_result *, + count + 1); + if (results == NULL) { + return ENOMEM; + } + + results[index] = talloc_steal(results, new_result); + results[index + 1] = NULL; + + *_results = results; + *_num_results = count; + + return EOK; +} + +struct cache_req_result * +cache_req_create_result(TALLOC_CTX *mem_ctx, + struct sss_domain_info *domain, + struct ldb_result *ldb_result, + const char *lookup_name, + const char *well_known_domain) +{ + struct cache_req_result *result; + + result = talloc_zero(mem_ctx, struct cache_req_result); + if (result == NULL) { + return NULL; + } + + result->domain = domain; + result->ldb_result = talloc_steal(result, ldb_result); + result->count = ldb_result != NULL ? ldb_result->count : 0; + result->msgs = ldb_result != NULL ? ldb_result->msgs : NULL; + + if (lookup_name != NULL) { + result->lookup_name = talloc_strdup(result, lookup_name); + if (result->lookup_name == NULL) { + talloc_free(result); + return NULL; + } + } + + if (well_known_domain != NULL) { + result->well_known_domain = talloc_strdup(result, well_known_domain); + if (result->well_known_domain == NULL) { + talloc_free(result); + return NULL; + } + } + + return result; +} + +errno_t +cache_req_create_and_add_result(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct sss_domain_info *domain, + struct ldb_result *ldb_result, + const char *name, + struct cache_req_result ***_results, + size_t *_num_results) +{ + struct cache_req_result *item; + errno_t ret; + + CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, cr, + "Found %u entries in domain %s\n", + ldb_result->count, domain->name); + + item = cache_req_create_result(mem_ctx, domain, ldb_result, name, NULL); + if (item == NULL) { + return ENOMEM; + } + + ret = cache_req_add_result(mem_ctx, item, _results, _num_results); + if (ret != EOK) { + talloc_free(item); + } + + return ret; +} + +struct ldb_result * +cache_req_create_ldb_result_from_msg(TALLOC_CTX *mem_ctx, + struct ldb_message *ldb_msg) +{ + struct ldb_result *ldb_result; + + if (ldb_msg == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "No message set!\n"); + return NULL; + } + + ldb_result = talloc_zero(NULL, struct ldb_result); + if (ldb_result == NULL) { + return NULL; + } + + ldb_result->extended = NULL; + ldb_result->controls = NULL; + ldb_result->refs = NULL; + ldb_result->count = 1; + ldb_result->msgs = talloc_zero_array(ldb_result, struct ldb_message *, 2); + if (ldb_result->msgs == NULL) { + talloc_free(ldb_result); + return NULL; + } + + ldb_result->msgs[0] = talloc_steal(ldb_result->msgs, ldb_msg); + + return ldb_result; +} + +struct cache_req_result * +cache_req_create_result_from_msg(TALLOC_CTX *mem_ctx, + struct sss_domain_info *domain, + struct ldb_message *ldb_msg, + const char *lookup_name, + const char *well_known_domain) +{ + struct cache_req_result *result; + struct ldb_result *ldb_result; + + if (ldb_msg == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "No message set!\n"); + return NULL; + } + + ldb_result = cache_req_create_ldb_result_from_msg(mem_ctx, ldb_msg); + if (ldb_result == NULL) { + return NULL; + } + + result = cache_req_create_result(mem_ctx, domain, ldb_result, + lookup_name, well_known_domain); + if (result == NULL) { + talloc_free(ldb_result); + return NULL; + } + + return result; +} + +struct cache_req_result * +cache_req_copy_limited_result(TALLOC_CTX *mem_ctx, + struct cache_req_result *result, + uint32_t start, + uint32_t limit) +{ + struct cache_req_result *out = NULL; + struct ldb_result *ldb_result; + unsigned int left; + errno_t ret; + + if (start >= result->count) { + ret = ERANGE; + goto done; + } + + out = talloc_zero(mem_ctx, struct cache_req_result); + if (out == NULL) { + ret = ENOMEM; + goto done; + } + + ldb_result = talloc_zero(out, struct ldb_result); + if (ldb_result == NULL) { + ret = ENOMEM; + goto done; + } + + left = result->count - start; + + ldb_result->extended = result->ldb_result->extended; + ldb_result->controls = result->ldb_result->controls; + ldb_result->refs = result->ldb_result->refs; + ldb_result->msgs = &(result->ldb_result->msgs[start]); + ldb_result->count = left < limit ? left : limit; + + out->domain = result->domain; + out->ldb_result = ldb_result; + out->lookup_name = result->lookup_name; + out->count = ldb_result->count; + out->msgs = ldb_result->msgs; + + ret = EOK; + +done: + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Unable to create cache request result " + "[%d]: %s\n", ret, sss_strerror(ret)); + + talloc_free(out); + return NULL; + } + + return out; +} diff -Nru sssd-1.15.0/src/responder/common/cache_req/cache_req_search.c sssd-1.15.2/src/responder/common/cache_req/cache_req_search.c --- sssd-1.15.0/src/responder/common/cache_req/cache_req_search.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/cache_req_search.c 2017-03-15 16:53:24.000000000 +0000 @@ -138,70 +138,6 @@ return ret; } -static errno_t cache_req_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) -{ - errno_t ret; - - if (cr->plugin->dpreq_params_fn == NULL) { - CACHE_REQ_DEBUG(SSSDBG_CRIT_FAILURE, cr, - "Bug: No dpreq params function specified\n"); - return ERR_INTERNAL; - } - - - CACHE_REQ_DEBUG(SSSDBG_TRACE_INTERNAL, cr, - "Creating DP request parameters\n"); - - ret = cr->plugin->dpreq_params_fn(mem_ctx, cr, result, _string, _id, _flag); - if (ret != EOK) { - CACHE_REQ_DEBUG(SSSDBG_CRIT_FAILURE, cr, - "Unable to create DP request parameters [%d]: %s\n", - ret, sss_strerror(ret)); - return ret; - } - - return EOK; -} - -static bool cache_req_search_process_dp(TALLOC_CTX *mem_ctx, - struct tevent_req *subreq, - struct cache_req *cr) -{ - char *err_msg; - dbus_uint16_t err_maj; - dbus_uint32_t err_min; - errno_t ret; - - ret = sss_dp_get_account_recv(mem_ctx, subreq, &err_maj, &err_min, &err_msg); - talloc_zfree(subreq); - if (ret != EOK) { - CACHE_REQ_DEBUG(SSSDBG_OP_FAILURE, cr, - "Could not get account info [%d]: %s\n", - ret, sss_strerror(ret)); - CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, cr, - "Due to an error we will return cached data\n"); - - return false; - } - - if (err_maj) { - CACHE_REQ_DEBUG(SSSDBG_OP_FAILURE, cr, - "Data Provider Error: %u, %u, %s\n", - (unsigned int)err_maj, (unsigned int)err_min, err_msg); - CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, cr, - "Due to an error we will return cached data\n"); - - return false; - } - - return true; -} - static enum cache_object_status cache_req_expiration_status(struct cache_req *cr, struct ldb_result *result) @@ -245,7 +181,9 @@ struct tevent_req * cache_req_search_send(TALLOC_CTX *mem_ctx, struct tevent_context *ev, - struct cache_req *cr) + struct cache_req *cr, + bool bypass_cache, + bool bypass_dp) { struct cache_req_search_state *state; enum cache_object_status status; @@ -278,7 +216,7 @@ */ state->result = NULL; status = CACHE_OBJECT_MISSING; - if (!cr->plugin->bypass_cache) { + if (!bypass_cache) { ret = cache_req_search_cache(state, cr, &state->result); if (ret != EOK && ret != ENOENT) { goto done; @@ -291,9 +229,24 @@ ret = EOK; goto done; } + + /* If bypass_dp is true but we found the object in this domain, + * we will contact the data provider anyway to refresh it so + * we can return it without searching the rest of the domains. + */ + if (status != CACHE_OBJECT_MISSING) { + CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, cr, + "Object found, but needs to be refreshed.\n"); + bypass_dp = false; + } else { + ret = ENOENT; + } + } + + if (!bypass_dp) { + ret = cache_req_search_dp(req, status); } - ret = cache_req_search_dp(req, status); if (ret != EAGAIN) { goto done; } @@ -316,19 +269,10 @@ { struct cache_req_search_state *state; struct tevent_req *subreq; - const char *extra_flag; - const char *search_str; - uint32_t search_id; errno_t ret; state = tevent_req_data(req, struct cache_req_search_state); - ret = cache_req_dpreq_params(state, state->cr, state->result, - &search_str, &search_id, &extra_flag); - if (ret != EOK) { - return ret; - } - switch (status) { case CACHE_OBJECT_MIDPOINT: /* Out of band update. The calling function will return the cached @@ -339,10 +283,10 @@ "Performing midpoint cache update of [%s]\n", state->cr->debugobj); - subreq = sss_dp_get_account_send(state->cr->rctx, state->cr->rctx, - state->cr->domain, true, - state->cr->dp_type, - search_str, search_id, extra_flag); + subreq = state->cr->plugin->dp_send_fn(state->rctx, state->cr, + state->cr->data, + state->cr->domain, + state->result); if (subreq == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Out of memory sending out-of-band " "data provider request\n"); @@ -351,31 +295,37 @@ tevent_req_set_callback(subreq, cache_req_search_oob_done, req); } - return EOK; + ret = EOK; + break; case CACHE_OBJECT_EXPIRED: case CACHE_OBJECT_MISSING: CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, state->cr, "Looking up [%s] in data provider\n", state->cr->debugobj); - subreq = sss_dp_get_account_send(state, state->cr->rctx, - state->cr->domain, true, - state->cr->dp_type, - search_str, search_id, extra_flag); + subreq = state->cr->plugin->dp_send_fn(state->cr, state->cr, + state->cr->data, + state->cr->domain, + state->result); if (subreq == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Out of memory sending data provider request\n"); - return ENOMEM; + ret = ENOMEM; + break; } tevent_req_set_callback(subreq, cache_req_search_done, req); - return EAGAIN; + ret = EAGAIN; + break; default: /* error */ CACHE_REQ_DEBUG(SSSDBG_CRIT_FAILURE, state->cr, "Unexpected status [%d]\n", status); - return ret; + ret = ERR_INTERNAL; + break; } + + return ret; } static void cache_req_search_oob_done(struct tevent_req *subreq) @@ -395,7 +345,8 @@ req = tevent_req_callback_data(subreq, struct tevent_req); state = tevent_req_data(req, struct cache_req_search_state); - state->dp_success = cache_req_search_process_dp(state, subreq, state->cr); + state->dp_success = state->cr->plugin->dp_recv_fn(subreq, state->cr); + talloc_zfree(subreq); /* Get result from cache again. */ ret = cache_req_search_cache(state, state->cr, &state->result); diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_common.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_common.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_common.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_common.c 2017-03-15 16:53:24.000000000 +0000 @@ -107,3 +107,43 @@ return result; } + +bool +cache_req_common_dp_recv(struct tevent_req *subreq, + struct cache_req *cr) +{ + char *err_msg; + dbus_uint16_t err_maj; + dbus_uint32_t err_min; + errno_t ret; + bool bret; + + ret = sss_dp_req_recv(NULL, subreq, &err_maj, &err_min, &err_msg); + if (ret != EOK) { + CACHE_REQ_DEBUG(SSSDBG_OP_FAILURE, cr, + "Could not get account info [%d]: %s\n", + ret, sss_strerror(ret)); + CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, cr, + "Due to an error we will return cached data\n"); + + bret = false; + goto done; + } + + if (err_maj) { + CACHE_REQ_DEBUG(SSSDBG_OP_FAILURE, cr, + "Data Provider Error: %u, %u, %s\n", + (unsigned int)err_maj, (unsigned int)err_min, err_msg); + CACHE_REQ_DEBUG(SSSDBG_TRACE_FUNC, cr, + "Due to an error we will return cached data\n"); + + bret = false; + goto done; + } + + bret = true; + +done: + talloc_free(err_msg); + return bret; +} diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_enum_groups.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_enum_groups.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_enum_groups.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_enum_groups.c 2017-03-15 16:53:24.000000000 +0000 @@ -44,26 +44,22 @@ return sysdb_enumgrent_with_views(mem_ctx, domain, _result); } -static errno_t -cache_req_enum_groups_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_enum_groups_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = 0; - *_string = NULL; - *_flag = NULL; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_GROUP, NULL, 0, NULL); } const struct cache_req_plugin cache_req_enum_groups = { .name = "Enumerate groups", - .dp_type = SSS_DP_GROUP, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = true, .only_one_result = false, .search_all_domains = true, @@ -80,7 +76,8 @@ .ncache_check_fn = NULL, .ncache_add_fn = NULL, .lookup_fn = cache_req_enum_groups_lookup, - .dpreq_params_fn = cache_req_enum_groups_dpreq_params + .dp_send_fn = cache_req_enum_groups_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_enum_svc.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_enum_svc.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_enum_svc.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_enum_svc.c 2017-03-15 16:53:24.000000000 +0000 @@ -45,26 +45,22 @@ return sysdb_enumservent(mem_ctx, domain, _result); } -static errno_t -cache_req_enum_svc_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_enum_svc_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = 0; - *_string = NULL; - *_flag = NULL; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_SERVICES, NULL, 0, NULL); } const struct cache_req_plugin cache_req_enum_svc = { .name = "Enumerate services", - .dp_type = SSS_DP_SERVICES, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = true, .only_one_result = false, .search_all_domains = true, @@ -81,7 +77,8 @@ .ncache_check_fn = NULL, .ncache_add_fn = NULL, .lookup_fn = cache_req_enum_svc_lookup, - .dpreq_params_fn = cache_req_enum_svc_dpreq_params + .dp_send_fn = cache_req_enum_svc_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_enum_users.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_enum_users.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_enum_users.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_enum_users.c 2017-03-15 16:53:24.000000000 +0000 @@ -44,26 +44,22 @@ return sysdb_enumpwent_with_views(mem_ctx, domain, _result); } -static errno_t -cache_req_enum_users_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_enum_users_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = 0; - *_string = NULL; - *_flag = NULL; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_USER, NULL, 0, NULL); } const struct cache_req_plugin cache_req_enum_users = { .name = "Enumerate users", - .dp_type = SSS_DP_USER, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = true, .only_one_result = false, .search_all_domains = true, @@ -80,7 +76,8 @@ .ncache_check_fn = NULL, .ncache_add_fn = NULL, .lookup_fn = cache_req_enum_users_lookup, - .dpreq_params_fn = cache_req_enum_users_dpreq_params + .dp_send_fn = cache_req_enum_users_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_group_by_filter.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_group_by_filter.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_group_by_filter.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_group_by_filter.c 2017-03-15 16:53:24.000000000 +0000 @@ -99,26 +99,23 @@ return ret; } -static errno_t -cache_req_group_by_filter_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_group_by_filter_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = cr->data->id; - *_string = cr->data->name.lookup; - *_flag = NULL; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_WILDCARD_GROUP, + cr->data->name.lookup, cr->data->id, NULL); } const struct cache_req_plugin cache_req_group_by_filter = { .name = "Group by filter", - .dp_type = SSS_DP_WILDCARD_GROUP, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = true, + .ignore_default_domain = false, .bypass_cache = true, .only_one_result = false, .search_all_domains = false, @@ -135,7 +132,8 @@ .ncache_check_fn = NULL, .ncache_add_fn = NULL, .lookup_fn = cache_req_group_by_filter_lookup, - .dpreq_params_fn = cache_req_group_by_filter_dpreq_params + .dp_send_fn = cache_req_group_by_filter_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_group_by_id.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_group_by_id.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_group_by_id.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_group_by_id.c 2017-03-15 16:53:24.000000000 +0000 @@ -102,11 +102,33 @@ return EOK; } +static struct tevent_req * +cache_req_group_by_id_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) +{ + const char *string; + const char *flag; + uint32_t id; + errno_t ret; + + ret = cache_req_group_by_id_dpreq_params(mem_ctx, cr, result, + &string, &id, &flag); + if (ret != EOK) { + return NULL; + } + + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_GROUP, string, id, flag); +} + const struct cache_req_plugin cache_req_group_by_id = { .name = "Group by ID", - .dp_type = SSS_DP_GROUP, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = true, .search_all_domains = false, @@ -123,7 +145,8 @@ .ncache_check_fn = cache_req_group_by_id_ncache_check, .ncache_add_fn = NULL, .lookup_fn = cache_req_group_by_id_lookup, - .dpreq_params_fn = cache_req_group_by_id_dpreq_params + .dp_send_fn = cache_req_group_by_id_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_group_by_name.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_group_by_name.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_group_by_name.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_group_by_name.c 2017-03-15 16:53:24.000000000 +0000 @@ -152,11 +152,33 @@ return EOK; } +static struct tevent_req * +cache_req_group_by_name_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) +{ + const char *string; + const char *flag; + uint32_t id; + errno_t ret; + + ret = cache_req_group_by_name_dpreq_params(mem_ctx, cr, result, + &string, &id, &flag); + if (ret != EOK) { + return NULL; + } + + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_GROUP, string, id, flag); +} + const struct cache_req_plugin cache_req_group_by_name = { .name = "Group by name", - .dp_type = SSS_DP_GROUP, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = true, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = true, .search_all_domains = false, @@ -173,7 +195,8 @@ .ncache_check_fn = cache_req_group_by_name_ncache_check, .ncache_add_fn = cache_req_group_by_name_ncache_add, .lookup_fn = cache_req_group_by_name_lookup, - .dpreq_params_fn = cache_req_group_by_name_dpreq_params + .dp_send_fn = cache_req_group_by_name_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_host_by_name.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_host_by_name.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_host_by_name.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_host_by_name.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,121 @@ +/* + Authors: + Pavel Březina + + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include +#include + +#include "db/sysdb_ssh.h" +#include "util/util.h" +#include "providers/data_provider.h" +#include "responder/common/cache_req/cache_req_plugin.h" + +static const char * +cache_req_host_by_name_create_debug_name(TALLOC_CTX *mem_ctx, + struct cache_req_data *data, + struct sss_domain_info *domain) +{ + return talloc_strdup(mem_ctx, data->name.name); +} + +static errno_t +cache_req_host_by_name_lookup(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result **_result) +{ + struct ldb_result *result; + struct ldb_message *msg; + errno_t ret; + + ret = sysdb_get_ssh_host(mem_ctx, domain, data->name.name, + data->attrs, &msg); + if (ret != EOK) { + return ret; + } + + result = cache_req_create_ldb_result_from_msg(mem_ctx, msg); + if (result == NULL) { + return ENOMEM; + } + + *_result = result; + + return EOK; +} + +struct tevent_req * +cache_req_host_by_name_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) +{ + return sss_dp_get_ssh_host_send(mem_ctx, cr->rctx, domain, false, + data->name.name, data->alias); +} + +const struct cache_req_plugin cache_req_host_by_name = { + .name = "Host by name", + .attr_expiration = SYSDB_CACHE_EXPIRE, + .parse_name = true, + .ignore_default_domain = true, + .bypass_cache = true, + .only_one_result = true, + .search_all_domains = false, + .require_enumeration = false, + .allow_missing_fqn = true, + .allow_switch_to_upn = false, + .upn_equivalent = CACHE_REQ_SENTINEL, + .get_next_domain_flags = 0, + + .is_well_known_fn = NULL, + .prepare_domain_data_fn = NULL, + .create_debug_name_fn = cache_req_host_by_name_create_debug_name, + .global_ncache_add_fn = NULL, + .ncache_check_fn = NULL, + .ncache_add_fn = NULL, + .lookup_fn = cache_req_host_by_name_lookup, + .dp_send_fn = cache_req_host_by_name_dp_send, + .dp_recv_fn = cache_req_common_dp_recv +}; + +struct tevent_req * +cache_req_host_by_name_send(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + struct resp_ctx *rctx, + struct sss_nc_ctx *ncache, + int cache_refresh_percent, + const char *domain, + const char *name, + const char *alias, + const char **attrs) +{ + struct cache_req_data *data; + + data = cache_req_data_host(mem_ctx, CACHE_REQ_HOST_BY_NAME, name, + alias, attrs); + if (data == NULL) { + return NULL; + } + + return cache_req_steal_data_and_send(mem_ctx, ev, rctx, ncache, + cache_refresh_percent, domain, data); +} diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c 2017-03-15 16:53:24.000000000 +0000 @@ -167,11 +167,33 @@ return EOK; } +static struct tevent_req * +cache_req_initgroups_by_name_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) +{ + const char *string; + const char *flag; + uint32_t id; + errno_t ret; + + ret = cache_req_initgroups_by_name_dpreq_params(mem_ctx, cr, result, + &string, &id, &flag); + if (ret != EOK) { + return NULL; + } + + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_INITGROUPS, string, id, flag); +} + const struct cache_req_plugin cache_req_initgroups_by_name = { .name = "Initgroups by name", - .dp_type = SSS_DP_INITGROUPS, .attr_expiration = SYSDB_INITGR_EXPIRE, .parse_name = true, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = false, .search_all_domains = false, @@ -188,7 +210,8 @@ .ncache_check_fn = cache_req_initgroups_by_name_ncache_check, .ncache_add_fn = cache_req_initgroups_by_name_ncache_add, .lookup_fn = cache_req_initgroups_by_name_lookup, - .dpreq_params_fn = cache_req_initgroups_by_name_dpreq_params + .dp_send_fn = cache_req_initgroups_by_name_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c 2017-03-15 16:53:24.000000000 +0000 @@ -88,26 +88,23 @@ _result); } -static errno_t -cache_req_initgroups_by_upn_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_initgroups_by_upn_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = 0; - *_string = cr->data->name.lookup; - *_flag = EXTRA_NAME_IS_UPN; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_INITGROUPS, cr->data->name.lookup, + 0, EXTRA_NAME_IS_UPN); } const struct cache_req_plugin cache_req_initgroups_by_upn = { .name = "Initgroups by UPN", - .dp_type = SSS_DP_INITGROUPS, .attr_expiration = SYSDB_INITGR_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = false, .search_all_domains = false, @@ -124,5 +121,6 @@ .ncache_check_fn = cache_req_initgroups_by_upn_ncache_check, .ncache_add_fn = cache_req_initgroups_by_upn_ncache_add, .lookup_fn = cache_req_initgroups_by_upn_lookup, - .dpreq_params_fn = cache_req_initgroups_by_upn_dpreq_params + .dp_send_fn = cache_req_initgroups_by_upn_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c 2017-03-15 16:53:24.000000000 +0000 @@ -96,26 +96,23 @@ return sysdb_getnetgr(mem_ctx, domain, data->name.lookup, _result); } -static errno_t -cache_req_netgroup_by_name_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_netgroup_by_name_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = 0; - *_string = cr->data->name.lookup; - *_flag = NULL; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_NETGR, cr->data->name.lookup, + 0, NULL); } const struct cache_req_plugin cache_req_netgroup_by_name = { .name = "Netgroup by name", - .dp_type = SSS_DP_NETGR, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = true, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = true, .search_all_domains = false, @@ -132,7 +129,8 @@ .ncache_check_fn = cache_req_netgroup_by_name_ncache_check, .ncache_add_fn = cache_req_netgroup_by_name_ncache_add, .lookup_fn = cache_req_netgroup_by_name_lookup, - .dpreq_params_fn = cache_req_netgroup_by_name_dpreq_params + .dp_send_fn = cache_req_netgroup_by_name_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_object_by_id.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_object_by_id.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_object_by_id.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_object_by_id.c 2017-03-15 16:53:24.000000000 +0000 @@ -79,26 +79,23 @@ data->attrs, _result); } -static errno_t -cache_req_object_by_id_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_object_by_id_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = cr->data->id; - *_string = NULL; - *_flag = NULL; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_USER_AND_GROUP, NULL, + cr->data->id, NULL); } const struct cache_req_plugin cache_req_object_by_id = { .name = "Object by ID", - .dp_type = SSS_DP_USER_AND_GROUP, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = true, .search_all_domains = false, @@ -115,7 +112,8 @@ .ncache_check_fn = cache_req_object_by_id_ncache_check, .ncache_add_fn = NULL, .lookup_fn = cache_req_object_by_id_lookup, - .dpreq_params_fn = cache_req_object_by_id_dpreq_params + .dp_send_fn = cache_req_object_by_id_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_object_by_name.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_object_by_name.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_object_by_name.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_object_by_name.c 2017-03-15 16:53:24.000000000 +0000 @@ -172,26 +172,23 @@ data->attrs, _result); } -static errno_t -cache_req_object_by_name_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_object_by_name_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = 0; - *_string = cr->data->name.lookup; - *_flag = NULL; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_USER_AND_GROUP, + cr->data->name.lookup, 0, NULL); } const struct cache_req_plugin cache_req_object_by_name = { .name = "Object by name", - .dp_type = SSS_DP_USER_AND_GROUP, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = true, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = true, .search_all_domains = false, @@ -208,7 +205,8 @@ .ncache_check_fn = cache_req_object_by_name_ncache_check, .ncache_add_fn = cache_req_object_by_name_ncache_add, .lookup_fn = cache_req_object_by_name_lookup, - .dpreq_params_fn = cache_req_object_by_name_dpreq_params + .dp_send_fn = cache_req_object_by_name_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_object_by_sid.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_object_by_sid.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_object_by_sid.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_object_by_sid.c 2017-03-15 16:53:24.000000000 +0000 @@ -89,26 +89,22 @@ _result); } -static errno_t -cache_req_object_by_sid_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_object_by_sid_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = 0; - *_string = cr->data->sid; - *_flag = NULL; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_SECID, cr->data->sid, 0, NULL); } const struct cache_req_plugin cache_req_object_by_sid = { .name = "Object by SID", - .dp_type = SSS_DP_SECID, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = true, .search_all_domains = false, @@ -125,7 +121,8 @@ .ncache_check_fn = cache_req_object_by_sid_ncache_check, .ncache_add_fn = NULL, .lookup_fn = cache_req_object_by_sid_lookup, - .dpreq_params_fn = cache_req_object_by_sid_dpreq_params + .dp_send_fn = cache_req_object_by_sid_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_svc_by_name.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_svc_by_name.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_svc_by_name.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_svc_by_name.c 2017-03-15 16:53:24.000000000 +0000 @@ -120,26 +120,23 @@ data->svc.protocol.lookup, _result); } -static errno_t -cache_req_svc_by_name_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_svc_by_name_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = 0; - *_string = cr->data->svc.name->lookup; - *_flag = cr->data->svc.protocol.lookup; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_SERVICES, cr->data->svc.name->lookup, + 0, cr->data->svc.protocol.lookup); } const struct cache_req_plugin cache_req_svc_by_name = { .name = "Service by name", - .dp_type = SSS_DP_SERVICES, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = true, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = false, .search_all_domains = false, @@ -156,7 +153,8 @@ .ncache_check_fn = cache_req_svc_by_name_ncache_check, .ncache_add_fn = cache_req_svc_by_name_ncache_add, .lookup_fn = cache_req_svc_by_name_lookup, - .dpreq_params_fn = cache_req_svc_by_name_dpreq_params + .dp_send_fn = cache_req_svc_by_name_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_svc_by_port.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_svc_by_port.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_svc_by_port.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_svc_by_port.c 2017-03-15 16:53:24.000000000 +0000 @@ -93,26 +93,23 @@ data->svc.protocol.lookup, _result); } -static errno_t -cache_req_svc_by_port_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_svc_by_port_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = cr->data->svc.port; - *_string = NULL; - *_flag = cr->data->svc.protocol.lookup; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_SERVICES, NULL, cr->data->svc.port, + cr->data->svc.protocol.lookup); } const struct cache_req_plugin cache_req_svc_by_port = { .name = "Service by port", - .dp_type = SSS_DP_SERVICES, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = false, .search_all_domains = false, @@ -129,7 +126,8 @@ .ncache_check_fn = cache_req_svc_by_port_ncache_check, .ncache_add_fn = cache_req_svc_by_port_ncache_add, .lookup_fn = cache_req_svc_by_port_lookup, - .dpreq_params_fn = cache_req_svc_by_port_dpreq_params + .dp_send_fn = cache_req_svc_by_port_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_user_by_cert.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_user_by_cert.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_user_by_cert.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_user_by_cert.c 2017-03-15 16:53:24.000000000 +0000 @@ -63,29 +63,25 @@ _result); } -static errno_t -cache_req_user_by_cert_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_user_by_cert_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = 0; - *_string = cr->data->cert; - *_flag = NULL; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_CERT, cr->data->cert, 0, NULL); } const struct cache_req_plugin cache_req_user_by_cert = { .name = "User by certificate", - .dp_type = SSS_DP_CERT, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = false, - .only_one_result = true, - .search_all_domains = false, + .only_one_result = false, + .search_all_domains = true, .require_enumeration = false, .allow_missing_fqn = true, .allow_switch_to_upn = false, @@ -99,7 +95,8 @@ .ncache_check_fn = cache_req_user_by_cert_ncache_check, .ncache_add_fn = NULL, .lookup_fn = cache_req_user_by_cert_lookup, - .dpreq_params_fn = cache_req_user_by_cert_dpreq_params + .dp_send_fn = cache_req_user_by_cert_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_user_by_filter.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_user_by_filter.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_user_by_filter.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_user_by_filter.c 2017-03-15 16:53:24.000000000 +0000 @@ -99,26 +99,23 @@ return ret; } -static errno_t -cache_req_user_by_filter_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_user_by_filter_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = cr->data->id; - *_string = cr->data->name.lookup; - *_flag = NULL; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_WILDCARD_USER, cr->data->name.lookup, + cr->data->id, NULL); } const struct cache_req_plugin cache_req_user_by_filter = { .name = "User by filter", - .dp_type = SSS_DP_WILDCARD_USER, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = true, + .ignore_default_domain = false, .bypass_cache = true, .only_one_result = false, .search_all_domains = false, @@ -135,7 +132,8 @@ .ncache_check_fn = NULL, .ncache_add_fn = NULL, .lookup_fn = cache_req_user_by_filter_lookup, - .dpreq_params_fn = cache_req_user_by_filter_dpreq_params + .dp_send_fn = cache_req_user_by_filter_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_user_by_id.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_user_by_id.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_user_by_id.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_user_by_id.c 2017-03-15 16:53:24.000000000 +0000 @@ -102,11 +102,33 @@ return EOK; } +static struct tevent_req * +cache_req_user_by_id_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) +{ + const char *string; + const char *flag; + uint32_t id; + errno_t ret; + + ret = cache_req_user_by_id_dpreq_params(mem_ctx, cr, result, + &string, &id, &flag); + if (ret != EOK) { + return NULL; + } + + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_USER, string, id, flag); +} + const struct cache_req_plugin cache_req_user_by_id = { .name = "User by ID", - .dp_type = SSS_DP_USER, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = true, .search_all_domains = false, @@ -123,7 +145,8 @@ .ncache_check_fn = cache_req_user_by_id_ncache_check, .ncache_add_fn = NULL, .lookup_fn = cache_req_user_by_id_lookup, - .dpreq_params_fn = cache_req_user_by_id_dpreq_params + .dp_send_fn = cache_req_user_by_id_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_user_by_name.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_user_by_name.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_user_by_name.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_user_by_name.c 2017-03-15 16:53:24.000000000 +0000 @@ -105,8 +105,13 @@ struct sss_domain_info *domain, struct ldb_result **_result) { - return sysdb_getpwnam_with_views(mem_ctx, domain, data->name.lookup, - _result); + if (data->attrs == NULL) { + return sysdb_getpwnam_with_views(mem_ctx, domain, data->name.lookup, + _result); + } + + return sysdb_get_user_attr_with_views(mem_ctx, domain, data->name.lookup, + data->attrs, _result); } static errno_t @@ -152,11 +157,33 @@ return EOK; } +static struct tevent_req * +cache_req_user_by_name_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) +{ + const char *string; + const char *flag; + uint32_t id; + errno_t ret; + + ret = cache_req_user_by_name_dpreq_params(mem_ctx, cr, result, + &string, &id, &flag); + if (ret != EOK) { + return NULL; + } + + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_USER, string, id, flag); +} + const struct cache_req_plugin cache_req_user_by_name = { .name = "User by name", - .dp_type = SSS_DP_USER, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = true, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = true, .search_all_domains = false, @@ -173,7 +200,8 @@ .ncache_check_fn = cache_req_user_by_name_ncache_check, .ncache_add_fn = cache_req_user_by_name_ncache_add, .lookup_fn = cache_req_user_by_name_lookup, - .dpreq_params_fn = cache_req_user_by_name_dpreq_params + .dp_send_fn = cache_req_user_by_name_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; struct tevent_req * @@ -191,6 +219,28 @@ if (data == NULL) { return NULL; } + + return cache_req_steal_data_and_send(mem_ctx, ev, rctx, ncache, + cache_refresh_percent, domain, data); +} + +struct tevent_req * +cache_req_user_by_name_attrs_send(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + struct resp_ctx *rctx, + struct sss_nc_ctx *ncache, + int cache_refresh_percent, + const char *domain, + const char *name, + const char **attrs) +{ + struct cache_req_data *data; + + data = cache_req_data_name_attrs(mem_ctx, CACHE_REQ_USER_BY_NAME, + name, attrs); + if (data == NULL) { + return NULL; + } return cache_req_steal_data_and_send(mem_ctx, ev, rctx, ncache, cache_refresh_percent, domain, data); diff -Nru sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_user_by_upn.c sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_user_by_upn.c --- sssd-1.15.0/src/responder/common/cache_req/plugins/cache_req_user_by_upn.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/cache_req/plugins/cache_req_user_by_upn.c 2017-03-15 16:53:24.000000000 +0000 @@ -66,7 +66,7 @@ struct sss_domain_info *domain, struct cache_req_data *data) { - return sss_ncache_check_user(ncache, domain, data->name.lookup); + return sss_ncache_check_upn(ncache, domain, data->name.lookup); } static errno_t @@ -74,7 +74,7 @@ struct sss_domain_info *domain, struct cache_req_data *data) { - return sss_ncache_set_user(ncache, false, domain, data->name.lookup); + return sss_ncache_set_upn(ncache, false, domain, data->name.lookup); } static errno_t @@ -85,33 +85,31 @@ struct ldb_result **_result) { if (data->attrs == NULL) { - return sysdb_getpwupn(mem_ctx, domain, data->name.lookup, _result); + return sysdb_getpwupn(mem_ctx, domain, true, data->name.lookup, _result); } - return sysdb_search_user_by_upn_res(mem_ctx, domain, data->name.lookup, - data->attrs, _result); + return sysdb_search_user_by_upn_res(mem_ctx, domain, true, + data->name.lookup, data->attrs, + _result); } -static errno_t -cache_req_user_by_upn_dpreq_params(TALLOC_CTX *mem_ctx, - struct cache_req *cr, - struct ldb_result *result, - const char **_string, - uint32_t *_id, - const char **_flag) +static struct tevent_req * +cache_req_user_by_upn_dp_send(TALLOC_CTX *mem_ctx, + struct cache_req *cr, + struct cache_req_data *data, + struct sss_domain_info *domain, + struct ldb_result *result) { - *_id = 0; - *_string = cr->data->name.lookup; - *_flag = EXTRA_NAME_IS_UPN; - - return EOK; + return sss_dp_get_account_send(mem_ctx, cr->rctx, domain, true, + SSS_DP_USER, cr->data->name.lookup, + 0, EXTRA_NAME_IS_UPN); } const struct cache_req_plugin cache_req_user_by_upn = { .name = "User by UPN", - .dp_type = SSS_DP_USER, .attr_expiration = SYSDB_CACHE_EXPIRE, .parse_name = false, + .ignore_default_domain = false, .bypass_cache = false, .only_one_result = true, .search_all_domains = false, @@ -128,5 +126,6 @@ .ncache_check_fn = cache_req_user_by_upn_ncache_check, .ncache_add_fn = cache_req_user_by_upn_ncache_add, .lookup_fn = cache_req_user_by_upn_lookup, - .dpreq_params_fn = cache_req_user_by_upn_dpreq_params + .dp_send_fn = cache_req_user_by_upn_dp_send, + .dp_recv_fn = cache_req_common_dp_recv }; diff -Nru sssd-1.15.0/src/responder/common/iface/responder_domain.c sssd-1.15.2/src/responder/common/iface/responder_domain.c --- sssd-1.15.0/src/responder/common/iface/responder_domain.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/common/iface/responder_domain.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,73 @@ +/* + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include +#include + +#include "util/util.h" +#include "sbus/sssd_dbus.h" +#include "responder/common/responder.h" +#include "responder/common/iface/responder_iface.h" + +static void set_domain_state_by_name(struct resp_ctx *rctx, + const char *domain_name, + enum sss_domain_state state) +{ + struct sss_domain_info *dom; + + if (domain_name == NULL) { + DEBUG(SSSDBG_MINOR_FAILURE, "BUG: NULL domain name\n"); + return; + } + + DEBUG(SSSDBG_TRACE_LIBS, "Setting state of domain %s\n", domain_name); + + for (dom = rctx->domains; + dom != NULL; + dom = get_next_domain(dom, SSS_GND_ALL_DOMAINS)) { + + if (strcasecmp(dom->name, domain_name) == 0) { + break; + } + } + + if (dom != NULL) { + sss_domain_set_state(dom, state); + } +} + +int sss_resp_domain_active(struct sbus_request *req, + void *data, + const char *domain_name) +{ + struct resp_ctx *rctx = talloc_get_type(data, struct resp_ctx); + + DEBUG(SSSDBG_TRACE_LIBS, "Enabling domain %s\n", domain_name); + set_domain_state_by_name(rctx, domain_name, DOM_ACTIVE); + return iface_responder_domain_SetActive_finish(req); +} + +int sss_resp_domain_inconsistent(struct sbus_request *req, + void *data, + const char *domain_name) +{ + struct resp_ctx *rctx = talloc_get_type(data, struct resp_ctx); + + DEBUG(SSSDBG_TRACE_LIBS, "Disabling domain %s\n", domain_name); + set_domain_state_by_name(rctx, domain_name, DOM_INCONSISTENT); + return iface_responder_domain_SetInconsistent_finish(req); +} diff -Nru sssd-1.15.0/src/responder/common/iface/responder_iface.c sssd-1.15.2/src/responder/common/iface/responder_iface.c --- sssd-1.15.0/src/responder/common/iface/responder_iface.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/common/iface/responder_iface.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,43 @@ +/* + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include "sbus/sssd_dbus.h" +#include "responder/common/iface/responder_iface.h" +#include "responder/common/responder.h" + +struct iface_responder_domain iface_responder_domain = { + { &iface_responder_domain_meta, 0 }, + .SetActive = sss_resp_domain_active, + .SetInconsistent = sss_resp_domain_inconsistent, +}; + +struct iface_responder_ncache iface_responder_ncache = { + { &iface_responder_ncache_meta, 0 }, + .ResetUsers = sss_resp_reset_ncache_users, + .ResetGroups = sss_resp_reset_ncache_groups, +}; + +static struct sbus_iface_map iface_map[] = { + { RESPONDER_PATH, &iface_responder_domain.vtable }, + { RESPONDER_PATH, &iface_responder_ncache.vtable }, + { NULL, NULL } +}; + +struct sbus_iface_map *responder_get_sbus_interface() +{ + return iface_map; +} diff -Nru sssd-1.15.0/src/responder/common/iface/responder_iface_generated.c sssd-1.15.2/src/responder/common/iface/responder_iface_generated.c --- sssd-1.15.0/src/responder/common/iface/responder_iface_generated.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/common/iface/responder_iface_generated.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,118 @@ +/* The following definitions are auto-generated from responder_iface.xml */ + +#include "util/util.h" +#include "sbus/sssd_dbus.h" +#include "sbus/sssd_dbus_meta.h" +#include "sbus/sssd_dbus_invokers.h" +#include "responder_iface_generated.h" + +/* invokes a handler with a 's' DBus signature */ +static int invoke_s_method(struct sbus_request *dbus_req, void *function_ptr); + +/* arguments for org.freedesktop.sssd.Responder.Domain.SetActive */ +const struct sbus_arg_meta iface_responder_domain_SetActive__in[] = { + { "name", "s" }, + { NULL, } +}; + +int iface_responder_domain_SetActive_finish(struct sbus_request *req) +{ + return sbus_request_return_and_finish(req, + DBUS_TYPE_INVALID); +} + +/* arguments for org.freedesktop.sssd.Responder.Domain.SetInconsistent */ +const struct sbus_arg_meta iface_responder_domain_SetInconsistent__in[] = { + { "name", "s" }, + { NULL, } +}; + +int iface_responder_domain_SetInconsistent_finish(struct sbus_request *req) +{ + return sbus_request_return_and_finish(req, + DBUS_TYPE_INVALID); +} + +/* methods for org.freedesktop.sssd.Responder.Domain */ +const struct sbus_method_meta iface_responder_domain__methods[] = { + { + "SetActive", /* name */ + iface_responder_domain_SetActive__in, + NULL, /* no out_args */ + offsetof(struct iface_responder_domain, SetActive), + invoke_s_method, + }, + { + "SetInconsistent", /* name */ + iface_responder_domain_SetInconsistent__in, + NULL, /* no out_args */ + offsetof(struct iface_responder_domain, SetInconsistent), + invoke_s_method, + }, + { NULL, } +}; + +/* interface info for org.freedesktop.sssd.Responder.Domain */ +const struct sbus_interface_meta iface_responder_domain_meta = { + "org.freedesktop.sssd.Responder.Domain", /* name */ + iface_responder_domain__methods, + NULL, /* no signals */ + NULL, /* no properties */ + sbus_invoke_get_all, /* GetAll invoker */ +}; + +int iface_responder_ncache_ResetUsers_finish(struct sbus_request *req) +{ + return sbus_request_return_and_finish(req, + DBUS_TYPE_INVALID); +} + +int iface_responder_ncache_ResetGroups_finish(struct sbus_request *req) +{ + return sbus_request_return_and_finish(req, + DBUS_TYPE_INVALID); +} + +/* methods for org.freedesktop.sssd.Responder.NegativeCache */ +const struct sbus_method_meta iface_responder_ncache__methods[] = { + { + "ResetUsers", /* name */ + NULL, /* no in_args */ + NULL, /* no out_args */ + offsetof(struct iface_responder_ncache, ResetUsers), + NULL, /* no invoker */ + }, + { + "ResetGroups", /* name */ + NULL, /* no in_args */ + NULL, /* no out_args */ + offsetof(struct iface_responder_ncache, ResetGroups), + NULL, /* no invoker */ + }, + { NULL, } +}; + +/* interface info for org.freedesktop.sssd.Responder.NegativeCache */ +const struct sbus_interface_meta iface_responder_ncache_meta = { + "org.freedesktop.sssd.Responder.NegativeCache", /* name */ + iface_responder_ncache__methods, + NULL, /* no signals */ + NULL, /* no properties */ + sbus_invoke_get_all, /* GetAll invoker */ +}; + +/* invokes a handler with a 's' DBus signature */ +static int invoke_s_method(struct sbus_request *dbus_req, void *function_ptr) +{ + const char * arg_0; + int (*handler)(struct sbus_request *, void *, const char *) = function_ptr; + + if (!sbus_request_parse_or_finish(dbus_req, + DBUS_TYPE_STRING, &arg_0, + DBUS_TYPE_INVALID)) { + return EOK; /* request handled */ + } + + return (handler)(dbus_req, dbus_req->intf->handler_data, + arg_0); +} diff -Nru sssd-1.15.0/src/responder/common/iface/responder_iface_generated.h sssd-1.15.2/src/responder/common/iface/responder_iface_generated.h --- sssd-1.15.0/src/responder/common/iface/responder_iface_generated.h 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/common/iface/responder_iface_generated.h 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,84 @@ +/* The following declarations are auto-generated from responder_iface.xml */ + +#ifndef __RESPONDER_IFACE_XML__ +#define __RESPONDER_IFACE_XML__ + +#include "sbus/sssd_dbus.h" + +/* ------------------------------------------------------------------------ + * DBus Constants + * + * Various constants of interface and method names mostly for use by clients + */ + +/* constants for org.freedesktop.sssd.Responder.Domain */ +#define IFACE_RESPONDER_DOMAIN "org.freedesktop.sssd.Responder.Domain" +#define IFACE_RESPONDER_DOMAIN_SETACTIVE "SetActive" +#define IFACE_RESPONDER_DOMAIN_SETINCONSISTENT "SetInconsistent" + +/* constants for org.freedesktop.sssd.Responder.NegativeCache */ +#define IFACE_RESPONDER_NCACHE "org.freedesktop.sssd.Responder.NegativeCache" +#define IFACE_RESPONDER_NCACHE_RESETUSERS "ResetUsers" +#define IFACE_RESPONDER_NCACHE_RESETGROUPS "ResetGroups" + +/* ------------------------------------------------------------------------ + * DBus handlers + * + * These structures are filled in by implementors of the different + * dbus interfaces to handle method calls. + * + * Handler functions of type sbus_msg_handler_fn accept raw messages, + * other handlers are typed appropriately. If a handler that is + * set to NULL is invoked it will result in a + * org.freedesktop.DBus.Error.NotSupported error for the caller. + * + * Handlers have a matching xxx_finish() function (unless the method has + * accepts raw messages). These finish functions the + * sbus_request_return_and_finish() with the appropriate arguments to + * construct a valid reply. Once a finish function has been called, the + * @dbus_req it was called with is freed and no longer valid. + */ + +/* vtable for org.freedesktop.sssd.Responder.Domain */ +struct iface_responder_domain { + struct sbus_vtable vtable; /* derive from sbus_vtable */ + int (*SetActive)(struct sbus_request *req, void *data, const char *arg_name); + int (*SetInconsistent)(struct sbus_request *req, void *data, const char *arg_name); +}; + +/* finish function for SetActive */ +int iface_responder_domain_SetActive_finish(struct sbus_request *req); + +/* finish function for SetInconsistent */ +int iface_responder_domain_SetInconsistent_finish(struct sbus_request *req); + +/* vtable for org.freedesktop.sssd.Responder.NegativeCache */ +struct iface_responder_ncache { + struct sbus_vtable vtable; /* derive from sbus_vtable */ + int (*ResetUsers)(struct sbus_request *req, void *data); + int (*ResetGroups)(struct sbus_request *req, void *data); +}; + +/* finish function for ResetUsers */ +int iface_responder_ncache_ResetUsers_finish(struct sbus_request *req); + +/* finish function for ResetGroups */ +int iface_responder_ncache_ResetGroups_finish(struct sbus_request *req); + +/* ------------------------------------------------------------------------ + * DBus Interface Metadata + * + * These structure definitions are filled in with the information about + * the interfaces, methods, properties and so on. + * + * The actual definitions are found in the accompanying C file next + * to this header. + */ + +/* interface info for org.freedesktop.sssd.Responder.Domain */ +extern const struct sbus_interface_meta iface_responder_domain_meta; + +/* interface info for org.freedesktop.sssd.Responder.NegativeCache */ +extern const struct sbus_interface_meta iface_responder_ncache_meta; + +#endif /* __RESPONDER_IFACE_XML__ */ diff -Nru sssd-1.15.0/src/responder/common/iface/responder_iface.h sssd-1.15.2/src/responder/common/iface/responder_iface.h --- sssd-1.15.0/src/responder/common/iface/responder_iface.h 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/common/iface/responder_iface.h 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,42 @@ +/* + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#ifndef _RESPONDER_IFACE_H_ +#define _RESPONDER_IFACE_H_ + +#include "responder/common/iface/responder_iface_generated.h" + +#define RESPONDER_PATH "/org/freedesktop/sssd/responder" + +struct sbus_iface_map *responder_get_sbus_interface(void); + +/* org.freedesktop.sssd.Responder.Domain */ + +int sss_resp_domain_active(struct sbus_request *req, + void *data, + const char *domain_name); + +int sss_resp_domain_inconsistent(struct sbus_request *req, + void *data, + const char *domain_name); + +/* org.freedesktop.sssd.Responder.NegativeCache */ + +int sss_resp_reset_ncache_users(struct sbus_request *req, void *data); +int sss_resp_reset_ncache_groups(struct sbus_request *req, void *data); + +#endif /* _RESPONDER_IFACE_H_ */ diff -Nru sssd-1.15.0/src/responder/common/iface/responder_iface.xml sssd-1.15.2/src/responder/common/iface/responder_iface.xml --- sssd-1.15.0/src/responder/common/iface/responder_iface.xml 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/common/iface/responder_iface.xml 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,19 @@ + + + + + + + + + + + + + + + + + + diff -Nru sssd-1.15.0/src/responder/common/iface/responder_ncache.c sssd-1.15.2/src/responder/common/iface/responder_ncache.c --- sssd-1.15.0/src/responder/common/iface/responder_ncache.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/common/iface/responder_ncache.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,41 @@ +/* + Authors: + Pavel Březina + + Copyright (C) 2017 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include "util/util.h" +#include "sbus/sssd_dbus.h" +#include "responder/common/responder.h" +#include "responder/common/negcache.h" +#include "responder/common/iface/responder_iface.h" + +int sss_resp_reset_ncache_users(struct sbus_request *req, void *data) +{ + struct resp_ctx *rctx = talloc_get_type(data, struct resp_ctx); + + sss_ncache_reset_users(rctx->ncache); + return iface_responder_ncache_ResetUsers_finish(req); +} + +int sss_resp_reset_ncache_groups(struct sbus_request *req, void *data) +{ + struct resp_ctx *rctx = talloc_get_type(data, struct resp_ctx); + + sss_ncache_reset_groups(rctx->ncache); + return iface_responder_ncache_ResetGroups_finish(req); +} diff -Nru sssd-1.15.0/src/responder/common/negcache.c sssd-1.15.2/src/responder/common/negcache.c --- sssd-1.15.0/src/responder/common/negcache.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/negcache.c 2017-03-15 16:53:24.000000000 +0000 @@ -289,6 +289,24 @@ return sss_cache_check_ent(ctx, dom, name, sss_ncache_check_user_int); } +int sss_ncache_check_upn(struct sss_nc_ctx *ctx, struct sss_domain_info *dom, + const char *name) +{ + char *neg_cache_name = NULL; + errno_t ret; + + neg_cache_name = talloc_asprintf(ctx, "@%s", name); + if (neg_cache_name == NULL) { + return ENOMEM; + } + + ret = sss_cache_check_ent(ctx, dom, neg_cache_name, + sss_ncache_check_user_int); + talloc_free(neg_cache_name); + + return ret; +} + int sss_ncache_check_group(struct sss_nc_ctx *ctx, struct sss_domain_info *dom, const char *name) { @@ -540,6 +558,24 @@ return sss_ncache_set_ent(ctx, permanent, dom, name, sss_ncache_set_user_int); } +int sss_ncache_set_upn(struct sss_nc_ctx *ctx, bool permanent, + struct sss_domain_info *dom, const char *name) +{ + char *neg_cache_name = NULL; + errno_t ret; + + neg_cache_name = talloc_asprintf(ctx, "@%s", name); + if (neg_cache_name == NULL) { + return ENOMEM; + } + + ret = sss_ncache_set_ent(ctx, permanent, dom, neg_cache_name, + sss_ncache_set_user_int); + talloc_free(neg_cache_name); + + return ret; +} + int sss_ncache_set_group(struct sss_nc_ctx *ctx, bool permanent, struct sss_domain_info *dom, const char *name) { @@ -674,6 +710,62 @@ return EOK; } +static int delete_prefix(struct tdb_context *tdb, + TDB_DATA key, TDB_DATA data, void *state) +{ + const char *prefix = (const char *) state; + + if (strncmp((char *)key.dptr, prefix, strlen(prefix) - 1) != 0) { + /* not interested in this key */ + return 0; + } + + return tdb_delete(tdb, key); +} + +static int sss_ncache_reset_pfx(struct sss_nc_ctx *ctx, + const char **prefixes) +{ + int ret; + + if (prefixes == NULL) { + return EOK; + } + + for (int i = 0; prefixes[i] != NULL; i++) { + ret = tdb_traverse(ctx->tdb, + delete_prefix, + discard_const(prefixes[i])); + if (ret < 0) { + return EIO; + } + } + + return EOK; +} + +int sss_ncache_reset_users(struct sss_nc_ctx *ctx) +{ + const char *prefixes[] = { + NC_USER_PREFIX, + NC_UID_PREFIX, + NULL, + }; + + return sss_ncache_reset_pfx(ctx, prefixes); +} + +int sss_ncache_reset_groups(struct sss_nc_ctx *ctx) +{ + const char *prefixes[] = { + NC_GROUP_PREFIX, + NC_GID_PREFIX, + NULL, + }; + + return sss_ncache_reset_pfx(ctx, prefixes); +} + errno_t sss_ncache_prepopulate(struct sss_nc_ctx *ncache, struct confdb_ctx *cdb, struct resp_ctx *rctx) diff -Nru sssd-1.15.0/src/responder/common/negcache.h sssd-1.15.2/src/responder/common/negcache.h --- sssd-1.15.0/src/responder/common/negcache.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/negcache.h 2017-03-15 16:53:24.000000000 +0000 @@ -33,6 +33,8 @@ /* check if the user is expired according to the passed in time to live */ int sss_ncache_check_user(struct sss_nc_ctx *ctx, struct sss_domain_info *dom, const char *name); +int sss_ncache_check_upn(struct sss_nc_ctx *ctx, struct sss_domain_info *dom, + const char *name); int sss_ncache_check_group(struct sss_nc_ctx *ctx, struct sss_domain_info *dom, const char *name); int sss_ncache_check_netgr(struct sss_nc_ctx *ctx, struct sss_domain_info *dom, @@ -59,6 +61,8 @@ * users and groups) */ int sss_ncache_set_user(struct sss_nc_ctx *ctx, bool permanent, struct sss_domain_info *dom, const char *name); +int sss_ncache_set_upn(struct sss_nc_ctx *ctx, bool permanent, + struct sss_domain_info *dom, const char *name); int sss_ncache_set_group(struct sss_nc_ctx *ctx, bool permanent, struct sss_domain_info *dom, const char *name); int sss_ncache_set_netgr(struct sss_nc_ctx *ctx, bool permanent, @@ -78,6 +82,8 @@ uint16_t port, const char *proto); int sss_ncache_reset_permanent(struct sss_nc_ctx *ctx); +int sss_ncache_reset_users(struct sss_nc_ctx *ctx); +int sss_ncache_reset_groups(struct sss_nc_ctx *ctx); struct resp_ctx; diff -Nru sssd-1.15.0/src/responder/common/responder_common.c sssd-1.15.2/src/responder/common/responder_common.c --- sssd-1.15.0/src/responder/common/responder_common.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/responder_common.c 2017-03-15 16:53:24.000000000 +0000 @@ -38,6 +38,7 @@ #include "confdb/confdb.h" #include "sbus/sssd_dbus.h" #include "responder/common/responder.h" +#include "responder/common/iface/responder_iface.h" #include "responder/common/responder_packet.h" #include "providers/data_provider.h" #include "monitor/monitor_interfaces.h" @@ -666,6 +667,7 @@ { struct be_conn *be_conn; int ret; + struct sbus_iface_map *resp_sbus_iface; be_conn = talloc_zero(rctx, struct be_conn); if (!be_conn) return ENOMEM; @@ -697,6 +699,19 @@ } } + resp_sbus_iface = responder_get_sbus_interface(); + if (resp_sbus_iface != NULL) { + ret = sbus_conn_register_iface_map(be_conn->conn, + resp_sbus_iface, + rctx); + if (ret != EOK) { + DEBUG(SSSDBG_FATAL_FAILURE, + "Cannot register generic responder iface at %s: %d\n", + resp_sbus_iface->path, ret); + return ret; + } + } + DLIST_ADD_END(rctx->be_conns, be_conn, struct be_conn *); /* Identify ourselves to the DP */ @@ -1080,44 +1095,21 @@ } if (rctx->socket_activated || rctx->dbus_activated) { - ret = confdb_get_int(rctx->cdb, rctx->confdb_service_path, - CONFDB_RESPONDER_IDLE_TIMEOUT, - CONFDB_RESPONDER_IDLE_DEFAULT_TIMEOUT, - &rctx->idle_timeout); + ret = responder_setup_idle_timeout_config(rctx); if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, - "Cannot get the responder idle timeout [%d]: %s\n", - ret, sss_strerror(ret)); goto fail; } + } - /* Idle timeout set to 0 means that no timeout will be set up to - * the responder */ - if (rctx->idle_timeout == 0) { - DEBUG(SSSDBG_TRACE_INTERNAL, - "Responder idle timeout won't be set up as the " - "responder_idle_timeout is set to 0"); - } else { - /* Ensure that the responder timeout is at least sixty seconds */ - if (rctx->idle_timeout < 60) { - DEBUG(SSSDBG_TRACE_INTERNAL, - "responder_idle_timeout is set to a value lower than " - "the minimum allowed (60s).\n" - "The minimum allowed value will be used."); - - rctx->idle_timeout = 60; - } - - ret = setup_responder_idle_timer(rctx); - if (ret != EOK) { - DEBUG(SSSDBG_MINOR_FAILURE, - "An error ocurrend when setting up the responder's idle " - "timeout for the responder [%p]: %s [%d].\n" - "The responder won't be automatically shutdown after %d " - "seconds inactive. \n", - rctx, sss_strerror(ret), ret, rctx->idle_timeout); - } - } + ret = confdb_get_bool(rctx->cdb, rctx->confdb_service_path, + CONFDB_RESPONDER_CACHE_FIRST, + false, &rctx->cache_first); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "Cannot get \"cache_first_option\".\n" + "Querying the caches first before querying the " + "Data Providers will not be enforced [%d]: %s.\n", + ret, sss_strerror(ret)); } ret = confdb_get_int(rctx->cdb, rctx->confdb_service_path, @@ -1410,3 +1402,54 @@ "Proceeding with system values\n"); } } + +errno_t responder_setup_idle_timeout_config(struct resp_ctx *rctx) +{ + errno_t ret; + + ret = confdb_get_int(rctx->cdb, rctx->confdb_service_path, + CONFDB_RESPONDER_IDLE_TIMEOUT, + CONFDB_RESPONDER_IDLE_DEFAULT_TIMEOUT, + &rctx->idle_timeout); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "Cannot get the responder idle timeout [%d]: %s\n", + ret, sss_strerror(ret)); + goto fail; + } + + /* Idle timeout set to 0 means that no timeout will be set up to + * the responder */ + if (rctx->idle_timeout == 0) { + DEBUG(SSSDBG_TRACE_INTERNAL, + "Responder idle timeout won't be set up as the " + "responder_idle_timeout is set to 0"); + } else { + /* Ensure that the responder timeout is at least sixty seconds */ + if (rctx->idle_timeout < 60) { + DEBUG(SSSDBG_TRACE_INTERNAL, + "responder_idle_timeout is set to a value lower than " + "the minimum allowed (60s).\n" + "The minimum allowed value will be used."); + + rctx->idle_timeout = 60; + } + + ret = setup_responder_idle_timer(rctx); + if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "An error ocurrend when setting up the responder's idle " + "timeout for the responder [%p]: %s [%d].\n" + "The responder won't be automatically shutdown after %d " + "seconds inactive. \n", + rctx, sss_strerror(ret), ret, + rctx->idle_timeout); + } + } + + ret = EOK; + +fail: + return ret; + +} diff -Nru sssd-1.15.0/src/responder/common/responder_dp.c sssd-1.15.2/src/responder/common/responder_dp.c --- sssd-1.15.0/src/responder/common/responder_dp.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/responder_dp.c 2017-03-15 16:53:24.000000000 +0000 @@ -221,6 +221,7 @@ DEBUG(SSSDBG_FATAL_FAILURE,"The Data Provider returned an error [%s]\n", dbus_message_get_error_name(reply)); /* Falling through to default intentionally*/ + SSS_ATTRIBUTE_FALLTHROUGH; default: /* * Timeout or other error occurred or something @@ -452,6 +453,12 @@ */ static DBusMessage *sss_dp_get_account_msg(void *pvt); +static int sss_dp_account_files_params(struct sss_domain_info *dom, + enum sss_dp_acct_type type_in, + const char *opt_name_in, + enum sss_dp_acct_type *_type_out, + const char **_opt_name_out); + struct sss_dp_account_info { struct sss_domain_info *dom; @@ -494,6 +501,31 @@ goto error; } + if (NEED_CHECK_PROVIDER(dom->provider) == false) { + if (strcmp(dom->provider, "files") == 0) { + /* This is a special case. If the files provider is just being updated, + * we issue an enumeration request. We always use the same request type + * (user enumeration) to make sure concurrent requests are just chained + * in the Data Provider + */ + ret = sss_dp_account_files_params(dom, type, opt_name, + &type, &opt_name); + if (ret == EOK) { + goto error; + } else if (ret != EAGAIN) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set files provider update: %d: %s\n", + ret, sss_strerror(ret)); + goto error; + } + /* EAGAIN, fall through to issuing the request */ + } else { + DEBUG(SSSDBG_TRACE_INTERNAL, "Domain %s does not check DP\n", dom->name); + ret = EOK; + goto error; + } + } + info = talloc_zero(state, struct sss_dp_account_info); info->fast_reply = fast_reply; info->type = type; @@ -538,11 +570,58 @@ return req; error: - tevent_req_error(req, ret); + if (ret == EOK) { + tevent_req_done(req); + } else { + tevent_req_error(req, ret); + } tevent_req_post(req, rctx->ev); return req; } +static int sss_dp_account_files_params(struct sss_domain_info *dom, + enum sss_dp_acct_type type_in, + const char *opt_name_in, + enum sss_dp_acct_type *_type_out, + const char **_opt_name_out) +{ +#if 0 + if (sss_domain_get_state(dom) != DOM_INCONSISTENT) { + return EOK; + } +#endif + + DEBUG(SSSDBG_TRACE_INTERNAL, + "Domain files is not consistent, issuing update\n"); + + switch(type_in) { + case SSS_DP_USER: + case SSS_DP_GROUP: + *_type_out = type_in; + *_opt_name_out = NULL; + return EAGAIN; + case SSS_DP_INITGROUPS: + /* There is no initgroups enumeration so let's use a dummy + * name to let the DP chain the requests + */ + *_type_out = type_in; + *_opt_name_out = DP_REQ_OPT_FILES_INITGR; + return EAGAIN; + /* These are not handled by the files provider, just fall back */ + case SSS_DP_NETGR: + case SSS_DP_SERVICES: + case SSS_DP_SECID: + case SSS_DP_USER_AND_GROUP: + case SSS_DP_CERT: + case SSS_DP_WILDCARD_USER: + case SSS_DP_WILDCARD_GROUP: + return EOK; + } + + DEBUG(SSSDBG_CRIT_FAILURE, "Unhandled type %d\n", type_in); + return EINVAL; +} + static DBusMessage * sss_dp_get_account_msg(void *pvt) { diff -Nru sssd-1.15.0/src/responder/common/responder_dp_ssh.c sssd-1.15.2/src/responder/common/responder_dp_ssh.c --- sssd-1.15.0/src/responder/common/responder_dp_ssh.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/common/responder_dp_ssh.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,155 @@ +/* + Authors: + Jakub Hrozek + + Copyright (C) 2012 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include +#include +#include + +#include "util/util.h" +#include "sbus/sbus_client.h" +#include "sbus/sssd_dbus.h" +#include "providers/data_provider/dp_responder_iface.h" +#include "responder/common/responder.h" + +struct sss_dp_get_ssh_host_info { + struct sss_domain_info *dom; + + bool fast_reply; + const char *name; + const char *alias; +}; + +static DBusMessage * +sss_dp_get_ssh_host_msg(void *pvt); + +struct tevent_req * +sss_dp_get_ssh_host_send(TALLOC_CTX *mem_ctx, + struct resp_ctx *rctx, + struct sss_domain_info *dom, + bool fast_reply, + const char *name, + const char *alias) +{ + errno_t ret; + struct tevent_req *req; + struct sss_dp_get_ssh_host_info *info; + struct sss_dp_req_state *state; + char *key; + + req = tevent_req_create(mem_ctx, &state, struct sss_dp_req_state); + if (!req) { + return NULL; + } + + if (!dom) { + ret = EINVAL; + goto error; + } + + info = talloc_zero(state, struct sss_dp_get_ssh_host_info); + info->fast_reply = fast_reply; + info->name = name; + info->alias = alias; + info->dom = dom; + + if (alias) { + key = talloc_asprintf(state, "%s:%s@%s", name, alias, dom->name); + } else { + key = talloc_asprintf(state, "%s@%s", name, dom->name); + } + if (!key) { + ret = ENOMEM; + goto error; + } + + ret = sss_dp_issue_request(state, rctx, key, dom, sss_dp_get_ssh_host_msg, + info, req); + talloc_free(key); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "Could not issue DP request [%d]: %s\n", + ret, strerror(ret)); + goto error; + } + + return req; + +error: + tevent_req_error(req, ret); + tevent_req_post(req, rctx->ev); + return req; +} + +static DBusMessage * +sss_dp_get_ssh_host_msg(void *pvt) +{ + DBusMessage *msg; + dbus_bool_t dbret; + struct sss_dp_get_ssh_host_info *info; + uint32_t dp_flags = 0; + + info = talloc_get_type(pvt, struct sss_dp_get_ssh_host_info); + + if (info->fast_reply) { + dp_flags |= DP_FAST_REPLY; + } + + msg = dbus_message_new_method_call(NULL, + DP_PATH, + IFACE_DP, + IFACE_DP_HOSTHANDLER); + if (msg == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Out of memory?!\n"); + return NULL; + } + + /* create the message */ + DEBUG(SSSDBG_TRACE_FUNC, + "Creating SSH host request for [%s][%u][%s][%s]\n", + info->dom->name, dp_flags, info->name, + info->alias == NULL ? "-" : info->alias); + + if (info->alias == NULL) { + info->alias = ""; + } + + dbret = dbus_message_append_args(msg, + DBUS_TYPE_UINT32, &dp_flags, + DBUS_TYPE_STRING, &info->name, + DBUS_TYPE_STRING, &info->alias, + DBUS_TYPE_INVALID); + if (!dbret) { + DEBUG(SSSDBG_CRIT_FAILURE, "Failed to build message\n"); + dbus_message_unref(msg); + return NULL; + } + + return msg; +} + +errno_t +sss_dp_get_ssh_host_recv(TALLOC_CTX *mem_ctx, + struct tevent_req *req, + dbus_uint16_t *dp_err, + dbus_uint32_t *dp_ret, + char **err_msg) +{ + return sss_dp_req_recv(mem_ctx, req, dp_err, dp_ret, err_msg); +} diff -Nru sssd-1.15.0/src/responder/common/responder_get_domains.c sssd-1.15.2/src/responder/common/responder_get_domains.c --- sssd-1.15.0/src/responder/common/responder_get_domains.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/responder_get_domains.c 2017-03-15 16:53:24.000000000 +0000 @@ -443,6 +443,7 @@ struct sss_parse_inp_state { struct resp_ctx *rctx; + const char *default_domain; const char *rawinp; char *name; @@ -453,7 +454,9 @@ static void sss_parse_inp_done(struct tevent_req *subreq); struct tevent_req * -sss_parse_inp_send(TALLOC_CTX *mem_ctx, struct resp_ctx *rctx, +sss_parse_inp_send(TALLOC_CTX *mem_ctx, + struct resp_ctx *rctx, + const char *default_domain, const char *rawinp) { errno_t ret; @@ -465,16 +468,35 @@ if (req == NULL) { return NULL; } - state->rawinp = rawinp; + + if (rawinp == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Empty input!\n"); + ret = EINVAL; + goto done; + } + state->rctx = rctx; + state->rawinp = talloc_strdup(state, rawinp); + if (state->rawinp == NULL) { + ret = ENOMEM; + goto done; + } + + + state->default_domain = talloc_strdup(state, default_domain); + if (default_domain != NULL && state->default_domain == NULL) { + ret = ENOMEM; + goto done; + } + /* If the subdomains haven't been checked yet, we need to always * attach to the post-startup subdomain request and only then parse * the input. Otherwise, we might not be able to parse input with a * flat domain name specifier */ if (rctx->get_domains_last_call.tv_sec > 0) { ret = sss_parse_name_for_domains(state, rctx->domains, - rctx->default_domain, rawinp, + default_domain, rawinp, &state->domname, &state->name); if (ret == EOK) { /* Was able to use cached domains */ @@ -532,7 +554,7 @@ state->error = ERR_OK; ret = sss_parse_name_for_domains(state, state->rctx->domains, - state->rctx->default_domain, + state->default_domain, state->rawinp, &state->domname, &state->name); if (ret == EAGAIN && state->domname != NULL && state->name == NULL) { diff -Nru sssd-1.15.0/src/responder/common/responder.h sssd-1.15.2/src/responder/common/responder.h --- sssd-1.15.0/src/responder/common/responder.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/common/responder.h 2017-03-15 16:53:24.000000000 +0000 @@ -48,9 +48,14 @@ * So we set umask to 0111. */ #define SCKT_RSP_UMASK 0111 -/* if there is a provider other than the special local */ +/* Neither the local provider nor the files provider have a back + * end in the traditional sense and can always just consult + * the responder's cache + */ #define NEED_CHECK_PROVIDER(provider) \ - (provider != NULL && strcmp(provider, "local") != 0) + (provider != NULL && \ + (strcmp(provider, "local") != 0 && \ + strcmp(provider, "files") != 0)) /* needed until nsssrv.h is updated */ struct cli_request { @@ -133,6 +138,7 @@ bool shutting_down; bool socket_activated; bool dbus_activated; + bool cache_first; }; struct cli_creds; @@ -318,12 +324,29 @@ dbus_uint32_t *err_min, char **err_msg); +struct tevent_req * +sss_dp_get_ssh_host_send(TALLOC_CTX *mem_ctx, + struct resp_ctx *rctx, + struct sss_domain_info *dom, + bool fast_reply, + const char *name, + const char *alias); + +errno_t +sss_dp_get_ssh_host_recv(TALLOC_CTX *mem_ctx, + struct tevent_req *req, + dbus_uint16_t *dp_err, + dbus_uint32_t *dp_ret, + char **err_msg); + bool sss_utf8_check(const uint8_t *s, size_t n); void responder_set_fd_limit(rlim_t fd_limit); errno_t reset_client_idle_timer(struct cli_ctx *cctx); +errno_t responder_setup_idle_timeout_config(struct resp_ctx *rctx); + #define GET_DOMAINS_DEFAULT_TIMEOUT 60 struct tevent_req *sss_dp_get_domains_send(TALLOC_CTX *mem_ctx, @@ -347,8 +370,11 @@ uid_t *allowed_uids); struct tevent_req * -sss_parse_inp_send(TALLOC_CTX *mem_ctx, struct resp_ctx *rctx, +sss_parse_inp_send(TALLOC_CTX *mem_ctx, + struct resp_ctx *rctx, + const char *default_domain, const char *rawinp); + errno_t sss_parse_inp_recv(struct tevent_req *req, TALLOC_CTX *mem_ctx, char **_name, char **_domname); diff -Nru sssd-1.15.0/src/responder/ifp/ifp_iface.c sssd-1.15.2/src/responder/ifp/ifp_iface.c --- sssd-1.15.0/src/responder/ifp/ifp_iface.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ifp/ifp_iface.c 2017-03-15 16:53:24.000000000 +0000 @@ -87,6 +87,8 @@ .FindByName = ifp_users_find_by_name, .FindByID = ifp_users_find_by_id, .FindByCertificate = ifp_users_find_by_cert, + .ListByCertificate = ifp_users_list_by_cert, + .FindByNameAndCertificate = ifp_users_find_by_name_and_cert, .ListByName = ifp_users_list_by_name, .ListByDomainAndName = ifp_users_list_by_domain_and_name }; diff -Nru sssd-1.15.0/src/responder/ifp/ifp_iface_generated.c sssd-1.15.2/src/responder/ifp/ifp_iface_generated.c --- sssd-1.15.0/src/responder/ifp/ifp_iface_generated.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ifp/ifp_iface_generated.c 2017-03-15 16:53:24.000000000 +0000 @@ -15,6 +15,9 @@ /* invokes a handler with a 'su' DBus signature */ static int invoke_su_method(struct sbus_request *dbus_req, void *function_ptr); +/* invokes a handler with a 'ss' DBus signature */ +static int invoke_ss_method(struct sbus_request *dbus_req, void *function_ptr); + /* invokes a handler with a 'ssu' DBus signature */ static int invoke_ssu_method(struct sbus_request *dbus_req, void *function_ptr); @@ -263,11 +266,6 @@ sbus_invoke_get_all, /* GetAll invoker */ }; -/* methods for org.freedesktop.sssd.infopipe.Components */ -const struct sbus_method_meta iface_ifp_components__methods[] = { - { NULL, } -}; - /* property info for org.freedesktop.sssd.infopipe.Components */ const struct sbus_property_meta iface_ifp_components__properties[] = { { @@ -321,7 +319,7 @@ /* interface info for org.freedesktop.sssd.infopipe.Components */ const struct sbus_interface_meta iface_ifp_components_meta = { "org.freedesktop.sssd.infopipe.Components", /* name */ - iface_ifp_components__methods, + NULL, /* no methods */ NULL, /* no signals */ iface_ifp_components__properties, sbus_invoke_get_all, /* GetAll invoker */ @@ -747,6 +745,46 @@ DBUS_TYPE_INVALID); } +/* arguments for org.freedesktop.sssd.infopipe.Users.ListByCertificate */ +const struct sbus_arg_meta iface_ifp_users_ListByCertificate__in[] = { + { "pem_cert", "s" }, + { "limit", "u" }, + { NULL, } +}; + +/* arguments for org.freedesktop.sssd.infopipe.Users.ListByCertificate */ +const struct sbus_arg_meta iface_ifp_users_ListByCertificate__out[] = { + { "result", "ao" }, + { NULL, } +}; + +int iface_ifp_users_ListByCertificate_finish(struct sbus_request *req, const char *arg_result[], int len_result) +{ + return sbus_request_return_and_finish(req, + DBUS_TYPE_ARRAY, DBUS_TYPE_OBJECT_PATH, &arg_result, len_result, + DBUS_TYPE_INVALID); +} + +/* arguments for org.freedesktop.sssd.infopipe.Users.FindByNameAndCertificate */ +const struct sbus_arg_meta iface_ifp_users_FindByNameAndCertificate__in[] = { + { "name", "s" }, + { "pem_cert", "s" }, + { NULL, } +}; + +/* arguments for org.freedesktop.sssd.infopipe.Users.FindByNameAndCertificate */ +const struct sbus_arg_meta iface_ifp_users_FindByNameAndCertificate__out[] = { + { "result", "o" }, + { NULL, } +}; + +int iface_ifp_users_FindByNameAndCertificate_finish(struct sbus_request *req, const char *arg_result) +{ + return sbus_request_return_and_finish(req, + DBUS_TYPE_OBJECT_PATH, &arg_result, + DBUS_TYPE_INVALID); +} + /* arguments for org.freedesktop.sssd.infopipe.Users.ListByName */ const struct sbus_arg_meta iface_ifp_users_ListByName__in[] = { { "name_filter", "s" }, @@ -812,6 +850,20 @@ invoke_s_method, }, { + "ListByCertificate", /* name */ + iface_ifp_users_ListByCertificate__in, + iface_ifp_users_ListByCertificate__out, + offsetof(struct iface_ifp_users, ListByCertificate), + invoke_su_method, + }, + { + "FindByNameAndCertificate", /* name */ + iface_ifp_users_FindByNameAndCertificate__in, + iface_ifp_users_FindByNameAndCertificate__out, + offsetof(struct iface_ifp_users, FindByNameAndCertificate), + invoke_ss_method, + }, + { "ListByName", /* name */ iface_ifp_users_ListByName__in, iface_ifp_users_ListByName__out, @@ -1148,6 +1200,25 @@ sbus_invoke_get_all, /* GetAll invoker */ }; +/* invokes a handler with a 'ss' DBus signature */ +static int invoke_ss_method(struct sbus_request *dbus_req, void *function_ptr) +{ + const char * arg_0; + const char * arg_1; + int (*handler)(struct sbus_request *, void *, const char *, const char *) = function_ptr; + + if (!sbus_request_parse_or_finish(dbus_req, + DBUS_TYPE_STRING, &arg_0, + DBUS_TYPE_STRING, &arg_1, + DBUS_TYPE_INVALID)) { + return EOK; /* request handled */ + } + + return (handler)(dbus_req, dbus_req->intf->handler_data, + arg_0, + arg_1); +} + /* invokes a handler with a 'ssu' DBus signature */ static int invoke_ssu_method(struct sbus_request *dbus_req, void *function_ptr) { diff -Nru sssd-1.15.0/src/responder/ifp/ifp_iface_generated.h sssd-1.15.2/src/responder/ifp/ifp_iface_generated.h --- sssd-1.15.0/src/responder/ifp/ifp_iface_generated.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ifp/ifp_iface_generated.h 2017-03-15 16:53:24.000000000 +0000 @@ -72,6 +72,8 @@ #define IFACE_IFP_USERS_FINDBYNAME "FindByName" #define IFACE_IFP_USERS_FINDBYID "FindByID" #define IFACE_IFP_USERS_FINDBYCERTIFICATE "FindByCertificate" +#define IFACE_IFP_USERS_LISTBYCERTIFICATE "ListByCertificate" +#define IFACE_IFP_USERS_FINDBYNAMEANDCERTIFICATE "FindByNameAndCertificate" #define IFACE_IFP_USERS_LISTBYNAME "ListByName" #define IFACE_IFP_USERS_LISTBYDOMAINANDNAME "ListByDomainAndName" @@ -247,6 +249,8 @@ int (*FindByName)(struct sbus_request *req, void *data, const char *arg_name); int (*FindByID)(struct sbus_request *req, void *data, uint32_t arg_id); int (*FindByCertificate)(struct sbus_request *req, void *data, const char *arg_pem_cert); + int (*ListByCertificate)(struct sbus_request *req, void *data, const char *arg_pem_cert, uint32_t arg_limit); + int (*FindByNameAndCertificate)(struct sbus_request *req, void *data, const char *arg_name, const char *arg_pem_cert); int (*ListByName)(struct sbus_request *req, void *data, const char *arg_name_filter, uint32_t arg_limit); int (*ListByDomainAndName)(struct sbus_request *req, void *data, const char *arg_domain_name, const char *arg_name_filter, uint32_t arg_limit); }; @@ -260,6 +264,12 @@ /* finish function for FindByCertificate */ int iface_ifp_users_FindByCertificate_finish(struct sbus_request *req, const char *arg_result); +/* finish function for ListByCertificate */ +int iface_ifp_users_ListByCertificate_finish(struct sbus_request *req, const char *arg_result[], int len_result); + +/* finish function for FindByNameAndCertificate */ +int iface_ifp_users_FindByNameAndCertificate_finish(struct sbus_request *req, const char *arg_result); + /* finish function for ListByName */ int iface_ifp_users_ListByName_finish(struct sbus_request *req, const char *arg_result[], int len_result); diff -Nru sssd-1.15.0/src/responder/ifp/ifp_iface.xml sssd-1.15.2/src/responder/ifp/ifp_iface.xml --- sssd-1.15.0/src/responder/ifp/ifp_iface.xml 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ifp/ifp_iface.xml 2017-03-15 16:53:24.000000000 +0000 @@ -152,6 +152,16 @@ + + + + + + + + + + diff -Nru sssd-1.15.0/src/responder/ifp/ifpsrv_cmd.c sssd-1.15.2/src/responder/ifp/ifpsrv_cmd.c --- sssd-1.15.0/src/responder/ifp/ifpsrv_cmd.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ifp/ifpsrv_cmd.c 2017-03-15 16:53:24.000000000 +0000 @@ -453,7 +453,7 @@ state->ncache = ncache; state->search_type = search_type; - subreq = sss_parse_inp_send(req, rctx, inp); + subreq = sss_parse_inp_send(req, rctx, rctx->default_domain, inp); if (subreq == NULL) { ret = ENOMEM; goto done; diff -Nru sssd-1.15.0/src/responder/ifp/ifp_users.c sssd-1.15.2/src/responder/ifp/ifp_users.c --- sssd-1.15.0/src/responder/ifp/ifp_users.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ifp/ifp_users.c 2017-03-15 16:53:24.000000000 +0000 @@ -263,6 +263,8 @@ return EOK; } +#define SBUS_ERROR_MORE_THAN_ONE "org.freedesktop.sssd.Error.MoreThanOne" + static void ifp_users_find_by_cert_done(struct tevent_req *req) { DBusError *error; @@ -285,6 +287,14 @@ goto done; } + if (result->count > 1) { + ret = EINVAL; + error = sbus_error_new(sbus_req, SBUS_ERROR_MORE_THAN_ONE, + "More than one user found. " + "Use ListByCertificate to get all."); + goto done; + } + object_path = ifp_users_build_path_from_msg(sbus_req, result->domain, result->msgs[0]); if (object_path == NULL) { @@ -303,6 +313,118 @@ return; } +static int ifp_users_list_by_cert_step(struct ifp_list_ctx *list_ctx); +static void ifp_users_list_by_cert_done(struct tevent_req *req); +static void ifp_users_list_by_name_reply(struct ifp_list_ctx *list_ctx); +static int ifp_users_list_copy(struct ifp_list_ctx *list_ctx, + struct ldb_result *result); + +int ifp_users_list_by_cert(struct sbus_request *sbus_req, void *data, + const char *pem_cert, uint32_t limit) +{ + struct ifp_ctx *ctx; + struct ifp_list_ctx *list_ctx; + char *derb64; + int ret; + DBusError *error; + + ret = sss_cert_pem_to_derb64(sbus_req, pem_cert, &derb64); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "sss_cert_pem_to_derb64 failed.\n"); + + if (ret == ENOMEM) { + return ret; + } + + error = sbus_error_new(sbus_req, DBUS_ERROR_INVALID_ARGS, + "Invalid certificate format"); + sbus_request_fail_and_finish(sbus_req, error); + /* the connection is already terminated with an error message, hence + * we have to return EOK to not terminate the connection twice. */ + return EOK; + } + + ctx = talloc_get_type(data, struct ifp_ctx); + if (ctx == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Invalid pointer!\n"); + return ERR_INTERNAL; + } + + list_ctx = ifp_list_ctx_new(sbus_req, ctx, derb64, limit); + if (list_ctx == NULL) { + return ENOMEM; + } + + return ifp_users_list_by_cert_step(list_ctx); +} + +static int ifp_users_list_by_cert_step(struct ifp_list_ctx *list_ctx) +{ + struct tevent_req *req; + + req = cache_req_user_by_cert_send(list_ctx, + list_ctx->ctx->rctx->ev, + list_ctx->ctx->rctx, + list_ctx->ctx->rctx->ncache, + 0, + list_ctx->dom->name, + list_ctx->filter); + if (req == NULL) { + return ENOMEM; + } + + tevent_req_set_callback(req, ifp_users_list_by_cert_done, list_ctx); + + return EOK; +} + +static void ifp_users_list_by_cert_done(struct tevent_req *req) +{ + DBusError *error; + struct ifp_list_ctx *list_ctx; + struct sbus_request *sbus_req; + struct cache_req_result *result; + errno_t ret; + + list_ctx = tevent_req_callback_data(req, struct ifp_list_ctx); + sbus_req = list_ctx->sbus_req; + + ret = cache_req_user_by_cert_recv(sbus_req, req, &result); + talloc_zfree(req); + if (ret != EOK && ret != ENOENT) { + error = sbus_error_new(sbus_req, DBUS_ERROR_FAILED, + "Failed to fetch user [%d]: %s\n", + ret, sss_strerror(ret)); + sbus_request_fail_and_finish(sbus_req, error); + return; + } + + if (ret == EOK) { + ret = ifp_users_list_copy(list_ctx, result->ldb_result); + if (ret != EOK) { + error = sbus_error_new(sbus_req, SBUS_ERROR_INTERNAL, + "Failed to copy domain result"); + sbus_request_fail_and_finish(sbus_req, error); + return; + } + } + + list_ctx->dom = get_next_domain(list_ctx->dom, SSS_GND_DESCEND); + if (list_ctx->dom == NULL) { + return ifp_users_list_by_name_reply(list_ctx); + } + + ret = ifp_users_list_by_cert_step(list_ctx); + if (ret != EOK) { + error = sbus_error_new(sbus_req, SBUS_ERROR_INTERNAL, + "Failed to start next-domain search"); + sbus_request_fail_and_finish(sbus_req, error); + return; + } + + return; +} + static int ifp_users_list_copy(struct ifp_list_ctx *list_ctx, struct ldb_result *result) { @@ -324,6 +446,301 @@ return EOK; } +struct name_and_cert_ctx { + const char *name; + char *derb64; + struct sbus_request *sbus_req; + char *user_opath; + struct ifp_list_ctx *list_ctx; +}; + +static void ifp_users_find_by_name_and_cert_name_done(struct tevent_req *req); +static int ifp_users_find_by_name_and_cert_step( + struct name_and_cert_ctx *name_and_cert_ctx); +static void ifp_users_find_by_name_and_cert_done(struct tevent_req *req); +static void ifp_users_find_by_name_and_cert_reply( + struct name_and_cert_ctx *name_and_cert_ctx); + +int ifp_users_find_by_name_and_cert(struct sbus_request *sbus_req, void *data, + const char *name, const char *pem_cert) +{ + struct ifp_ctx *ctx; + struct tevent_req *req; + int ret; + struct name_and_cert_ctx *name_and_cert_ctx = NULL; + DBusError *error; + + ctx = talloc_get_type(data, struct ifp_ctx); + if (ctx == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Invalid pointer!\n"); + return ERR_INTERNAL; + } + + if ((name == NULL || *name == '\0') + && (pem_cert == NULL || *pem_cert == '\0')) { + error = sbus_error_new(sbus_req, DBUS_ERROR_INVALID_ARGS, + "Missing input"); + sbus_request_fail_and_finish(sbus_req, error); + /* the connection is already terminated with an error message, hence + * we have to return EOK to not terminate the connection twice. */ + return EOK; + } + + name_and_cert_ctx = talloc_zero(sbus_req, struct name_and_cert_ctx); + if (name_and_cert_ctx == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc failed.\n"); + return ENOMEM; + } + + name_and_cert_ctx->sbus_req = sbus_req; + + if (name != NULL && *name != '\0') { + name_and_cert_ctx->name = talloc_strdup(name_and_cert_ctx, name); + if (name_and_cert_ctx->name == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strdup failed.\n"); + return ENOMEM; + } + } + + if (pem_cert != NULL && *pem_cert != '\0') { + ret = sss_cert_pem_to_derb64(name_and_cert_ctx, pem_cert, + &(name_and_cert_ctx->derb64)); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "sss_cert_pem_to_derb64 failed.\n"); + + if (ret == ENOMEM) { + return ret; + } + + error = sbus_error_new(sbus_req, DBUS_ERROR_INVALID_ARGS, + "Invalid certificate format"); + sbus_request_fail_and_finish(sbus_req, error); + /* the connection is already terminated with an error message, hence + * we have to return EOK to not terminate the connection twice. */ + return EOK; + } + + /* FIXME: if unlimted searches with limit=0 will work please replace + * 100 with 0. */ + name_and_cert_ctx->list_ctx = ifp_list_ctx_new(sbus_req, ctx, + name_and_cert_ctx->derb64, + 100); + if (name_and_cert_ctx->list_ctx == NULL) { + return ENOMEM; + } + } + + if (name_and_cert_ctx->name != NULL) { + req = cache_req_user_by_name_send(sbus_req, ctx->rctx->ev, ctx->rctx, + ctx->rctx->ncache, 0, NULL, + name_and_cert_ctx->name); + if (req == NULL) { + return ENOMEM; + } + + tevent_req_set_callback(req, ifp_users_find_by_name_and_cert_name_done, + name_and_cert_ctx); + } else { + ret = ifp_users_find_by_name_and_cert_step(name_and_cert_ctx); + if (ret != EOK) { + return ret; + } + } + + return EOK; +} + +static void ifp_users_find_by_name_and_cert_name_done(struct tevent_req *req) +{ + DBusError *error; + struct name_and_cert_ctx *name_and_cert_ctx = NULL; + struct sbus_request *sbus_req; + struct cache_req_result *result; + errno_t ret; + + name_and_cert_ctx = tevent_req_callback_data(req, struct name_and_cert_ctx); + sbus_req = name_and_cert_ctx->sbus_req; + + ret = cache_req_user_by_name_recv(name_and_cert_ctx, req, &result); + talloc_zfree(req); + if (ret == ENOENT) { + error = sbus_error_new(sbus_req, SBUS_ERROR_NOT_FOUND, + "User not found"); + goto fail; + } else if (ret != EOK) { + error = sbus_error_new(sbus_req, DBUS_ERROR_FAILED, + "Failed to fetch user [%d]: %s\n", + ret, sss_strerror(ret)); + goto fail; + } + + name_and_cert_ctx->user_opath = ifp_users_build_path_from_msg( + name_and_cert_ctx, + result->domain, + result->msgs[0]); + if (name_and_cert_ctx->user_opath == NULL) { + error = sbus_error_new(sbus_req, SBUS_ERROR_INTERNAL, + "Failed to compose object path"); + goto fail; + } + + if (name_and_cert_ctx->list_ctx != NULL) { + ret = ifp_users_find_by_name_and_cert_step(name_and_cert_ctx); + if (ret != EOK) { + error = sbus_error_new(sbus_req, DBUS_ERROR_FAILED, + "Failed to fetch certificate [%d]: %s\n", + ret, sss_strerror(ret)); + goto fail; + } + } else { + ifp_users_find_by_name_and_cert_reply(name_and_cert_ctx); + } + + return; + +fail: + sbus_request_fail_and_finish(sbus_req, error); + return; +} + +static int ifp_users_find_by_name_and_cert_step( + struct name_and_cert_ctx *name_and_cert_ctx) +{ + struct tevent_req *req; + struct ifp_list_ctx *list_ctx = name_and_cert_ctx->list_ctx; + + req = cache_req_user_by_cert_send(list_ctx, + list_ctx->ctx->rctx->ev, + list_ctx->ctx->rctx, + list_ctx->ctx->rctx->ncache, + 0, + list_ctx->dom->name, + list_ctx->filter); + if (req == NULL) { + return ENOMEM; + } + + tevent_req_set_callback(req, ifp_users_find_by_name_and_cert_done, + name_and_cert_ctx); + + return EOK; +} + +static void ifp_users_find_by_name_and_cert_done(struct tevent_req *req) +{ + DBusError *error; + struct name_and_cert_ctx *name_and_cert_ctx; + struct ifp_list_ctx *list_ctx; + struct sbus_request *sbus_req; + struct cache_req_result *result; + errno_t ret; + + name_and_cert_ctx = tevent_req_callback_data(req, struct name_and_cert_ctx); + list_ctx = name_and_cert_ctx->list_ctx; + sbus_req = list_ctx->sbus_req; + + ret = cache_req_user_by_cert_recv(name_and_cert_ctx, req, &result); + talloc_zfree(req); + if (ret != EOK && ret != ENOENT) { + error = sbus_error_new(sbus_req, DBUS_ERROR_FAILED, + "Failed to fetch user [%d]: %s\n", + ret, sss_strerror(ret)); + sbus_request_fail_and_finish(sbus_req, error); + return; + } + + if (ret == EOK) { + ret = ifp_users_list_copy(list_ctx, result->ldb_result); + if (ret != EOK) { + error = sbus_error_new(sbus_req, SBUS_ERROR_INTERNAL, + "Failed to copy domain result"); + sbus_request_fail_and_finish(sbus_req, error); + return; + } + } + + list_ctx->dom = get_next_domain(list_ctx->dom, SSS_GND_DESCEND); + if (list_ctx->dom == NULL) { + return ifp_users_find_by_name_and_cert_reply(name_and_cert_ctx); + } + + ret = ifp_users_find_by_name_and_cert_step(name_and_cert_ctx); + if (ret != EOK) { + error = sbus_error_new(sbus_req, SBUS_ERROR_INTERNAL, + "Failed to start next-domain search"); + sbus_request_fail_and_finish(sbus_req, error); + return; + } + return; +} + +static void ifp_users_find_by_name_and_cert_reply( + struct name_and_cert_ctx *name_and_cert_ctx) +{ + struct sbus_request *sbus_req = name_and_cert_ctx->sbus_req; + struct ifp_list_ctx *list_ctx = name_and_cert_ctx->list_ctx; + DBusError *error; + size_t c; + + /* If no name was given check if there is only one user mapped to the + * certificate and return its object path. Either no or more than one + * mapped users are errors in this case. + * The case where a given name could not be found is already handled in + * ifp_users_find_by_name_and_cert_name_done(). */ + if (name_and_cert_ctx->user_opath == NULL) { + if (list_ctx == NULL || list_ctx->path_count == 0) { + error = sbus_error_new(sbus_req, SBUS_ERROR_NOT_FOUND, + "User not found"); + sbus_request_fail_and_finish(sbus_req, error); + } else if (list_ctx->path_count == 1) { + iface_ifp_users_FindByNameAndCertificate_finish(sbus_req, + list_ctx->paths[0]); + } else { + error = sbus_error_new(sbus_req, SBUS_ERROR_MORE_THAN_ONE, + "More than one user found. " + "Use ListByCertificate to get all."); + sbus_request_fail_and_finish(sbus_req, error); + } + return; + } + + /* If there was no certficate given just return the object path of the + * user found by name. If a certificate was given an no mapped user was + * found return an error. */ + if (list_ctx == NULL || list_ctx->path_count == 0) { + if (name_and_cert_ctx->derb64 == NULL) { + iface_ifp_users_FindByNameAndCertificate_finish(sbus_req, + name_and_cert_ctx->user_opath); + } else { + error = sbus_error_new(sbus_req, SBUS_ERROR_NOT_FOUND, + "No user matching name and certificate " + "found"); + sbus_request_fail_and_finish(sbus_req, error); + } + return; + } + + /* Check if the user found by name is one of the users mapped to the + * certificate. */ + for (c = 0; c < list_ctx->path_count; c++) { + if (strcmp(name_and_cert_ctx->user_opath, list_ctx->paths[c]) == 0) { + iface_ifp_users_FindByNameAndCertificate_finish(sbus_req, + name_and_cert_ctx->user_opath); + return; + } + } + + /* A user was found by name but the certificate is mapped to one or more + * different users. */ + error = sbus_error_new(sbus_req, SBUS_ERROR_NOT_FOUND, + "No user matching name and certificate found"); + sbus_request_fail_and_finish(sbus_req, error); + + /* name_and_cert_ctx is already freed because sbus_req (the parent) is + * already freed by the DBus finish calls */ + return; +} + static int ifp_users_list_by_name_step(struct ifp_list_ctx *list_ctx); static void ifp_users_list_by_name_done(struct tevent_req *req); static void ifp_users_list_by_name_reply(struct ifp_list_ctx *list_ctx); diff -Nru sssd-1.15.0/src/responder/ifp/ifp_users.h sssd-1.15.2/src/responder/ifp/ifp_users.h --- sssd-1.15.0/src/responder/ifp/ifp_users.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ifp/ifp_users.h 2017-03-15 16:53:24.000000000 +0000 @@ -44,6 +44,16 @@ void *data, const char *pem_cert); +int ifp_users_list_by_cert(struct sbus_request *sbus_req, + void *data, + const char *pem_cert, + uint32_t limit); + +int ifp_users_find_by_name_and_cert(struct sbus_request *sbus_req, + void *data, + const char *name, + const char *pem_cert); + int ifp_users_list_by_name(struct sbus_request *sbus_req, void *data, const char *filter, diff -Nru sssd-1.15.0/src/responder/nss/nss_cmd.c sssd-1.15.2/src/responder/nss/nss_cmd.c --- sssd-1.15.0/src/responder/nss/nss_cmd.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_cmd.c 2017-03-15 16:53:24.000000000 +0000 @@ -929,7 +929,7 @@ static errno_t nss_cmd_getnamebycert(struct cli_ctx *cli_ctx) { return nss_getby_cert(cli_ctx, CACHE_REQ_USER_BY_CERT, - nss_protocol_fill_name); + nss_protocol_fill_single_name); } struct sss_cmd_table *get_nss_cmds(void) diff -Nru sssd-1.15.0/src/responder/nss/nss_iface.c sssd-1.15.2/src/responder/nss/nss_iface.c --- sssd-1.15.0/src/responder/nss/nss_iface.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_iface.c 2017-03-15 16:53:24.000000000 +0000 @@ -36,7 +36,9 @@ int ret; int i, j; - for (dom = nctx->rctx->domains; dom; dom = get_next_domain(dom, 0)) { + for (dom = nctx->rctx->domains; + dom; + dom = get_next_domain(dom, SSS_GND_DESCEND)) { if (strcasecmp(dom->name, domain) == 0) { break; } @@ -144,6 +146,41 @@ talloc_free(tmp_ctx); } +int nss_memorycache_invalidate_users(struct sbus_request *req, void *data) +{ + struct resp_ctx *rctx = talloc_get_type(data, struct resp_ctx); + struct nss_ctx *nctx = talloc_get_type(rctx->pvt_ctx, struct nss_ctx); + + DEBUG(SSSDBG_TRACE_LIBS, "Invalidating all users in memory cache\n"); + sss_mmap_cache_reset(nctx->pwd_mc_ctx); + + return iface_nss_memorycache_InvalidateAllUsers_finish(req); +} + +int nss_memorycache_invalidate_groups(struct sbus_request *req, void *data) +{ + struct resp_ctx *rctx = talloc_get_type(data, struct resp_ctx); + struct nss_ctx *nctx = talloc_get_type(rctx->pvt_ctx, struct nss_ctx); + + DEBUG(SSSDBG_TRACE_LIBS, "Invalidating all groups in memory cache\n"); + sss_mmap_cache_reset(nctx->grp_mc_ctx); + + return iface_nss_memorycache_InvalidateAllGroups_finish(req); +} + +int nss_memorycache_invalidate_initgroups(struct sbus_request *req, void *data) +{ + struct resp_ctx *rctx = talloc_get_type(data, struct resp_ctx); + struct nss_ctx *nctx = talloc_get_type(rctx->pvt_ctx, struct nss_ctx); + + DEBUG(SSSDBG_TRACE_LIBS, + "Invalidating all initgroup records in memory cache\n"); + sss_mmap_cache_reset(nctx->initgr_mc_ctx); + + return iface_nss_memorycache_InvalidateAllInitgroups_finish(req); +} + + int nss_memorycache_update_initgroups(struct sbus_request *sbus_req, void *data, const char *user, @@ -164,7 +201,10 @@ struct iface_nss_memorycache iface_nss_memorycache = { { &iface_nss_memorycache_meta, 0 }, - .UpdateInitgroups = nss_memorycache_update_initgroups + .UpdateInitgroups = nss_memorycache_update_initgroups, + .InvalidateAllUsers = nss_memorycache_invalidate_users, + .InvalidateAllGroups = nss_memorycache_invalidate_groups, + .InvalidateAllInitgroups = nss_memorycache_invalidate_initgroups, }; static struct sbus_iface_map iface_map[] = { diff -Nru sssd-1.15.0/src/responder/nss/nss_iface_generated.c sssd-1.15.2/src/responder/nss/nss_iface_generated.c --- sssd-1.15.0/src/responder/nss/nss_iface_generated.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_iface_generated.c 2017-03-15 16:53:24.000000000 +0000 @@ -23,6 +23,24 @@ DBUS_TYPE_INVALID); } +int iface_nss_memorycache_InvalidateAllUsers_finish(struct sbus_request *req) +{ + return sbus_request_return_and_finish(req, + DBUS_TYPE_INVALID); +} + +int iface_nss_memorycache_InvalidateAllGroups_finish(struct sbus_request *req) +{ + return sbus_request_return_and_finish(req, + DBUS_TYPE_INVALID); +} + +int iface_nss_memorycache_InvalidateAllInitgroups_finish(struct sbus_request *req) +{ + return sbus_request_return_and_finish(req, + DBUS_TYPE_INVALID); +} + /* methods for org.freedesktop.sssd.nss.MemoryCache */ const struct sbus_method_meta iface_nss_memorycache__methods[] = { { @@ -32,6 +50,27 @@ offsetof(struct iface_nss_memorycache, UpdateInitgroups), invoke_ssau_method, }, + { + "InvalidateAllUsers", /* name */ + NULL, /* no in_args */ + NULL, /* no out_args */ + offsetof(struct iface_nss_memorycache, InvalidateAllUsers), + NULL, /* no invoker */ + }, + { + "InvalidateAllGroups", /* name */ + NULL, /* no in_args */ + NULL, /* no out_args */ + offsetof(struct iface_nss_memorycache, InvalidateAllGroups), + NULL, /* no invoker */ + }, + { + "InvalidateAllInitgroups", /* name */ + NULL, /* no in_args */ + NULL, /* no out_args */ + offsetof(struct iface_nss_memorycache, InvalidateAllInitgroups), + NULL, /* no invoker */ + }, { NULL, } }; diff -Nru sssd-1.15.0/src/responder/nss/nss_iface_generated.h sssd-1.15.2/src/responder/nss/nss_iface_generated.h --- sssd-1.15.0/src/responder/nss/nss_iface_generated.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_iface_generated.h 2017-03-15 16:53:24.000000000 +0000 @@ -14,6 +14,9 @@ /* constants for org.freedesktop.sssd.nss.MemoryCache */ #define IFACE_NSS_MEMORYCACHE "org.freedesktop.sssd.nss.MemoryCache" #define IFACE_NSS_MEMORYCACHE_UPDATEINITGROUPS "UpdateInitgroups" +#define IFACE_NSS_MEMORYCACHE_INVALIDATEALLUSERS "InvalidateAllUsers" +#define IFACE_NSS_MEMORYCACHE_INVALIDATEALLGROUPS "InvalidateAllGroups" +#define IFACE_NSS_MEMORYCACHE_INVALIDATEALLINITGROUPS "InvalidateAllInitgroups" /* ------------------------------------------------------------------------ * DBus handlers @@ -37,11 +40,23 @@ struct iface_nss_memorycache { struct sbus_vtable vtable; /* derive from sbus_vtable */ int (*UpdateInitgroups)(struct sbus_request *req, void *data, const char *arg_user, const char *arg_domain, uint32_t arg_groups[], int len_groups); + int (*InvalidateAllUsers)(struct sbus_request *req, void *data); + int (*InvalidateAllGroups)(struct sbus_request *req, void *data); + int (*InvalidateAllInitgroups)(struct sbus_request *req, void *data); }; /* finish function for UpdateInitgroups */ int iface_nss_memorycache_UpdateInitgroups_finish(struct sbus_request *req); +/* finish function for InvalidateAllUsers */ +int iface_nss_memorycache_InvalidateAllUsers_finish(struct sbus_request *req); + +/* finish function for InvalidateAllGroups */ +int iface_nss_memorycache_InvalidateAllGroups_finish(struct sbus_request *req); + +/* finish function for InvalidateAllInitgroups */ +int iface_nss_memorycache_InvalidateAllInitgroups_finish(struct sbus_request *req); + /* ------------------------------------------------------------------------ * DBus Interface Metadata * diff -Nru sssd-1.15.0/src/responder/nss/nss_iface.xml sssd-1.15.2/src/responder/nss/nss_iface.xml --- sssd-1.15.0/src/responder/nss/nss_iface.xml 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_iface.xml 2017-03-15 16:53:24.000000000 +0000 @@ -8,5 +8,11 @@ + + + + + + diff -Nru sssd-1.15.0/src/responder/nss/nss_private.h sssd-1.15.2/src/responder/nss/nss_private.h --- sssd-1.15.0/src/responder/nss/nss_private.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_private.h 2017-03-15 16:53:24.000000000 +0000 @@ -151,4 +151,8 @@ const char *member_name, struct sized_string **_name); +const char * +nss_get_pwfield(struct nss_ctx *nctx, + struct sss_domain_info *dom); + #endif /* _NSS_PRIVATE_H_ */ diff -Nru sssd-1.15.0/src/responder/nss/nss_protocol_grent.c sssd-1.15.2/src/responder/nss/nss_protocol_grent.c --- sssd-1.15.0/src/responder/nss/nss_protocol_grent.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_protocol_grent.c 2017-03-15 16:53:24.000000000 +0000 @@ -219,9 +219,6 @@ return ENOMEM; } - /* Password field content. */ - to_sized_string(&pwfield, nss_ctx->pwfield); - /* First two fields (length and reserved), filled up later. */ ret = sss_packet_grow(packet, 2 * sizeof(uint32_t)); if (ret != EOK) { @@ -235,6 +232,9 @@ talloc_free_children(tmp_ctx); msg = result->msgs[i]; + /* Password field content. */ + to_sized_string(&pwfield, nss_get_pwfield(nss_ctx, result->domain)); + ret = nss_get_grent(tmp_ctx, nss_ctx, result->domain, msg, &gid, &name); if (ret != EOK) { diff -Nru sssd-1.15.0/src/responder/nss/nss_protocol.h sssd-1.15.2/src/responder/nss/nss_protocol.h --- sssd-1.15.0/src/responder/nss/nss_protocol.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_protocol.h 2017-03-15 16:53:24.000000000 +0000 @@ -169,6 +169,12 @@ struct cache_req_result *result); errno_t +nss_protocol_fill_single_name(struct nss_ctx *nss_ctx, + struct nss_cmd_ctx *cmd_ctx, + struct sss_packet *packet, + struct cache_req_result *result); + +errno_t nss_protocol_fill_id(struct nss_ctx *nss_ctx, struct nss_cmd_ctx *cmd_ctx, struct sss_packet *packet, diff -Nru sssd-1.15.0/src/responder/nss/nss_protocol_pwent.c sssd-1.15.2/src/responder/nss/nss_protocol_pwent.c --- sssd-1.15.0/src/responder/nss/nss_protocol_pwent.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_protocol_pwent.c 2017-03-15 16:53:24.000000000 +0000 @@ -287,9 +287,6 @@ return ENOMEM; } - /* Password field content. */ - to_sized_string(&pwfield, nss_ctx->pwfield); - /* First two fields (length and reserved), filled up later. */ ret = sss_packet_grow(packet, 2 * sizeof(uint32_t)); if (ret != EOK) { @@ -303,6 +300,9 @@ talloc_free_children(tmp_ctx); msg = result->msgs[i]; + /* Password field content. */ + to_sized_string(&pwfield, nss_get_pwfield(nss_ctx, result->domain)); + ret = nss_get_pwent(tmp_ctx, nss_ctx, result->domain, msg, &uid, &gid, &name, &gecos, &homedir, &shell); if (ret != EOK) { diff -Nru sssd-1.15.0/src/responder/nss/nss_protocol_sid.c sssd-1.15.2/src/responder/nss/nss_protocol_sid.c --- sssd-1.15.0/src/responder/nss/nss_protocol_sid.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_protocol_sid.c 2017-03-15 16:53:24.000000000 +0000 @@ -389,6 +389,21 @@ } errno_t +nss_protocol_fill_single_name(struct nss_ctx *nss_ctx, + struct nss_cmd_ctx *cmd_ctx, + struct sss_packet *packet, + struct cache_req_result *result) +{ + if (result->ldb_result->count > 1) { + DEBUG(SSSDBG_TRACE_FUNC, "Lookup returned more than one result " + "but only one was expected.\n"); + return EEXIST; + } + + return nss_protocol_fill_name(nss_ctx, cmd_ctx, packet, result); +} + +errno_t nss_protocol_fill_name(struct nss_ctx *nss_ctx, struct nss_cmd_ctx *cmd_ctx, struct sss_packet *packet, diff -Nru sssd-1.15.0/src/responder/nss/nss_utils.c sssd-1.15.2/src/responder/nss/nss_utils.c --- sssd-1.15.0/src/responder/nss/nss_utils.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/nss/nss_utils.c 2017-03-15 16:53:24.000000000 +0000 @@ -24,6 +24,7 @@ #include "util/util.h" #include "confdb/confdb.h" #include "responder/common/responder.h" +#include "responder/nss/nss_private.h" const char * nss_get_name_from_msg(struct sss_domain_info *domain, @@ -138,3 +139,14 @@ talloc_free(tmp_ctx); return ret; } + +const char * +nss_get_pwfield(struct nss_ctx *nctx, + struct sss_domain_info *dom) +{ + if (dom->pwfield != NULL) { + return dom->pwfield; + } + + return nctx->pwfield; +} diff -Nru sssd-1.15.0/src/responder/pam/pamsrv_cmd.c sssd-1.15.2/src/responder/pam/pamsrv_cmd.c --- sssd-1.15.0/src/responder/pam/pamsrv_cmd.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/pam/pamsrv_cmd.c 2017-03-15 16:53:24.000000000 +0000 @@ -53,6 +53,14 @@ static void pam_reply(struct pam_auth_req *preq); +static errno_t check_cert(TALLOC_CTX *mctx, + struct tevent_context *ev, + struct pam_ctx *pctx, + struct pam_auth_req *preq, + struct pam_data *pd); + +static int pam_check_user_done(struct pam_auth_req *preq, int ret); + static errno_t pack_user_info_msg(TALLOC_CTX *mem_ctx, const char *user_error_message, size_t *resp_len, @@ -152,15 +160,10 @@ } break; case SSS_AUTHTOK_TYPE_2FA: - ret = sss_authtok_set(tok, SSS_AUTHTOK_TYPE_2FA, - auth_token_data, auth_token_length); - break; case SSS_AUTHTOK_TYPE_SC_PIN: - ret = sss_authtok_set_sc_pin(tok, (const char *) auth_token_data, - auth_token_length); - break; case SSS_AUTHTOK_TYPE_SC_KEYPAD: - sss_authtok_set_sc_keypad(tok); + ret = sss_authtok_set(tok, auth_token_type, + auth_token_data, auth_token_length); break; default: return EINVAL; @@ -718,6 +721,28 @@ DEBUG(SSSDBG_FUNC_DATA, "pam_reply called with result [%d]: %s.\n", pd->pam_status, pam_strerror(NULL, pd->pam_status)); + + if (pd->cmd == SSS_PAM_AUTHENTICATE + && (pd->pam_status == PAM_AUTHINFO_UNAVAIL + || pd->pam_status == PAM_NO_MODULE_DATA + || pd->pam_status == PAM_BAD_ITEM) + && may_do_cert_auth(pctx, pd)) { + /* We have Smartcard credentials and the backend indicates that it is + * offline (PAM_AUTHINFO_UNAVAIL) or cannot handle the credentials + * (PAM_BAD_ITEM), so let's try authentication against the Smartcard + * PAM_NO_MODULE_DATA is returned by the krb5 backend if no + * authentication method was found at all, this might happen if the + * user has a Smartcard assigned but the pkint plugin is not available + * on the client. */ + DEBUG(SSSDBG_IMPORTANT_INFO, + "Backend cannot handle Smartcard authentication, " + "trying local Smartcard authentication.\n"); + preq->cert_auth_local = true; + ret = check_cert(cctx, cctx->ev, pctx, preq, pd); + pam_check_user_done(preq, ret); + return; + } + if (pd->pam_status == PAM_AUTHINFO_UNAVAIL || preq->use_cached_auth) { switch(pd->cmd) { @@ -1016,42 +1041,7 @@ static void pam_forwarder_cb(struct tevent_req *req); static void pam_forwarder_cert_cb(struct tevent_req *req); -static void pam_check_user_dp_callback(uint16_t err_maj, uint32_t err_min, - const char *err_msg, void *ptr); static int pam_check_user_search(struct pam_auth_req *preq); -static int pam_check_user_done(struct pam_auth_req *preq, int ret); - -static errno_t pam_cmd_assume_upn(struct pam_auth_req *preq) -{ - int ret; - - if (!preq->pd->name_is_upn - && preq->pd->logon_name != NULL - && strchr(preq->pd->logon_name, '@') != NULL) { - DEBUG(SSSDBG_TRACE_ALL, - "No entry found so far, trying UPN/email lookup with [%s].\n", - preq->pd->logon_name); - /* Assuming Kerberos principal */ - preq->domain = preq->cctx->rctx->domains; - preq->check_provider = - NEED_CHECK_PROVIDER(preq->domain->provider); - preq->pd->user = talloc_strdup(preq->pd, preq->pd->logon_name); - if (preq->pd->user == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "talloc_strdup failed.\n"); - return ENOMEM; - } - preq->pd->name_is_upn = true; - preq->pd->domain = NULL; - - ret = pam_check_user_search(preq); - if (ret == EOK) { - pam_dom_forwarder(preq); - } - return EOK; - } - - return ENOENT; -} /* TODO: we should probably return some sort of cookie that is set in the @@ -1218,15 +1208,12 @@ static int pam_forwarder(struct cli_ctx *cctx, int pam_cmd) { - struct sss_domain_info *dom; struct pam_auth_req *preq; struct pam_data *pd; int ret; - errno_t ncret; struct pam_ctx *pctx = talloc_get_type(cctx->rctx->pvt_ctx, struct pam_ctx); struct tevent_req *req; - char *name = NULL; preq = talloc_zero(cctx, struct pam_auth_req); if (!preq) { @@ -1234,6 +1221,7 @@ } talloc_set_destructor(preq, pam_auth_req_destructor); preq->cctx = cctx; + preq->cert_auth_local = false; preq->pd = create_pam_data(preq); if (!preq->pd) { @@ -1269,90 +1257,15 @@ goto done; } - if (pd->user != NULL) { - /* now check user is valid */ - if (pd->domain) { - preq->domain = responder_get_domain(cctx->rctx, pd->domain); - if (!preq->domain) { - ret = ENOENT; - goto done; - } - - name = sss_resp_create_fqname(preq, pctx->rctx, preq->domain, - preq->pd->name_is_upn, - preq->pd->user); - if (name == NULL) { - return ENOMEM; - } - - ncret = sss_ncache_check_user(pctx->rctx->ncache, - preq->domain, name); - talloc_free(name); - if (ncret == EEXIST) { - /* User found in the negative cache */ - ret = ENOENT; - goto done; - } - } else { - for (dom = preq->cctx->rctx->domains; - dom; - dom = get_next_domain(dom, 0)) { - if (dom->fqnames) continue; - - name = sss_resp_create_fqname(preq, pctx->rctx, dom, - preq->pd->name_is_upn, - preq->pd->user); - if (name == NULL) { - return ENOMEM; - } - - ncret = sss_ncache_check_user(pctx->rctx->ncache, - dom, name); - talloc_free(name); - if (ncret == ENOENT) { - /* User not found in the negative cache - * Proceed with PAM actions - */ - break; - } - - /* Try the next domain */ - DEBUG(SSSDBG_TRACE_FUNC, - "User [%s@%s] filtered out (negative cache). " - "Trying next domain.\n", pd->user, dom->name); - } - - if (!dom) { - ret = ENOENT; - goto done; - } - preq->domain = dom; - } - } - - - if (may_do_cert_auth(pctx, pd)) { + /* try backend first for authentication before doing local Smartcard + * authentication */ + if (pd->cmd != SSS_PAM_AUTHENTICATE && may_do_cert_auth(pctx, pd)) { ret = check_cert(cctx, cctx->ev, pctx, preq, pd); /* Finish here */ goto done; } - - if (preq->domain->provider == NULL) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Domain [%s] has no auth provider.\n", preq->domain->name); - ret = EINVAL; - goto done; - } - - preq->check_provider = NEED_CHECK_PROVIDER(preq->domain->provider); - ret = pam_check_user_search(preq); - if (ret == EOK) { - pam_dom_forwarder(preq); - } else if (ret == ENOENT) { - ret = pam_cmd_assume_upn(preq); - } done: return pam_check_user_done(preq, ret); @@ -1370,7 +1283,9 @@ struct pam_ctx *pctx = talloc_get_type(preq->cctx->rctx->pvt_ctx, struct pam_ctx); - ret = pam_check_cert_recv(req, preq, &cert, &preq->token_name); + ret = pam_check_cert_recv(req, preq, &cert, &preq->token_name, + &preq->module_name, + &preq->key_id); talloc_free(req); if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "get_cert request failed.\n"); @@ -1392,9 +1307,6 @@ ret = ENOENT; } else { ret = pam_check_user_search(preq); - if (ret == EOK) { - pam_dom_forwarder(preq); - } } } @@ -1436,11 +1348,26 @@ preq->domain = result->domain; } - preq->cert_user_obj = talloc_steal(preq, result->msgs[0]); + preq->cert_user_objs = talloc_steal(preq, result->ldb_result); if (preq->pd->logon_name == NULL) { - cert_user = ldb_msg_find_attr_as_string(preq->cert_user_obj, - SYSDB_NAME, NULL); + if (preq->pd->cmd != SSS_PAM_PREAUTH) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Missing logon name only allowed during pre-auth.\n"); + ret = ENOENT; + goto done; + } + + if (preq->cert_user_objs->count != 1) { + DEBUG(SSSDBG_CRIT_FAILURE, + "More than one user mapped to certificate.\n"); + /* TODO: send pam response to ask for a user name */ + ret = ERR_NO_CREDS; + goto done; + } + cert_user = ldb_msg_find_attr_as_string( + preq->cert_user_objs->msgs[0], + SYSDB_NAME, NULL); if (cert_user == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Certificate user object has not name.\n"); @@ -1451,20 +1378,26 @@ DEBUG(SSSDBG_FUNC_DATA, "Found certificate user [%s].\n", cert_user); - ret = add_pam_cert_response(preq->pd, cert_user, preq->token_name); + ret = sss_parse_name_for_domains(preq->pd, + preq->cctx->rctx->domains, + preq->cctx->rctx->default_domain, + cert_user, + &preq->pd->domain, + &preq->pd->user); if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "add_pam_cert_response failed.\n"); + DEBUG(SSSDBG_OP_FAILURE, + "sss_parse_name_for_domains failed.\n"); + goto done; } - preq->pd->domain = talloc_strdup(preq->pd, result->domain->name); - if (preq->pd->domain == NULL) { + /* cert_user will be returned to the PAM client as user name, so + * we can use it here already e.g. to set in initgroups timeout */ + preq->pd->logon_name = talloc_strdup(preq->pd, cert_user); + if (preq->pd->logon_name == NULL) { DEBUG(SSSDBG_OP_FAILURE, "talloc_strdup failed.\n"); ret = ENOMEM; goto done; } - preq->pd->pam_status = PAM_SUCCESS; - pam_reply(preq); - return; } } else { if (preq->pd->logon_name == NULL) { @@ -1475,7 +1408,12 @@ } } - ret = pam_check_user_search(preq); + if (preq->user_obj == NULL) { + ret = pam_check_user_search(preq); + } else { + ret = EOK; + } + if (ret == EOK) { pam_dom_forwarder(preq); } @@ -1504,45 +1442,28 @@ ret = pam_forwarder_parse_data(cctx, pd); if (ret == EAGAIN) { - if (strchr(preq->pd->logon_name, '@') == NULL) { - goto done; - } - /* Assuming Kerberos principal */ - preq->domain = preq->cctx->rctx->domains; - preq->check_provider = NEED_CHECK_PROVIDER(preq->domain->provider); - preq->pd->user = talloc_strdup(preq->pd, preq->pd->logon_name); - if (preq->pd->user == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "talloc_strdup failed.\n"); + DEBUG(SSSDBG_TRACE_FUNC, "Assuming %s is a UPN\n", pd->logon_name); + /* If not, cache_req will error out later */ + pd->user = talloc_strdup(pd, pd->logon_name); + if (pd->user == NULL) { ret = ENOMEM; goto done; } - preq->pd->name_is_upn = true; - preq->pd->domain = NULL; + pd->domain = NULL; } else if (ret != EOK) { ret = EINVAL; goto done; } - if (preq->pd->domain) { - preq->domain = responder_get_domain(cctx->rctx, preq->pd->domain); - if (preq->domain == NULL) { - ret = ENOENT; - goto done; - } - } - - if (may_do_cert_auth(pctx, pd)) { + /* try backend first for authentication before doing local Smartcard + * authentication */ + if (pd->cmd != SSS_PAM_AUTHENTICATE && may_do_cert_auth(pctx, pd)) { ret = check_cert(cctx, cctx->ev, pctx, preq, pd); /* Finish here */ goto done; } ret = pam_check_user_search(preq); - if (ret == EOK) { - pam_dom_forwarder(preq); - } else if (ret == ENOENT) { - ret = pam_cmd_assume_upn(preq); - } done: pam_check_user_done(preq, ret); @@ -1551,233 +1472,97 @@ static void pam_dp_send_acct_req_done(struct tevent_req *req); static int pam_check_user_search(struct pam_auth_req *preq) { - struct sss_domain_info *dom = preq->domain; - char *name = NULL; - time_t cacheExpire; int ret; struct tevent_req *dpreq; - struct dp_callback_ctx *cb_ctx; - struct pam_ctx *pctx = - talloc_get_type(preq->cctx->rctx->pvt_ctx, struct pam_ctx); - static const char *user_attrs[] = SYSDB_PW_ATTRS; - struct ldb_message *msg; - struct ldb_result *res; - const char *sysdb_name; - - while (dom) { - /* if it is a domainless search, skip domains that require fully - * qualified names instead */ - while (dom && !preq->pd->domain && !preq->pd->name_is_upn - && dom->fqnames) { - dom = get_next_domain(dom, 0); - } - - if (!dom) break; - - if (dom != preq->domain) { - /* make sure we reset the check_provider flag when we check - * a new domain */ - preq->check_provider = NEED_CHECK_PROVIDER(dom->provider); - } - - /* make sure to update the preq if we changed domain */ - preq->domain = dom; - - talloc_free(name); - - name = sss_resp_create_fqname(preq, pctx->rctx, dom, - preq->pd->name_is_upn, - preq->pd->user); - if (name == NULL) { - return ENOMEM; - } - - /* Refresh the user's cache entry on any PAM query - * We put a timeout in the client context so that we limit - * the number of updates within a reasonable timeout - */ - if (preq->check_provider) { - ret = pam_initgr_check_timeout(pctx->id_table, - preq->pd->logon_name); - if (ret != EOK - && ret != ENOENT) { - DEBUG(SSSDBG_OP_FAILURE, - "Could not look up initgroup timout\n"); - return EIO; - } else if (ret == ENOENT) { - /* Call provider first */ - break; - } - /* Entry is still valid, get it from the sysdb */ - } - - DEBUG(SSSDBG_CONF_SETTINGS, "Requesting info for [%s]\n", name); - - if (dom->sysdb == NULL) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Fatal: Sysdb CTX not found for this domain!\n"); - preq->pd->pam_status = PAM_SYSTEM_ERR; - return EFAULT; - } - - if (preq->pd->name_is_upn) { - ret = sysdb_search_user_by_upn(preq, dom, name, user_attrs, &msg); - if (ret == EOK) { - /* Since sysdb_search_user_by_upn() searches the whole cache we - * have to set the domain so that it matches the result. */ - sysdb_name = ldb_msg_find_attr_as_string(msg, - SYSDB_NAME, NULL); - if (sysdb_name == NULL) { - DEBUG(SSSDBG_CRIT_FAILURE, "Cached entry has no name.\n"); - return EINVAL; - } - preq->domain = find_domain_by_object_name( - get_domains_head(dom), - sysdb_name); - if (preq->domain == NULL) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Cannot find matching domain for [%s].\n", - sysdb_name); - return EINVAL; - } - } - } else { - ret = sysdb_getpwnam_with_views(preq, dom, name, &res); - if (res->count > 1) { - DEBUG(SSSDBG_FATAL_FAILURE, - "getpwnam call returned more than one result !?!\n"); - sss_log(SSS_LOG_ERR, - "More users have the same name [%s@%s] in SSSD cache. " - "SSSD will not work correctly.\n", - name, dom->name); - return ENOENT; - } else if (res->count == 0) { - ret = ENOENT; - } else { - msg = res->msgs[0]; - } - } - if (ret != EOK && ret != ENOENT) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Failed to make request to our cache!\n"); - return EIO; - } - - if (ret == ENOENT) { - if (preq->check_provider == false) { - /* set negative cache only if not result of cache check */ - ret = sss_ncache_set_user(pctx->rctx->ncache, - false, dom, preq->pd->user); - if (ret != EOK) { - /* Should not be fatal, just slower next time */ - DEBUG(SSSDBG_MINOR_FAILURE, - "Cannot set ncache for [%s@%s]\n", name, - dom->name); - } - } - - /* if a multidomain search, try with next */ - if (!preq->pd->domain) { - dom = get_next_domain(dom, 0); - continue; - } - - DEBUG(SSSDBG_OP_FAILURE, "No results for getpwnam call\n"); - - /* TODO: store negative cache ? */ - - return ENOENT; - } - - /* One result found */ - - /* if we need to check the remote account go on */ - if (preq->check_provider) { - cacheExpire = ldb_msg_find_attr_as_uint64(msg, - SYSDB_CACHE_EXPIRE, 0); - if (cacheExpire < time(NULL)) { - break; - } - } + struct pam_ctx *pctx; + struct cache_req_data *data; - DEBUG(SSSDBG_TRACE_FUNC, - "Returning info for user [%s@%s]\n", name, dom->name); + data = cache_req_data_name(preq, + CACHE_REQ_INITGROUPS, + preq->pd->user); + if (data == NULL) { + return ENOMEM; + } - /* We might have searched by alias. Pass on the primary name */ - ret = pd_set_primary_name(msg, preq->pd); - if (ret != EOK) { - DEBUG(SSSDBG_CRIT_FAILURE, "Could not canonicalize username\n"); - return ret; - } + pctx = talloc_get_type(preq->cctx->rctx->pvt_ctx, struct pam_ctx); - return EOK; + /* The initgr cache is used to make sure that during a single PAM session + * (auth, acct_mgtm, ....) the backend is contacted only once. logon_name + * is the name provided by the PAM client and will not be modified during + * the request, so it makes sense to use it here instead od the pd->user. */ + ret = pam_initgr_check_timeout(pctx->id_table, preq->pd->logon_name); + if (ret == EOK) { + /* Entry is still valid, force to lookup in the cache first */ + cache_req_data_set_bypass_cache(data, false); + } else if (ret == ENOENT) { + /* Call the data provider first */ + cache_req_data_set_bypass_cache(data, true); + } else { + DEBUG(SSSDBG_OP_FAILURE, "Could not look up initgroup timeout\n"); + return EIO; } - if (!dom) { - /* Ensure that we don't try to check a provider without a domain, - * since this will cause a NULL-dereference below. - */ - preq->check_provider = false; + dpreq = cache_req_send(preq, + preq->cctx->rctx->ev, + preq->cctx->rctx, + preq->cctx->rctx->ncache, + 0, + preq->pd->domain, + data); + if (!dpreq) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Out of memory sending data provider request\n"); + return ENOMEM; } - if (preq->check_provider) { + tevent_req_set_callback(dpreq, pam_dp_send_acct_req_done, preq); - /* dont loop forever :-) */ - preq->check_provider = false; - - dpreq = sss_dp_get_account_send(preq, preq->cctx->rctx, - dom, false, SSS_DP_INITGROUPS, name, 0, - preq->pd->name_is_upn ? EXTRA_NAME_IS_UPN : NULL); - if (!dpreq) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Out of memory sending data provider request\n"); - return ENOMEM; - } - - cb_ctx = talloc_zero(preq, struct dp_callback_ctx); - if(!cb_ctx) { - talloc_zfree(dpreq); - return ENOMEM; - } - - cb_ctx->callback = pam_check_user_dp_callback; - cb_ctx->ptr = preq; - cb_ctx->cctx = preq->cctx; - cb_ctx->mem_ctx = preq; - - tevent_req_set_callback(dpreq, pam_dp_send_acct_req_done, cb_ctx); - - /* tell caller we are in an async call */ - return EAGAIN; - } - - DEBUG(SSSDBG_MINOR_FAILURE, - "No matching domain found for [%s], fail!\n", preq->pd->user); - return ENOENT; + /* tell caller we are in an async call */ + return EAGAIN; } static void pam_dp_send_acct_req_done(struct tevent_req *req) { - struct dp_callback_ctx *cb_ctx = - tevent_req_callback_data(req, struct dp_callback_ctx); + struct cache_req_result *result; + struct pam_auth_req *preq; + struct pam_ctx *pctx; + int ret; - errno_t ret; - dbus_uint16_t err_maj; - dbus_uint32_t err_min; - char *err_msg; - - ret = sss_dp_get_account_recv(cb_ctx->mem_ctx, req, - &err_maj, &err_min, - &err_msg); + preq = tevent_req_callback_data(req, struct pam_auth_req); + pctx = talloc_get_type(preq->cctx->rctx->pvt_ctx, struct pam_ctx); + + ret = cache_req_single_domain_recv(preq, req, &result); talloc_zfree(req); - if (ret != EOK) { + if (ret != EOK && ret != ENOENT) { DEBUG(SSSDBG_CRIT_FAILURE, "Fatal error, killing connection!\n"); - talloc_free(cb_ctx->cctx); + talloc_zfree(preq->cctx); return; } - cb_ctx->callback(err_maj, err_min, err_msg, cb_ctx->ptr); + if (ret == EOK) { + preq->user_obj = result->msgs[0]; + pd_set_primary_name(preq->user_obj, preq->pd); + preq->domain = result->domain; + + ret = pam_initgr_cache_set(pctx->rctx->ev, + pctx->id_table, + preq->pd->logon_name, + pctx->id_timeout); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "Could not save initgr timestamp." + "Proceeding with PAM actions\n"); + } + + pam_dom_forwarder(preq); + } + + ret = pam_check_user_done(preq, ret); + if (ret != EOK) { + preq->pd->pam_status = PAM_SYSTEM_ERR; + pam_reply(preq); + } } static int pam_check_user_done(struct pam_auth_req *preq, int ret) @@ -1809,48 +1594,6 @@ return EOK; } -static void pam_check_user_dp_callback(uint16_t err_maj, uint32_t err_min, - const char *err_msg, void *ptr) -{ - struct pam_auth_req *preq = talloc_get_type(ptr, struct pam_auth_req); - int ret; - struct pam_ctx *pctx = - talloc_get_type(preq->cctx->rctx->pvt_ctx, struct pam_ctx); - - if (err_maj) { - DEBUG(SSSDBG_OP_FAILURE, - "Unable to get information from Data Provider\n" - "Error: %u, %u, %s\n", - (unsigned int)err_maj, (unsigned int)err_min, err_msg); - } - - ret = pam_check_user_search(preq); - if (ret == EOK) { - /* Make sure we don't go to the ID provider too often */ - ret = pam_initgr_cache_set(pctx->rctx->ev, pctx->id_table, - preq->pd->logon_name, pctx->id_timeout); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, - "Could not save initgr timestamp. " - "Proceeding with PAM actions\n"); - /* This is non-fatal, we'll just end up going to the - * data provider again next time. - */ - } - - pam_dom_forwarder(preq); - } else if (ret == ENOENT) { - ret = pam_cmd_assume_upn(preq); - } - - ret = pam_check_user_done(preq, ret); - - if (ret) { - preq->pd->pam_status = PAM_SYSTEM_ERR; - pam_reply(preq); - } -} - static errno_t pam_is_last_online_login_fresh(struct sss_domain_info *domain, const char* user, int cached_auth_timeout, @@ -1943,6 +1686,7 @@ struct pam_ctx *pctx = talloc_get_type(preq->cctx->rctx->pvt_ctx, struct pam_ctx); const char *cert_user; + size_t c; if (!preq->pd->domain) { preq->pd->domain = preq->domain->name; @@ -1979,57 +1723,82 @@ return; } - if (may_do_cert_auth(pctx, preq->pd) && preq->cert_user_obj != NULL) { + if (may_do_cert_auth(pctx, preq->pd) && preq->cert_user_objs != NULL) { /* Check if user matches certificate user */ - cert_user = ldb_msg_find_attr_as_string(preq->cert_user_obj, SYSDB_NAME, - NULL); - if (cert_user == NULL) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Certificate user object has not name.\n"); - preq->pd->pam_status = PAM_USER_UNKNOWN; - pam_reply(preq); - return; - } + for (c = 0; c < preq->cert_user_objs->count; c++) { + cert_user = ldb_msg_find_attr_as_string( + preq->cert_user_objs->msgs[c], + SYSDB_NAME, + NULL); + if (cert_user == NULL) { + /* Even if there might be other users mapped to the + * certificate a missing SYSDB_NAME indicates some critical + * condition which justifies that the whole request is aborted + * */ + DEBUG(SSSDBG_CRIT_FAILURE, + "Certificate user object has no name.\n"); + preq->pd->pam_status = PAM_USER_UNKNOWN; + pam_reply(preq); + return; + } - /* pam_check_user_search() calls pd_set_primary_name() is the search - * was successful, so pd->user contains the canonical sysdb name - * as well */ - if (strcmp(cert_user, preq->pd->user) == 0) { - - preq->pd->pam_status = PAM_SUCCESS; - - if (preq->pd->cmd == SSS_PAM_PREAUTH) { - ret = add_pam_cert_response(preq->pd, cert_user, - preq->token_name); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "add_pam_cert_response failed.\n"); - preq->pd->pam_status = PAM_AUTHINFO_UNAVAIL; + /* pam_check_user_search() calls pd_set_primary_name() is the search + * was successful, so pd->user contains the canonical sysdb name + * as well */ + if (ldb_dn_compare(preq->cert_user_objs->msgs[c]->dn, + preq->user_obj->dn) == 0) { + + if (preq->pd->cmd == SSS_PAM_PREAUTH) { + ret = sss_authtok_set_sc(preq->pd->authtok, + SSS_AUTHTOK_TYPE_SC_PIN, NULL, 0, + preq->token_name, 0, + preq->module_name, 0, + preq->key_id, 0); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "sss_authtok_set_sc failed, " + "Smartcard authentication " + "detection might fail in the " + "backend.\n"); + } + + ret = add_pam_cert_response(preq->pd, cert_user, + preq->token_name, + preq->module_name, + preq->key_id); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "add_pam_cert_response failed.\n"); + preq->pd->pam_status = PAM_AUTHINFO_UNAVAIL; + } + } + + /* We are done if we do not have to call the backend */ + if (preq->pd->cmd == SSS_PAM_AUTHENTICATE + && preq->cert_auth_local) { + preq->pd->pam_status = PAM_SUCCESS; + preq->callback = pam_reply; + pam_reply(preq); + return; } } + } - preq->callback = pam_reply; + if (preq->pd->cmd == SSS_PAM_PREAUTH) { + DEBUG(SSSDBG_TRACE_FUNC, + "User and certificate user do not match, " + "continue with other authentication methods.\n"); + } else { + DEBUG(SSSDBG_CRIT_FAILURE, + "User and certificate user do not match.\n"); + preq->pd->pam_status = PAM_AUTH_ERR; pam_reply(preq); return; - } else { - if (preq->pd->cmd == SSS_PAM_PREAUTH) { - DEBUG(SSSDBG_TRACE_FUNC, - "User and certificate user do not match, " \ - "continue with other authentication methods.\n"); - } else { - DEBUG(SSSDBG_CRIT_FAILURE, - "User and certificate user do not match.\n"); - preq->pd->pam_status = PAM_AUTH_ERR; - pam_reply(preq); - return; - } } } if (!NEED_CHECK_PROVIDER(preq->domain->provider) ) { preq->callback = pam_reply; ret = LOCAL_pam_handler(preq); - } - else { + } else { preq->callback = pam_reply; ret = pam_dp_send_req(preq, SSS_CLI_SOCKET_TIMEOUT/2); DEBUG(SSSDBG_CONF_SETTINGS, "pam_dp_send_req returned %d\n", ret); diff -Nru sssd-1.15.0/src/responder/pam/pamsrv.h sssd-1.15.2/src/responder/pam/pamsrv.h --- sssd-1.15.0/src/responder/pam/pamsrv.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/pam/pamsrv.h 2017-03-15 16:53:24.000000000 +0000 @@ -60,7 +60,6 @@ pam_dp_callback_t *callback; bool is_uid_trusted; - bool check_provider; void *data; bool use_cached_auth; /* whether cached authentication was tried and failed */ @@ -68,8 +67,12 @@ struct pam_auth_dp_req *dpreq_spy; - struct ldb_message *cert_user_obj; + struct ldb_message *user_obj; + struct ldb_result *cert_user_objs; char *token_name; + char *module_name; + char *key_id; + bool cert_auth_local; }; struct sss_cmd_table *get_pam_cmds(void); @@ -88,10 +91,12 @@ const char *verify_opts, struct pam_data *pd); errno_t pam_check_cert_recv(struct tevent_req *req, TALLOC_CTX *mem_ctx, - char **cert, char **token_name); + char **cert, char **token_name, char **module_name, + char **key_id); errno_t add_pam_cert_response(struct pam_data *pd, const char *user, - const char *token_name); + const char *token_name, const char *module_name, + const char *key_id); bool may_do_cert_auth(struct pam_ctx *pctx, struct pam_data *pd); diff -Nru sssd-1.15.0/src/responder/pam/pamsrv_p11.c sssd-1.15.2/src/responder/pam/pamsrv_p11.c --- sssd-1.15.0/src/responder/pam/pamsrv_p11.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/pam/pamsrv_p11.c 2017-03-15 16:53:24.000000000 +0000 @@ -133,7 +133,8 @@ static errno_t parse_p11_child_response(TALLOC_CTX *mem_ctx, uint8_t *buf, ssize_t buf_len, char **_cert, - char **_token_name) + char **_token_name, char **_module_name, + char **_key_id) { int ret; TALLOC_CTX *tmp_ctx = NULL; @@ -141,6 +142,8 @@ uint8_t *pn; char *cert = NULL; char *token_name = NULL; + char *module_name = NULL; + char *key_id = NULL; if (buf_len < 0) { DEBUG(SSSDBG_CRIT_FAILURE, @@ -187,6 +190,54 @@ } if (pn == p) { + DEBUG(SSSDBG_OP_FAILURE, + "Missing module name in p11_child response.\n"); + ret = EINVAL; + goto done; + } + + module_name = talloc_strndup(tmp_ctx, (char *) p, (pn - p)); + if (module_name == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strndup failed.\n"); + ret = ENOMEM; + goto done; + } + DEBUG(SSSDBG_TRACE_ALL, "Found module name [%s].\n", module_name); + + p = ++pn; + pn = memchr(p, '\n', buf_len - (p - buf)); + if (pn == NULL) { + DEBUG(SSSDBG_OP_FAILURE, + "Missing new-line in p11_child response.\n"); + ret = EINVAL; + goto done; + } + + if (pn == p) { + DEBUG(SSSDBG_OP_FAILURE, + "Missing key id in p11_child response.\n"); + ret = EINVAL; + goto done; + } + + key_id = talloc_strndup(tmp_ctx, (char *) p, (pn - p)); + if (key_id == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strndup failed.\n"); + ret = ENOMEM; + goto done; + } + DEBUG(SSSDBG_TRACE_ALL, "Found key id [%s].\n", key_id); + + p = pn + 1; + pn = memchr(p, '\n', buf_len - (p - buf)); + if (pn == NULL) { + DEBUG(SSSDBG_OP_FAILURE, + "Missing new-line in p11_child response.\n"); + ret = EINVAL; + goto done; + } + + if (pn == p) { DEBUG(SSSDBG_OP_FAILURE, "Missing cert in p11_child response.\n"); ret = EINVAL; goto done; @@ -206,6 +257,8 @@ if (ret == EOK) { *_token_name = talloc_steal(mem_ctx, token_name); *_cert = talloc_steal(mem_ctx, cert); + *_module_name = talloc_steal(mem_ctx, module_name); + *_key_id = talloc_steal(mem_ctx, key_id); } talloc_free(tmp_ctx); @@ -222,6 +275,8 @@ struct child_io_fds *io; char *cert; char *token_name; + char *module_name; + char *key_id; }; static void p11_child_write_done(struct tevent_req *subreq); @@ -296,6 +351,7 @@ state->child_status = EFAULT; state->cert = NULL; state->token_name = NULL; + state->module_name = NULL; state->io = talloc(state, struct child_io_fds); if (state->io == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "talloc failed.\n"); @@ -459,7 +515,8 @@ PIPE_FD_CLOSE(state->io->read_from_child_fd); ret = parse_p11_child_response(state, buf, buf_len, &state->cert, - &state->token_name); + &state->token_name, &state->module_name, + &state->key_id); if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "parse_p11_child_respose failed.\n"); tevent_req_error(req, ret); @@ -486,7 +543,8 @@ } errno_t pam_check_cert_recv(struct tevent_req *req, TALLOC_CTX *mem_ctx, - char **cert, char **token_name) + char **cert, char **token_name, char **module_name, + char **key_id) { struct pam_check_cert_state *state = tevent_req_data(req, struct pam_check_cert_state); @@ -501,6 +559,14 @@ *token_name = talloc_steal(mem_ctx, state->token_name); } + if (module_name != NULL) { + *module_name = talloc_steal(mem_ctx, state->module_name); + } + + if (key_id != NULL) { + *key_id = talloc_steal(mem_ctx, state->key_id); + } + return EOK; } @@ -513,23 +579,29 @@ #define PKCS11_LOGIN_TOKEN_ENV_NAME "PKCS11_LOGIN_TOKEN_NAME" errno_t add_pam_cert_response(struct pam_data *pd, const char *sysdb_username, - const char *token_name) + const char *token_name, const char *module_name, + const char *key_id) { uint8_t *msg = NULL; char *env = NULL; size_t user_len; size_t msg_len; size_t slot_len; + size_t module_len; + size_t key_id_len; int ret; - if (sysdb_username == NULL || token_name == NULL) { + if (sysdb_username == NULL || token_name == NULL || module_name == NULL + || key_id == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Missing mandatory user or slot name.\n"); return EINVAL; } user_len = strlen(sysdb_username) + 1; slot_len = strlen(token_name) + 1; - msg_len = user_len + slot_len; + module_len = strlen(module_name) + 1; + key_id_len = strlen(key_id) + 1; + msg_len = user_len + slot_len + module_len + key_id_len; msg = talloc_zero_size(pd, msg_len); if (msg == NULL) { @@ -546,6 +618,8 @@ * being I think using sysdb_username is fine. */ memcpy(msg, sysdb_username, user_len); memcpy(msg + user_len, token_name, slot_len); + memcpy(msg + user_len + slot_len, module_name, module_len); + memcpy(msg + user_len + slot_len + module_len, key_id, key_id_len); ret = pam_add_response(pd, SSS_PAM_CERT_INFO, msg_len, msg); talloc_free(msg); diff -Nru sssd-1.15.0/src/responder/secrets/secsrv.c sssd-1.15.2/src/responder/secrets/secsrv.c --- sssd-1.15.0/src/responder/secrets/secsrv.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/secrets/secsrv.c 2017-03-15 16:53:24.000000000 +0000 @@ -100,6 +100,11 @@ sctx->rctx->client_idle_timeout = 10; } + ret = responder_setup_idle_timeout_config(sctx->rctx); + if (ret != EOK) { + goto fail; + } + ret = EOK; fail: diff -Nru sssd-1.15.0/src/responder/ssh/ssh_cmd.c sssd-1.15.2/src/responder/ssh/ssh_cmd.c --- sssd-1.15.0/src/responder/ssh/ssh_cmd.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/ssh/ssh_cmd.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,256 @@ +/* + Authors: + Pavel Březina + + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include "config.h" + +#include +#include +#include + +#include "util/util.h" +#include "responder/common/responder.h" +#include "responder/common/cache_req/cache_req.h" +#include "responder/ssh/ssh_private.h" + +struct ssh_cmd_ctx { + struct cli_ctx *cli_ctx; + const char *name; + const char *alias; + const char *domain; +}; + +static errno_t +ssh_check_non_sssd_user(const char *username) +{ + struct passwd *pwd; + + pwd = getpwnam(username); + if (pwd != NULL) { + DEBUG(SSSDBG_TRACE_ALL, "%s is a non-SSSD user\n", username); + return ERR_NON_SSSD_USER; + } + + return ENOENT; +} + + +static struct sss_domain_info * +ssh_get_result_domain(struct resp_ctx *rctx, + struct cache_req_result *result, + const char *name) +{ + if (result != NULL) { + return result->domain; + } + + return find_domain_by_name(rctx->domains, name, true); +} + +static void ssh_cmd_get_user_pubkeys_done(struct tevent_req *subreq); + +static errno_t ssh_cmd_get_user_pubkeys(struct cli_ctx *cli_ctx) +{ + struct ssh_cmd_ctx *cmd_ctx; + struct tevent_req *subreq; + errno_t ret; + + static const char *attrs[] = { SYSDB_NAME, SYSDB_SSH_PUBKEY, + SYSDB_USER_CERT, NULL }; + + cmd_ctx = talloc_zero(cli_ctx, struct ssh_cmd_ctx); + if (cmd_ctx == NULL) { + ret = ENOMEM; + goto done; + } + + cmd_ctx->cli_ctx = cli_ctx; + + ret = ssh_protocol_parse_user(cli_ctx, cli_ctx->rctx->default_domain, + &cmd_ctx->name, &cmd_ctx->domain); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Invalid request message!\n"); + goto done; + } + + DEBUG(SSSDBG_TRACE_FUNC, + "Requesting SSH user public keys for [%s] from [%s]\n", + cmd_ctx->name, cmd_ctx->domain ? cmd_ctx->domain : ""); + + if (strcmp(cmd_ctx->name, "root") == 0) { + ret = ERR_NON_SSSD_USER; + goto done; + } + + subreq = cache_req_user_by_name_attrs_send(cmd_ctx, cli_ctx->ev, + cli_ctx->rctx, + cli_ctx->rctx->ncache, 0, + cmd_ctx->domain, + cmd_ctx->name, attrs); + if (subreq == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Unable to create tevent request!\n"); + ret = ENOMEM; + goto done; + } + + tevent_req_set_callback(subreq, ssh_cmd_get_user_pubkeys_done, cmd_ctx); + + ret = EOK; + +done: + if (ret != EOK) { + talloc_free(cmd_ctx); + return ssh_protocol_done(cli_ctx, ret); + } + + return ret; +} + +static void ssh_cmd_get_user_pubkeys_done(struct tevent_req *subreq) +{ + struct cache_req_result *result; + struct ssh_cmd_ctx *cmd_ctx; + errno_t ret; + + cmd_ctx = tevent_req_callback_data(subreq, struct ssh_cmd_ctx); + + ret = cache_req_user_by_name_attrs_recv(cmd_ctx, subreq, &result); + talloc_zfree(subreq); + if (ret != EOK) { + if (ret == ENOENT) { + /* Check if it is a non SSSD user. */ + ret = ssh_check_non_sssd_user(cmd_ctx->name); + } + + ssh_protocol_done(cmd_ctx->cli_ctx, ret); + goto done; + } + + ssh_protocol_reply(cmd_ctx->cli_ctx, result); + +done: + talloc_free(cmd_ctx); +} + +static void ssh_cmd_get_host_pubkeys_done(struct tevent_req *subreq); + +static errno_t ssh_cmd_get_host_pubkeys(struct cli_ctx *cli_ctx) +{ + struct ssh_cmd_ctx *cmd_ctx; + struct tevent_req *subreq; + errno_t ret; + + static const char *attrs[] = { SYSDB_NAME, SYSDB_SSH_PUBKEY, NULL }; + + cmd_ctx = talloc_zero(cli_ctx, struct ssh_cmd_ctx); + if (cmd_ctx == NULL) { + ret = ENOMEM; + goto done; + } + + cmd_ctx->cli_ctx = cli_ctx; + + ret = ssh_protocol_parse_host(cli_ctx, &cmd_ctx->name, &cmd_ctx->alias, + &cmd_ctx->domain); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Invalid request message!\n"); + goto done; + } + + DEBUG(SSSDBG_TRACE_FUNC, + "Requesting SSH host public keys for [%s] from [%s]\n", + cmd_ctx->name, cmd_ctx->domain ? cmd_ctx->domain : ""); + + subreq = cache_req_host_by_name_send(cmd_ctx, cli_ctx->ev, + cli_ctx->rctx, + cli_ctx->rctx->ncache, 0, + cmd_ctx->domain, + cmd_ctx->name, + cmd_ctx->alias, attrs); + if (subreq == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Unable to create tevent request!\n"); + ret = ENOMEM; + goto done; + } + + tevent_req_set_callback(subreq, ssh_cmd_get_host_pubkeys_done, cmd_ctx); + + ret = EOK; + +done: + if (ret != EOK) { + talloc_free(cmd_ctx); + return ssh_protocol_done(cli_ctx, ret); + } + + return ret; +} + +static void ssh_cmd_get_host_pubkeys_done(struct tevent_req *subreq) +{ + struct cache_req_result *result = NULL; + struct sss_domain_info *domain; + struct ssh_cmd_ctx *cmd_ctx; + struct ssh_ctx *ssh_ctx; + errno_t ret; + + cmd_ctx = tevent_req_callback_data(subreq, struct ssh_cmd_ctx); + ssh_ctx = talloc_get_type(cmd_ctx->cli_ctx->rctx->pvt_ctx, struct ssh_ctx); + + ret = cache_req_host_by_name_recv(cmd_ctx, subreq, &result); + talloc_zfree(subreq); + + if (ret == EOK || ret == ENOENT) { + domain = ssh_get_result_domain(ssh_ctx->rctx, result, cmd_ctx->domain); + + ssh_update_known_hosts_file(ssh_ctx->rctx->domains, domain, + cmd_ctx->name, ssh_ctx->hash_known_hosts, + ssh_ctx->known_hosts_timeout); + } + + if (ret != EOK) { + ssh_protocol_done(cmd_ctx->cli_ctx, ret); + goto done; + } + + ssh_protocol_reply(cmd_ctx->cli_ctx, result); + +done: + talloc_free(cmd_ctx); +} + +struct cli_protocol_version *register_cli_protocol_version(void) +{ + static struct cli_protocol_version ssh_cli_protocol_version[] = { + {0, NULL, NULL} + }; + + return ssh_cli_protocol_version; +} + +struct sss_cmd_table *get_ssh_cmds(void) { + static struct sss_cmd_table ssh_cmds[] = { + {SSS_GET_VERSION, sss_cmd_get_version}, + {SSS_SSH_GET_USER_PUBKEYS, ssh_cmd_get_user_pubkeys}, + {SSS_SSH_GET_HOST_PUBKEYS, ssh_cmd_get_host_pubkeys}, + {SSS_CLI_NULL, NULL} + }; + + return ssh_cmds; +} diff -Nru sssd-1.15.0/src/responder/ssh/ssh_known_hosts.c sssd-1.15.2/src/responder/ssh/ssh_known_hosts.c --- sssd-1.15.0/src/responder/ssh/ssh_known_hosts.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/ssh/ssh_known_hosts.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,329 @@ +/* + Authors: + Jan Cholasta + + Copyright (C) 2012 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include "config.h" + +#include + +#include "util/util.h" +#include "util/crypto/sss_crypto.h" +#include "util/sss_ssh.h" +#include "db/sysdb.h" +#include "db/sysdb_ssh.h" +#include "responder/ssh/ssh_private.h" + +static char * +ssh_host_pubkeys_format_known_host_plain(TALLOC_CTX *mem_ctx, + struct sss_ssh_ent *ent) +{ + TALLOC_CTX *tmp_ctx; + errno_t ret; + char *name, *pubkey; + char *result = NULL; + size_t i; + + tmp_ctx = talloc_new(NULL); + if (!tmp_ctx) { + return NULL; + } + + name = talloc_strdup(tmp_ctx, ent->name); + if (!name) { + goto done; + } + + for (i = 0; i < ent->num_aliases; i++) { + name = talloc_asprintf_append(name, ",%s", ent->aliases[i]); + if (!name) { + goto done; + } + } + + result = talloc_strdup(tmp_ctx, ""); + if (!result) { + goto done; + } + + for (i = 0; i < ent->num_pubkeys; i++) { + ret = sss_ssh_format_pubkey(tmp_ctx, &ent->pubkeys[i], &pubkey); + if (ret != EOK) { + result = NULL; + goto done; + } + + result = talloc_asprintf_append(result, "%s %s\n", name, pubkey); + if (!result) { + goto done; + } + + talloc_free(pubkey); + } + + talloc_steal(mem_ctx, result); + +done: + talloc_free(tmp_ctx); + + return result; +} + +static char * +ssh_host_pubkeys_format_known_host_hashed(TALLOC_CTX *mem_ctx, + struct sss_ssh_ent *ent) +{ + TALLOC_CTX *tmp_ctx; + errno_t ret; + char *name, *pubkey, *saltstr, *hashstr, *result; + unsigned char salt[SSS_SHA1_LENGTH], hash[SSS_SHA1_LENGTH]; + size_t i, j, k; + + tmp_ctx = talloc_new(NULL); + if (!tmp_ctx) { + return NULL; + } + + result = talloc_strdup(tmp_ctx, ""); + if (!result) { + goto done; + } + + for (i = 0; i < ent->num_pubkeys; i++) { + ret = sss_ssh_format_pubkey(tmp_ctx, &ent->pubkeys[i], &pubkey); + if (ret != EOK) { + result = NULL; + goto done; + } + + for (j = 0; j <= ent->num_aliases; j++) { + name = (j == 0 ? ent->name : ent->aliases[j-1]); + + for (k = 0; k < SSS_SHA1_LENGTH; k++) { + salt[k] = rand(); + } + + ret = sss_hmac_sha1(salt, SSS_SHA1_LENGTH, + (unsigned char *)name, strlen(name), + hash); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "sss_hmac_sha1() failed (%d): %s\n", + ret, strerror(ret)); + result = NULL; + goto done; + } + + saltstr = sss_base64_encode(tmp_ctx, salt, SSS_SHA1_LENGTH); + if (!saltstr) { + result = NULL; + goto done; + } + + hashstr = sss_base64_encode(tmp_ctx, hash, SSS_SHA1_LENGTH); + if (!hashstr) { + result = NULL; + goto done; + } + + result = talloc_asprintf_append(result, "|1|%s|%s %s\n", + saltstr, hashstr, pubkey); + if (!result) { + goto done; + } + + talloc_free(saltstr); + talloc_free(hashstr); + } + + talloc_free(pubkey); + } + + talloc_steal(mem_ctx, result); + +done: + talloc_free(tmp_ctx); + + return result; +} + +static errno_t +ssh_write_known_hosts(struct sss_domain_info *domains, + bool hash_known_hosts, + time_t now, + int fd) +{ + TALLOC_CTX *tmp_ctx; + struct sss_domain_info *dom; + struct ldb_message **hosts; + struct sysdb_ctx *sysdb; + struct sss_ssh_ent *ent; + char *entstr; + size_t num_hosts; + size_t i; + ssize_t wret; + errno_t ret; + + static const char *attrs[] = { + SYSDB_NAME, + SYSDB_NAME_ALIAS, + SYSDB_SSH_PUBKEY, + NULL + }; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Out of memory!\n"); + return ENOMEM; + } + + for (dom = domains; dom != NULL; dom = get_next_domain(dom, false)) { + sysdb = dom->sysdb; + if (sysdb == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, + "Fatal: Sysdb CTX not found for this domain!\n"); + ret = EFAULT; + goto done; + } + + ret = sysdb_get_ssh_known_hosts(tmp_ctx, dom, now, attrs, + &hosts, &num_hosts); + if (ret == ENOENT) { + continue; + } else if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "Host search failed for domain " + "%s [%d]: %s\n", dom->name, ret, sss_strerror(ret)); + continue; + } + + for (i = 0; i < num_hosts; i++) { + ret = sss_ssh_make_ent(tmp_ctx, hosts[i], &ent); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to get SSH host public keys\n"); + continue; + } + + if (hash_known_hosts) { + entstr = ssh_host_pubkeys_format_known_host_hashed(ent, ent); + } else { + entstr = ssh_host_pubkeys_format_known_host_plain(ent, ent); + } + + if (entstr == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "Failed to format known_hosts data " + "for [%s]\n", ent->name); + continue; + } + + wret = sss_atomic_write_s(fd, entstr, strlen(entstr)); + if (wret == -1) { + ret = errno; + goto done; + } + + talloc_free(ent); + } + + talloc_free(hosts); + } + + ret = EOK; + +done: + talloc_free(tmp_ctx); + + return ret; +} + +errno_t +ssh_update_known_hosts_file(struct sss_domain_info *domains, + struct sss_domain_info *domain, + const char *name, + bool hash_known_hosts, + int known_hosts_timeout) +{ + TALLOC_CTX *tmp_ctx; + char *filename; + errno_t ret; + time_t now; + int fd = -1; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Out of memory!\n"); + return ENOMEM; + } + + now = time(NULL); + + /* Update host's expiration time. */ + if (domain != NULL) { + ret = sysdb_update_ssh_known_host_expire(domain, name, now, + known_hosts_timeout); + if (ret != EOK && ret != ENOENT) { + goto done; + } + } + + /* Create temporary known hosts file. */ + filename = talloc_strdup(tmp_ctx, SSS_SSH_KNOWN_HOSTS_TEMP_TMPL); + if (filename == NULL) { + ret = ENOMEM; + goto done; + } + + fd = sss_unique_file_ex(tmp_ctx, filename, 0133, &ret); + if (fd == -1) { + filename = NULL; + goto done; + } + + /* Write contents. */ + ret = ssh_write_known_hosts(domains, hash_known_hosts, now, fd); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Unable to write known hosts file " + "[%d]: %s\n", ret, sss_strerror(ret)); + goto done; + } + + + /* Rename to SSH known hosts file. */ + ret = fchmod(fd, 0644); + if (ret == -1) { + ret = errno; + goto done; + } + + ret = rename(filename, SSS_SSH_KNOWN_HOSTS_PATH); + if (ret == -1) { + ret = errno; + goto done; + } + + ret = EOK; + +done: + talloc_free(tmp_ctx); + + if (fd != -1) { + close(fd); + } + + return ret; +} diff -Nru sssd-1.15.0/src/responder/ssh/ssh_private.h sssd-1.15.2/src/responder/ssh/ssh_private.h --- sssd-1.15.0/src/responder/ssh/ssh_private.h 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/ssh/ssh_private.h 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,71 @@ +/* + Authors: + Jan Cholasta + + Copyright (C) 2012 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#ifndef _SSHSRV_PRIVATE_H_ +#define _SSHSRV_PRIVATE_H_ + +#include "responder/common/responder.h" +#include "responder/common/cache_req/cache_req.h" + +#define SSS_SSH_KNOWN_HOSTS_PATH PUBCONF_PATH"/known_hosts" +#define SSS_SSH_KNOWN_HOSTS_TEMP_TMPL PUBCONF_PATH"/.known_hosts.XXXXXX" + +struct ssh_ctx { + struct resp_ctx *rctx; + struct sss_names_ctx *snctx; + + bool hash_known_hosts; + int known_hosts_timeout; + char *ca_db; +}; + +struct sss_cmd_table *get_ssh_cmds(void); + +errno_t +ssh_protocol_parse_user(struct cli_ctx *cli_ctx, + const char *default_domain, + const char **_name, + const char **_domain); + +errno_t +ssh_protocol_parse_host(struct cli_ctx *cli_ctx, + const char **_name, + const char **_alias, + const char **_domain); + +void ssh_protocol_reply(struct cli_ctx *cli_ctx, + struct cache_req_result *result); + +errno_t +ssh_protocol_done(struct cli_ctx *cli_ctx, errno_t error); + +errno_t +ssh_protocol_build_reply(struct sss_packet *packet, + struct ssh_ctx *ssh_ctx, + struct cache_req_result *result); + +errno_t +ssh_update_known_hosts_file(struct sss_domain_info *domains, + struct sss_domain_info *domain, + const char *name, + bool hash_known_hosts, + int known_hosts_timeout); + +#endif /* _SSHSRV_PRIVATE_H_ */ diff -Nru sssd-1.15.0/src/responder/ssh/ssh_protocol.c sssd-1.15.2/src/responder/ssh/ssh_protocol.c --- sssd-1.15.0/src/responder/ssh/ssh_protocol.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/ssh/ssh_protocol.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,217 @@ +/* + Authors: + Pavel Březina + + Copyright (C) 2017 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include "config.h" + +#include + +#include "util/util.h" +#include "util/sss_ssh.h" +#include "responder/common/responder.h" +#include "responder/common/responder_packet.h" +#include "responder/common/cache_req/cache_req.h" +#include "responder/ssh/ssh_private.h" + +errno_t +ssh_protocol_done(struct cli_ctx *cli_ctx, errno_t error) +{ + struct cli_protocol *pctx; + errno_t ret; + + pctx = talloc_get_type(cli_ctx->protocol_ctx, struct cli_protocol); + + switch (error) { + case EOK: + /* Create empty packet if none was provided. */ + if (pctx->creq->out == NULL) { + ret = sss_packet_new(pctx->creq, 0, + sss_packet_get_cmd(pctx->creq->in), + &pctx->creq->out); + if (ret != EOK) { + goto done; + } + + sss_packet_set_error(pctx->creq->out, EOK); + } + + DEBUG(SSSDBG_TRACE_ALL, "Sending reply: success\n"); + ret = EOK; + goto done; + default: + DEBUG(SSSDBG_TRACE_ALL, "Sending reply: error [%d]: %s\n", + error, sss_strerror(error)); + ret = sss_cmd_send_error(cli_ctx, error); + goto done; + } + +done: + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Unable to send reply [%d]: %s!\n", + ret, sss_strerror(ret)); + return ret; + } + + sss_cmd_done(cli_ctx, NULL); + return EOK; +} + +void ssh_protocol_reply(struct cli_ctx *cli_ctx, + struct cache_req_result *result) +{ + struct cli_protocol *pctx; + struct ssh_ctx *ssh_ctx; + errno_t ret; + + pctx = talloc_get_type(cli_ctx->protocol_ctx, struct cli_protocol); + ssh_ctx = talloc_get_type(cli_ctx->rctx->pvt_ctx, struct ssh_ctx); + + ret = sss_packet_new(pctx->creq, 0, sss_packet_get_cmd(pctx->creq->in), + &pctx->creq->out); + if (ret != EOK) { + goto done; + } + + ret = ssh_protocol_build_reply(pctx->creq->out, ssh_ctx, result); + if (ret != EOK) { + goto done; + } + + sss_packet_set_error(pctx->creq->out, EOK); + +done: + ssh_protocol_done(cli_ctx, ret); +} + +static errno_t +ssh_protocol_parse_request(struct cli_ctx *cli_ctx, + const char *default_domain, + const char **_name, + const char **_alias, + const char **_domain) +{ + struct cli_protocol *pctx; + const char *name = NULL; + const char *alias = NULL; + const char *domain = NULL; + uint32_t flags; + uint32_t name_len; + uint32_t alias_len; + uint32_t domain_len; + size_t body_len; + uint8_t *body; + size_t c = 0; + + pctx = talloc_get_type(cli_ctx->protocol_ctx, struct cli_protocol); + + sss_packet_get_body(pctx->creq->in, &body, &body_len); + + SAFEALIGN_COPY_UINT32_CHECK(&flags, body + c, body_len, &c); + if (flags & ~(uint32_t)SSS_SSH_REQ_MASK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Invalid flags received [0x%x]\n", flags); + return EINVAL; + } + + SAFEALIGN_COPY_UINT32_CHECK(&name_len, body + c, body_len, &c); + if (name_len == 0 || name_len > body_len - c) { + DEBUG(SSSDBG_CRIT_FAILURE, "Invalid name length\n"); + return EINVAL; + } + + name = (const char *)(body + c); + if (!sss_utf8_check((const uint8_t *)name, name_len-1) || + name[name_len - 1] != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, "Name is not valid UTF-8 string\n"); + return EINVAL; + } + c += name_len; + + if (flags & SSS_SSH_REQ_ALIAS) { + SAFEALIGN_COPY_UINT32_CHECK(&alias_len, body + c, body_len, &c); + if (alias_len == 0 || alias_len > body_len - c) { + DEBUG(SSSDBG_CRIT_FAILURE, "Invalid alias length\n"); + return EINVAL; + } + + alias = (const char *)(body+c); + if (!sss_utf8_check((const uint8_t *)alias, alias_len - 1) || + alias[alias_len - 1] != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, "Alias is not valid UTF-8 string\n"); + return EINVAL; + } + c += alias_len; + } + + if (flags & SSS_SSH_REQ_DOMAIN) { + SAFEALIGN_COPY_UINT32_CHECK(&domain_len, body + c, body_len, &c); + if (domain_len > 0) { + if (domain_len > body_len - c) { + DEBUG(SSSDBG_CRIT_FAILURE, "Invalid domain length\n"); + return EINVAL; + } + + domain = (const char *)(body + c); + if (!sss_utf8_check((const uint8_t *)domain, domain_len - 1) || + domain[domain_len - 1] != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Domain is not valid UTF-8 string\n"); + return EINVAL; + } + c += domain_len; + } else { + domain = default_domain; + } + + DEBUG(SSSDBG_TRACE_FUNC, + "Requested domain [%s]\n", domain ? domain : ""); + } + + if (_name != NULL) { + *_name = name; + } + + if (_alias != NULL) { + *_alias = alias; + } + + if (_domain != NULL) { + *_domain = domain; + } + + return EOK; +} + +errno_t +ssh_protocol_parse_user(struct cli_ctx *cli_ctx, + const char *default_domain, + const char **_name, + const char **_domain) +{ + return ssh_protocol_parse_request(cli_ctx, default_domain, + _name, NULL, _domain); +} + +errno_t +ssh_protocol_parse_host(struct cli_ctx *cli_ctx, + const char **_name, + const char **_alias, + const char **_domain) +{ + return ssh_protocol_parse_request(cli_ctx, NULL, _name, _alias, _domain); +} diff -Nru sssd-1.15.0/src/responder/ssh/ssh_reply.c sssd-1.15.2/src/responder/ssh/ssh_reply.c --- sssd-1.15.0/src/responder/ssh/ssh_reply.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/responder/ssh/ssh_reply.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,333 @@ +/* + Authors: + Jan Cholasta + + Copyright (C) 2012 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include "config.h" + +#include +#include + +#include "util/util.h" +#include "util/crypto/sss_crypto.h" +#include "util/sss_ssh.h" +#include "util/cert.h" +#include "responder/common/responder.h" +#include "responder/common/responder_packet.h" +#include "responder/common/cache_req/cache_req.h" +#include "responder/ssh/ssh_private.h" + +static errno_t get_valid_certs_keys(TALLOC_CTX *mem_ctx, + struct ssh_ctx *ssh_ctx, + struct ldb_message_element *el_cert, + struct ldb_message_element **_el_res) +{ + TALLOC_CTX *tmp_ctx; + uint8_t *key; + size_t key_len; + char *cert_verification_opts; + struct cert_verify_opts *cert_verify_opts; + int ret; + struct ldb_message_element *el_res; + size_t d; + + if (el_cert == NULL) { + DEBUG(SSSDBG_TRACE_ALL, "Mssing element, nothing to do.\n"); + return EOK; + } + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_new failed.\n"); + return ENOMEM; + } + + ret = confdb_get_string(ssh_ctx->rctx->cdb, tmp_ctx, + CONFDB_MONITOR_CONF_ENTRY, + CONFDB_MONITOR_CERT_VERIFICATION, NULL, + &cert_verification_opts); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Failed to read p11_child_timeout from confdb: [%d] %s\n", + ret, sss_strerror(ret)); + goto done; + } + + ret = parse_cert_verify_opts(tmp_ctx, cert_verification_opts, + &cert_verify_opts); + if (ret != EOK) { + DEBUG(SSSDBG_FATAL_FAILURE, + "Failed to parse verifiy option.\n"); + goto done; + } + + el_res = talloc_zero(tmp_ctx, struct ldb_message_element); + if (el_res == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_zero failed.\n"); + ret = ENOMEM; + goto done; + } + + el_res->values = talloc_array(el_res, struct ldb_val, el_cert->num_values); + if (el_res->values == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_array failed.\n"); + ret = ENOMEM; + goto done; + } + + for (d = 0; d < el_cert->num_values; d++) { + ret = cert_to_ssh_key(tmp_ctx, ssh_ctx->ca_db, + el_cert->values[d].data, + el_cert->values[d].length, + cert_verify_opts, &key, &key_len); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "cert_to_ssh_key failed, ignoring.\n"); + continue; + } + + el_res->values[el_res->num_values].data = + talloc_steal(el_res->values, key); + el_res->values[el_res->num_values].length = key_len; + el_res->num_values++; + } + + if (el_res->num_values == 0) { + *_el_res = NULL; + } else { + *_el_res = talloc_steal(mem_ctx, el_res); + } + + ret = EOK; + +done: + + talloc_free(tmp_ctx); + + return ret; +} + +static errno_t decode_and_add_base64_data(struct sss_packet *packet, + struct ldb_message_element *el, + bool skip_base64_decode, + size_t fqname_len, + const char *fqname, + size_t *c) +{ + uint8_t *key; + size_t key_len; + uint8_t *body; + size_t body_len; + int ret; + size_t d; + TALLOC_CTX *tmp_ctx; + + if (el == NULL) { + DEBUG(SSSDBG_TRACE_ALL, "Mssing element, nothing to do.\n"); + return EOK; + } + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_new failed.\n"); + return ENOMEM; + } + + for (d = 0; d < el->num_values; d++) { + if (skip_base64_decode) { + key = el->values[d].data; + key_len = el->values[d].length; + } else { + key = sss_base64_decode(tmp_ctx, (const char *) el->values[d].data, + &key_len); + if (key == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "sss_base64_decode failed.\n"); + ret = ENOMEM; + goto done; + } + } + + ret = sss_packet_grow(packet, + 3*sizeof(uint32_t) + key_len + fqname_len); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "sss_packet_grow failed.\n"); + goto done; + } + sss_packet_get_body(packet, &body, &body_len); + + SAFEALIGN_SET_UINT32(body+(*c), 0, c); + SAFEALIGN_SET_UINT32(body+(*c), fqname_len, c); + safealign_memcpy(body+(*c), fqname, fqname_len, c); + SAFEALIGN_SET_UINT32(body+(*c), key_len, c); + safealign_memcpy(body+(*c), key, key_len, c); + + } + + ret = EOK; + +done: + talloc_free(tmp_ctx); + + return ret; +} + +static errno_t +ssh_get_output_keys(TALLOC_CTX *mem_ctx, + struct ssh_ctx *ssh_ctx, + struct sss_domain_info *domain, + struct ldb_message *msg, + struct ldb_message_element ***_elements, + uint32_t *_num_keys) +{ + struct ldb_message_element **elements; + struct ldb_message_element *user_cert; + uint32_t num_keys = 0; + uint32_t i = 0; + errno_t ret; + + elements = talloc_zero_array(mem_ctx, struct ldb_message_element *, 5); + if (elements == NULL) { + return ENOMEM; + } + + elements[i] = ldb_msg_find_element(msg, SYSDB_SSH_PUBKEY); + if (elements[i] != NULL) { + num_keys += elements[i]->num_values; + i++; + } + + elements[i] = ldb_msg_find_element(msg, ORIGINALAD_PREFIX SYSDB_SSH_PUBKEY); + if (elements[i] != NULL) { + num_keys += elements[i]->num_values; + i++; + } + + if (DOM_HAS_VIEWS(domain)) { + elements[i] = ldb_msg_find_element(msg, OVERRIDE_PREFIX SYSDB_SSH_PUBKEY); + if (elements[i] != NULL) { + num_keys += elements[i]->num_values; + i++; + } + } + + user_cert = ldb_msg_find_element(msg, SYSDB_USER_CERT); + if (user_cert != NULL) { + ret = get_valid_certs_keys(elements, ssh_ctx, user_cert, &elements[i]); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "get_valid_certs_keys failed.\n"); + goto done; + } + + if (elements[i] != NULL) { + num_keys += elements[i]->num_values; + i++; + } + } + + *_elements = elements; + *_num_keys = num_keys; + + ret = EOK; + +done: + if (ret != EOK) { + talloc_free(elements); + } + + return ret; +} + +static errno_t +ssh_get_name(struct ldb_message *msg, + struct sized_string *sz_name) +{ + const char *name; + + name = ldb_msg_find_attr_as_string(msg, SYSDB_NAME, NULL); + if (name == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "Got unnamed result!\n"); + return ENOENT; + } + + to_sized_string(sz_name, name); + + return EOK; +} + +errno_t +ssh_protocol_build_reply(struct sss_packet *packet, + struct ssh_ctx *ssh_ctx, + struct cache_req_result *result) +{ + TALLOC_CTX *tmp_ctx; + struct ldb_message_element **elements; + struct sized_string name; + uint32_t num_keys; + size_t body_len; + uint8_t *body; + size_t c = 0; + errno_t ret; + int i; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Out of memory!\n"); + return ENOMEM; + } + + ret = ssh_get_output_keys(tmp_ctx, ssh_ctx, result->domain, + result->msgs[0], &elements, &num_keys); + if (ret != EOK) { + goto done; + } + + ret = ssh_get_name(result->msgs[0], &name); + if (ret != EOK) { + goto done; + } + + ret = sss_packet_grow(packet, 2 * sizeof(uint32_t)); + if (ret != EOK) { + goto done; + } + + sss_packet_get_body(packet, &body, &body_len); + + SAFEALIGN_SET_UINT32(&body[c], num_keys, &c); + SAFEALIGN_SET_UINT32(&body[c], 0, &c); + + if (num_keys == 0) { + ret = EOK; + goto done; + } + + for (i = 0; elements[i] != NULL; i++) { + ret = decode_and_add_base64_data(packet, elements[i], false, + name.len, name.str, &c); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "decode_and_add_base64_data failed.\n"); + goto done; + } + } + + ret = EOK; + +done: + talloc_free(tmp_ctx); + + return ret; +} diff -Nru sssd-1.15.0/src/responder/ssh/sshsrv.c sssd-1.15.2/src/responder/ssh/sshsrv.c --- sssd-1.15.0/src/responder/ssh/sshsrv.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ssh/sshsrv.c 2017-03-15 16:53:24.000000000 +0000 @@ -25,7 +25,7 @@ #include "monitor/monitor_interfaces.h" #include "responder/common/responder.h" #include "responder/common/responder_sbus.h" -#include "responder/ssh/sshsrv_private.h" +#include "responder/ssh/ssh_private.h" #include "providers/data_provider.h" struct mon_cli_iface monitor_ssh_methods = { diff -Nru sssd-1.15.0/src/responder/ssh/sshsrv_cmd.c sssd-1.15.2/src/responder/ssh/sshsrv_cmd.c --- sssd-1.15.0/src/responder/ssh/sshsrv_cmd.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ssh/sshsrv_cmd.c 1970-01-01 00:00:00.000000000 +0000 @@ -1,1211 +0,0 @@ -/* - Authors: - Jan Cholasta - - Copyright (C) 2012 Red Hat - - This program is free software; you can redistribute it and/or modify - it under the terms of the GNU General Public License as published by - the Free Software Foundation; either version 3 of the License, or - (at your option) any later version. - - This program is distributed in the hope that it will be useful, - but WITHOUT ANY WARRANTY; without even the implied warranty of - MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - GNU General Public License for more details. - - You should have received a copy of the GNU General Public License - along with this program. If not, see . -*/ - -#include "config.h" - -#include -#include -#include - -#include "util/util.h" -#include "util/crypto/sss_crypto.h" -#include "util/sss_ssh.h" -#include "util/cert.h" -#include "db/sysdb.h" -#include "db/sysdb_ssh.h" -#include "providers/data_provider.h" -#include "responder/common/responder.h" -#include "responder/common/responder_packet.h" -#include "responder/ssh/sshsrv_private.h" - -static errno_t -ssh_cmd_parse_request(struct ssh_cmd_ctx *cmd_ctx, - char *default_domain); - -static errno_t -ssh_user_pubkeys_search(struct ssh_cmd_ctx *cmd_ctx); -static errno_t -ssh_cmd_get_user_pubkeys_done(struct ssh_cmd_ctx *cmd_ctx, - errno_t ret); - -int -sss_ssh_cmd_get_user_pubkeys(struct cli_ctx *cctx) -{ - errno_t ret; - struct ssh_cmd_ctx *cmd_ctx; - - cmd_ctx = talloc_zero(cctx, struct ssh_cmd_ctx); - if (!cmd_ctx) { - return ENOMEM; - } - cmd_ctx->cctx = cctx; - cmd_ctx->is_user = true; - - ret = ssh_cmd_parse_request(cmd_ctx, cctx->rctx->default_domain); - if (ret != EOK) { - goto done; - } - - DEBUG(SSSDBG_TRACE_FUNC, - "Requesting SSH user public keys for [%s] from [%s]\n", - cmd_ctx->name, cmd_ctx->domname ? cmd_ctx->domname : ""); - - if (strcmp(cmd_ctx->name, "root") == 0) { - ret = ERR_NON_SSSD_USER; - goto done; - } - - if (cmd_ctx->domname) { - cmd_ctx->domain = responder_get_domain(cctx->rctx, cmd_ctx->domname); - if (!cmd_ctx->domain) { - ret = ENOENT; - goto done; - } - } else { - cmd_ctx->domain = cctx->rctx->domains; - cmd_ctx->check_next = true; - } - - ret = ssh_user_pubkeys_search(cmd_ctx); - -done: - return ssh_cmd_get_user_pubkeys_done(cmd_ctx, ret); -} - -static errno_t -ssh_host_pubkeys_search(struct ssh_cmd_ctx *cmd_ctx); -static errno_t -ssh_cmd_get_host_pubkeys_done(struct ssh_cmd_ctx *cmd_ctx, - errno_t ret); - -static int -sss_ssh_cmd_get_host_pubkeys(struct cli_ctx *cctx) -{ - errno_t ret; - struct ssh_cmd_ctx *cmd_ctx; - - cmd_ctx = talloc_zero(cctx, struct ssh_cmd_ctx); - if (!cmd_ctx) { - return ENOMEM; - } - cmd_ctx->cctx = cctx; - cmd_ctx->is_user = false; - - ret = ssh_cmd_parse_request(cmd_ctx, NULL); - if (ret != EOK) { - goto done; - } - - DEBUG(SSSDBG_TRACE_FUNC, - "Requesting SSH host public keys for [%s][%s] from [%s]\n", - cmd_ctx->name, cmd_ctx->alias ? cmd_ctx->alias : "", - cmd_ctx->domname ? cmd_ctx->domname : ""); - - if (cmd_ctx->domname) { - cmd_ctx->domain = responder_get_domain(cctx->rctx, cmd_ctx->domname); - if (!cmd_ctx->domain) { - ret = ENOENT; - goto done; - } - } else { - cmd_ctx->domain = cctx->rctx->domains; - cmd_ctx->check_next = true; - } - - ret = ssh_host_pubkeys_search(cmd_ctx); - -done: - return ssh_cmd_get_host_pubkeys_done(cmd_ctx, ret); -} - -static void -ssh_dp_send_req_done(struct tevent_req *req) -{ - struct dp_callback_ctx *cb_ctx = - tevent_req_callback_data(req, struct dp_callback_ctx); - - errno_t ret; - dbus_uint16_t err_maj; - dbus_uint32_t err_min; - char *err_msg; - - ret = sss_dp_get_ssh_host_recv(cb_ctx->mem_ctx, req, - &err_maj, &err_min, - &err_msg); - talloc_zfree(req); - if (ret != EOK) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Fatal error, killing connection!\n"); - talloc_free(cb_ctx->cctx); - return; - } - - cb_ctx->callback(err_maj, err_min, err_msg, cb_ctx->ptr); -} - -static errno_t -ssh_user_pubkeys_search_next(struct ssh_cmd_ctx *cmd_ctx); -static void -ssh_user_pubkeys_search_dp_callback(uint16_t err_maj, - uint32_t err_min, - const char *err_msg, - void *ptr); - -static errno_t -ssh_user_handle_not_found(const char *username) -{ - struct passwd *pwd; - - pwd = getpwnam(username); - if (pwd != NULL) { - DEBUG(SSSDBG_TRACE_ALL, "%s is a non-SSSD user\n", username); - return ERR_NON_SSSD_USER; - } - - return ENOENT; -} - -static errno_t -ssh_user_pubkeys_search(struct ssh_cmd_ctx *cmd_ctx) -{ - struct tevent_req *req; - struct dp_callback_ctx *cb_ctx; - - /* if it is a domainless search, skip domains that require fully - * qualified names instead */ - while (cmd_ctx->domain && cmd_ctx->check_next && cmd_ctx->domain->fqnames) { - cmd_ctx->domain = get_next_domain(cmd_ctx->domain, false); - } - - if (!cmd_ctx->domain) { - DEBUG(SSSDBG_OP_FAILURE, - "No matching domain found for [%s], fail!\n", cmd_ctx->name); - return ssh_user_handle_not_found(cmd_ctx->name); - } - - talloc_zfree(cmd_ctx->fqdn); - cmd_ctx->fqdn = sss_resp_create_fqname(cmd_ctx, cmd_ctx->cctx->rctx, - cmd_ctx->domain, false, cmd_ctx->name); - if (cmd_ctx->fqdn == NULL) { - return ENOMEM; - } - - /* refresh the user's cache entry */ - if (NEED_CHECK_PROVIDER(cmd_ctx->domain->provider)) { - req = sss_dp_get_account_send(cmd_ctx, cmd_ctx->cctx->rctx, - cmd_ctx->domain, false, SSS_DP_USER, - cmd_ctx->fqdn, 0, NULL); - if (!req) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Out of memory sending data provider request\n"); - return ENOMEM; - } - - cb_ctx = talloc_zero(cmd_ctx, struct dp_callback_ctx); - if (!cb_ctx) { - talloc_zfree(req); - return ENOMEM; - } - - cb_ctx->callback = ssh_user_pubkeys_search_dp_callback; - cb_ctx->ptr = cmd_ctx; - cb_ctx->cctx = cmd_ctx->cctx; - cb_ctx->mem_ctx = cmd_ctx; - - tevent_req_set_callback(req, ssh_dp_send_req_done, cb_ctx); - - /* tell caller we are in an async call */ - return EAGAIN; - } - - return ssh_user_pubkeys_search_next(cmd_ctx); -} - -static errno_t -ssh_user_pubkeys_search_next(struct ssh_cmd_ctx *cmd_ctx) -{ - errno_t ret; - const char *attrs[] = { SYSDB_NAME, SYSDB_SSH_PUBKEY, SYSDB_USER_CERT, - NULL }; - struct ldb_result *res; - - DEBUG(SSSDBG_TRACE_FUNC, - "Requesting SSH user public keys for [%s@%s]\n", - cmd_ctx->name, cmd_ctx->domain->name); - - if (cmd_ctx->domain->sysdb == NULL) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Fatal: Sysdb CTX not found for this domain!\n"); - return EFAULT; - } - - ret = sysdb_get_user_attr_with_views(cmd_ctx, cmd_ctx->domain, - cmd_ctx->fqdn, attrs, &res); - if (ret != EOK) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Failed to make request to our cache!\n"); - return EIO; - } - - if (res->count > 1) { - DEBUG(SSSDBG_FATAL_FAILURE, - "User search by name (%s) returned > 1 results!\n", - cmd_ctx->name); - return EINVAL; - } - - if (!res->count) { - /* if a multidomain search, try with next */ - if (cmd_ctx->check_next) { - cmd_ctx->domain = get_next_domain(cmd_ctx->domain, false); - return ssh_user_pubkeys_search(cmd_ctx); - } - - DEBUG(SSSDBG_MINOR_FAILURE, - "No attributes for user [%s] found.\n", cmd_ctx->name); - - return ssh_user_handle_not_found(cmd_ctx->name); - } - - cmd_ctx->result = res->msgs[0]; - - /* one result found */ - return EOK; -} - -static void -ssh_user_pubkeys_search_dp_callback(uint16_t err_maj, - uint32_t err_min, - const char *err_msg, - void *ptr) -{ - struct ssh_cmd_ctx *cmd_ctx = talloc_get_type(ptr, struct ssh_cmd_ctx); - errno_t ret; - - if (err_maj) { - DEBUG(SSSDBG_OP_FAILURE, - "Unable to get information from Data Provider\n" - "Error: %u, %u, %s\n", - (unsigned int)err_maj, (unsigned int)err_min, err_msg); - } - - ret = ssh_user_pubkeys_search_next(cmd_ctx); - ssh_cmd_get_user_pubkeys_done(cmd_ctx, ret); -} - -static errno_t -ssh_host_pubkeys_search_next(struct ssh_cmd_ctx *cmd_ctx); -static void -ssh_host_pubkeys_search_dp_callback(uint16_t err_maj, - uint32_t err_min, - const char *err_msg, - void *ptr); - -static errno_t -ssh_host_pubkeys_search(struct ssh_cmd_ctx *cmd_ctx) -{ - struct tevent_req *req; - struct dp_callback_ctx *cb_ctx; - - if (!cmd_ctx->domain) { - DEBUG(SSSDBG_OP_FAILURE, - "No matching domain found for [%s], fail!\n", cmd_ctx->name); - return ENOENT; - } - - /* refresh the host's cache entry */ - if (NEED_CHECK_PROVIDER(cmd_ctx->domain->provider)) { - req = sss_dp_get_ssh_host_send(cmd_ctx, cmd_ctx->cctx->rctx, - cmd_ctx->domain, false, - cmd_ctx->name, cmd_ctx->alias); - if (!req) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Out of memory sending data provider request\n"); - return ENOMEM; - } - - cb_ctx = talloc_zero(cmd_ctx, struct dp_callback_ctx); - if (!cb_ctx) { - talloc_zfree(req); - return ENOMEM; - } - - cb_ctx->callback = ssh_host_pubkeys_search_dp_callback; - cb_ctx->ptr = cmd_ctx; - cb_ctx->cctx = cmd_ctx->cctx; - cb_ctx->mem_ctx = cmd_ctx; - - tevent_req_set_callback(req, ssh_dp_send_req_done, cb_ctx); - - /* tell caller we are in an async call */ - return EAGAIN; - } - - return ssh_host_pubkeys_search_next(cmd_ctx); -} - -static errno_t -ssh_host_pubkeys_search_next(struct ssh_cmd_ctx *cmd_ctx) -{ - errno_t ret; - struct sysdb_ctx *sysdb; - const char *attrs[] = { SYSDB_NAME, SYSDB_SSH_PUBKEY, NULL }; - - DEBUG(SSSDBG_TRACE_FUNC, - "Requesting SSH host public keys for [%s@%s]\n", - cmd_ctx->name, cmd_ctx->domain->name); - - sysdb = cmd_ctx->domain->sysdb; - if (sysdb == NULL) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Fatal: Sysdb CTX not found for this domain!\n"); - return EFAULT; - } - - ret = sysdb_get_ssh_host(cmd_ctx, cmd_ctx->domain, - cmd_ctx->name, attrs, &cmd_ctx->result); - if (ret != EOK && ret != ENOENT) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Failed to make request to our cache!\n"); - return EIO; - } - - if (ret == ENOENT) { - /* if a multidomain search, try with next */ - if (cmd_ctx->check_next) { - cmd_ctx->domain = get_next_domain(cmd_ctx->domain, false); - return ssh_host_pubkeys_search(cmd_ctx); - } - - DEBUG(SSSDBG_OP_FAILURE, - "No attributes for host [%s] found.\n", cmd_ctx->name); - - return ENOENT; - } - - return EOK; -} - -static void -ssh_host_pubkeys_search_dp_callback(uint16_t err_maj, - uint32_t err_min, - const char *err_msg, - void *ptr) -{ - struct ssh_cmd_ctx *cmd_ctx = talloc_get_type(ptr, struct ssh_cmd_ctx); - errno_t ret; - - if (err_maj) { - DEBUG(SSSDBG_OP_FAILURE, - "Unable to get information from Data Provider\n" - "Error: %u, %u, %s\n", - (unsigned int)err_maj, (unsigned int)err_min, err_msg); - } - - ret = ssh_host_pubkeys_search_next(cmd_ctx); - ssh_cmd_get_host_pubkeys_done(cmd_ctx, ret); -} - -static char * -ssh_host_pubkeys_format_known_host_plain(TALLOC_CTX *mem_ctx, - struct sss_ssh_ent *ent) -{ - TALLOC_CTX *tmp_ctx; - errno_t ret; - char *name, *pubkey; - char *result = NULL; - size_t i; - - tmp_ctx = talloc_new(NULL); - if (!tmp_ctx) { - return NULL; - } - - name = talloc_strdup(tmp_ctx, ent->name); - if (!name) { - goto done; - } - - for (i = 0; i < ent->num_aliases; i++) { - name = talloc_asprintf_append(name, ",%s", ent->aliases[i]); - if (!name) { - goto done; - } - } - - result = talloc_strdup(tmp_ctx, ""); - if (!result) { - goto done; - } - - for (i = 0; i < ent->num_pubkeys; i++) { - ret = sss_ssh_format_pubkey(tmp_ctx, &ent->pubkeys[i], &pubkey); - if (ret != EOK) { - result = NULL; - goto done; - } - - result = talloc_asprintf_append(result, "%s %s\n", name, pubkey); - if (!result) { - goto done; - } - - talloc_free(pubkey); - } - - talloc_steal(mem_ctx, result); - -done: - talloc_free(tmp_ctx); - - return result; -} - -static char * -ssh_host_pubkeys_format_known_host_hashed(TALLOC_CTX *mem_ctx, - struct sss_ssh_ent *ent) -{ - TALLOC_CTX *tmp_ctx; - errno_t ret; - char *name, *pubkey, *saltstr, *hashstr, *result; - unsigned char salt[SSS_SHA1_LENGTH], hash[SSS_SHA1_LENGTH]; - size_t i, j, k; - - tmp_ctx = talloc_new(NULL); - if (!tmp_ctx) { - return NULL; - } - - result = talloc_strdup(tmp_ctx, ""); - if (!result) { - goto done; - } - - for (i = 0; i < ent->num_pubkeys; i++) { - ret = sss_ssh_format_pubkey(tmp_ctx, &ent->pubkeys[i], &pubkey); - if (ret != EOK) { - result = NULL; - goto done; - } - - for (j = 0; j <= ent->num_aliases; j++) { - name = (j == 0 ? ent->name : ent->aliases[j-1]); - - for (k = 0; k < SSS_SHA1_LENGTH; k++) { - salt[k] = rand(); - } - - ret = sss_hmac_sha1(salt, SSS_SHA1_LENGTH, - (unsigned char *)name, strlen(name), - hash); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, - "sss_hmac_sha1() failed (%d): %s\n", - ret, strerror(ret)); - result = NULL; - goto done; - } - - saltstr = sss_base64_encode(tmp_ctx, salt, SSS_SHA1_LENGTH); - if (!saltstr) { - result = NULL; - goto done; - } - - hashstr = sss_base64_encode(tmp_ctx, hash, SSS_SHA1_LENGTH); - if (!hashstr) { - result = NULL; - goto done; - } - - result = talloc_asprintf_append(result, "|1|%s|%s %s\n", - saltstr, hashstr, pubkey); - if (!result) { - goto done; - } - - talloc_free(saltstr); - talloc_free(hashstr); - } - - talloc_free(pubkey); - } - - talloc_steal(mem_ctx, result); - -done: - talloc_free(tmp_ctx); - - return result; -} - -static errno_t -ssh_host_pubkeys_update_known_hosts(struct ssh_cmd_ctx *cmd_ctx) -{ - TALLOC_CTX *tmp_ctx; - errno_t ret; - const char *attrs[] = { - SYSDB_NAME, - SYSDB_NAME_ALIAS, - SYSDB_SSH_PUBKEY, - NULL - }; - struct cli_ctx *cctx = cmd_ctx->cctx; - struct sss_domain_info *dom = cctx->rctx->domains; - struct ssh_ctx *ssh_ctx = (struct ssh_ctx *)cctx->rctx->pvt_ctx; - struct sysdb_ctx *sysdb; - time_t now = time(NULL); - struct ldb_message **hosts; - size_t num_hosts, i; - struct sss_ssh_ent *ent; - int fd = -1; - char *filename = NULL; - char *entstr; - ssize_t wret; - - tmp_ctx = talloc_new(NULL); - if (!tmp_ctx) { - return ENOMEM; - } - - if (cmd_ctx->domain) { - ret = sysdb_update_ssh_known_host_expire(cmd_ctx->domain, - cmd_ctx->name, now, - ssh_ctx->known_hosts_timeout); - if (ret != EOK && ret != ENOENT) { - goto done; - } - } - - /* write known_hosts file */ - filename = talloc_strdup(tmp_ctx, SSS_SSH_KNOWN_HOSTS_TEMP_TMPL); - if (!filename) { - ret = ENOMEM; - goto done; - } - - fd = sss_unique_file_ex(tmp_ctx, filename, 0133, &ret); - if (fd == -1) { - filename = NULL; - goto done; - } - - for (; dom; dom = get_next_domain(dom, false)) { - sysdb = dom->sysdb; - if (sysdb == NULL) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Fatal: Sysdb CTX not found for this domain!\n"); - ret = EFAULT; - goto done; - } - - ret = sysdb_get_ssh_known_hosts(tmp_ctx, dom, now, attrs, - &hosts, &num_hosts); - if (ret != EOK) { - if (ret != ENOENT) { - DEBUG(SSSDBG_OP_FAILURE, - "Host search failed for domain [%s]\n", dom->name); - } - continue; - } - - for (i = 0; i < num_hosts; i++) { - ret = sss_ssh_make_ent(tmp_ctx, hosts[i], &ent); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, - "Failed to get SSH host public keys\n"); - continue; - } - - if (ssh_ctx->hash_known_hosts) { - entstr = ssh_host_pubkeys_format_known_host_hashed(ent, ent); - } else { - entstr = ssh_host_pubkeys_format_known_host_plain(ent, ent); - } - if (!entstr) { - DEBUG(SSSDBG_OP_FAILURE, - "Failed to format known_hosts data for [%s]\n", - ent->name); - continue; - } - - wret = sss_atomic_write_s(fd, entstr, strlen(entstr)); - if (wret == -1) { - ret = errno; - goto done; - } - - talloc_free(ent); - } - - talloc_free(hosts); - } - - ret = fchmod(fd, 0644); - if (ret == -1) { - ret = errno; - goto done; - } - - ret = rename(filename, SSS_SSH_KNOWN_HOSTS_PATH); - if (ret == -1) { - ret = errno; - goto done; - } - - ret = EOK; - -done: - if (fd != -1) { - close(fd); - } - talloc_free(tmp_ctx); - - return ret; -} - -static errno_t -ssh_cmd_parse_request(struct ssh_cmd_ctx *cmd_ctx, - char *default_domain) -{ - struct cli_protocol *pctx; - struct ssh_ctx *ssh_ctx; - errno_t ret; - uint8_t *body; - size_t body_len; - size_t c = 0; - uint32_t flags; - uint32_t name_len; - char *name; - uint32_t alias_len; - char *alias = NULL; - uint32_t domain_len; - char *domain = NULL; - - ssh_ctx = talloc_get_type(cmd_ctx->cctx->rctx->pvt_ctx, struct ssh_ctx); - pctx = talloc_get_type(cmd_ctx->cctx->protocol_ctx, struct cli_protocol); - - sss_packet_get_body(pctx->creq->in, &body, &body_len); - - SAFEALIGN_COPY_UINT32_CHECK(&flags, body+c, body_len, &c); - if (flags & ~(uint32_t)SSS_SSH_REQ_MASK) { - DEBUG(SSSDBG_CRIT_FAILURE, "Invalid flags received [0x%x]\n", flags); - return EINVAL; - } - - SAFEALIGN_COPY_UINT32_CHECK(&name_len, body+c, body_len, &c); - if (name_len == 0 || name_len > body_len - c) { - DEBUG(SSSDBG_CRIT_FAILURE, "Invalid name length\n"); - return EINVAL; - } - - name = (char *)(body+c); - if (!sss_utf8_check((const uint8_t *)name, name_len-1) || - name[name_len-1] != 0) { - DEBUG(SSSDBG_CRIT_FAILURE, "Name is not valid UTF-8 string\n"); - return EINVAL; - } - c += name_len; - - if (flags & SSS_SSH_REQ_ALIAS) { - SAFEALIGN_COPY_UINT32_CHECK(&alias_len, body+c, body_len, &c); - if (alias_len == 0 || alias_len > body_len - c) { - DEBUG(SSSDBG_CRIT_FAILURE, "Invalid alias length\n"); - return EINVAL; - } - - alias = (char *)(body+c); - if (!sss_utf8_check((const uint8_t *)alias, alias_len-1) || - alias[alias_len-1] != 0) { - DEBUG(SSSDBG_CRIT_FAILURE, "Alias is not valid UTF-8 string\n"); - return EINVAL; - } - c += alias_len; - } - - if (flags & SSS_SSH_REQ_DOMAIN) { - SAFEALIGN_COPY_UINT32_CHECK(&domain_len, body+c, body_len, &c); - if (domain_len > 0) { - if (domain_len > body_len - c) { - DEBUG(SSSDBG_CRIT_FAILURE, "Invalid domain length\n"); - return EINVAL; - } - - domain = (char *)(body+c); - if (!sss_utf8_check((const uint8_t *)domain, domain_len-1) || - domain[domain_len-1] != 0) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Domain is not valid UTF-8 string\n"); - return EINVAL; - } - c += domain_len; - } else { - domain = default_domain; - } - - DEBUG(SSSDBG_TRACE_FUNC, - "Requested domain [%s]\n", domain ? domain : ""); - } else { - DEBUG(SSSDBG_TRACE_FUNC, "Splitting domain from name [%s]\n", name); - - ret = sss_parse_name(cmd_ctx, ssh_ctx->snctx, name, - &cmd_ctx->domname, &cmd_ctx->name); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "Invalid name received [%s]\n", name); - return ENOENT; - } - - name = cmd_ctx->name; - } - - if (cmd_ctx->is_user && cmd_ctx->domname == NULL) { - DEBUG(SSSDBG_TRACE_FUNC, - "Parsing name [%s][%s]\n", name, domain ? domain : ""); - - ret = sss_parse_name_for_domains(cmd_ctx, - cmd_ctx->cctx->rctx->domains, - domain, name, - &cmd_ctx->domname, - &cmd_ctx->name); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, - "Invalid name received [%s]\n", name); - return ENOENT; - } - } else { - if (cmd_ctx->name == NULL) { - cmd_ctx->name = talloc_strdup(cmd_ctx, name); - if (!cmd_ctx->name) return ENOMEM; - } - - if (cmd_ctx->domname == NULL && domain != NULL) { - cmd_ctx->domname = talloc_strdup(cmd_ctx, domain); - if (!cmd_ctx->domname) return ENOMEM; - } - } - - if (alias != NULL && strcmp(cmd_ctx->name, alias) != 0) { - cmd_ctx->alias = talloc_strdup(cmd_ctx, alias); - if (!cmd_ctx->alias) return ENOMEM; - } - - return EOK; -} - -static errno_t get_valid_certs_keys(TALLOC_CTX *mem_ctx, - struct ssh_cmd_ctx *cmd_ctx, - struct ldb_message_element *el_cert, - struct ssh_ctx *ssh_ctx, - struct ldb_message_element **_el_res) -{ - TALLOC_CTX *tmp_ctx; - uint8_t *key; - size_t key_len; - char *cert_verification_opts; - struct cert_verify_opts *cert_verify_opts; - int ret; - struct ldb_message_element *el_res; - struct cli_ctx *cctx = cmd_ctx->cctx; - size_t d; - - if (el_cert == NULL) { - DEBUG(SSSDBG_TRACE_ALL, "Mssing element, nothing to do.\n"); - return EOK; - } - - tmp_ctx = talloc_new(NULL); - if (tmp_ctx == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "talloc_new failed.\n"); - return ENOMEM; - } - - ret = confdb_get_string(cctx->rctx->cdb, tmp_ctx, - CONFDB_MONITOR_CONF_ENTRY, - CONFDB_MONITOR_CERT_VERIFICATION, NULL, - &cert_verification_opts); - if (ret != EOK) { - DEBUG(SSSDBG_CRIT_FAILURE, - "Failed to read p11_child_timeout from confdb: [%d] %s\n", - ret, sss_strerror(ret)); - goto done; - } - - ret = parse_cert_verify_opts(tmp_ctx, cert_verification_opts, - &cert_verify_opts); - if (ret != EOK) { - DEBUG(SSSDBG_FATAL_FAILURE, - "Failed to parse verifiy option.\n"); - goto done; - } - - el_res = talloc_zero(tmp_ctx, struct ldb_message_element); - if (el_res == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "talloc_zero failed.\n"); - ret = ENOMEM; - goto done; - } - - el_res->values = talloc_array(el_res, struct ldb_val, el_cert->num_values); - if (el_res->values == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "talloc_array failed.\n"); - ret = ENOMEM; - goto done; - } - - for (d = 0; d < el_cert->num_values; d++) { - ret = cert_to_ssh_key(tmp_ctx, ssh_ctx->ca_db, - el_cert->values[d].data, - el_cert->values[d].length, - cert_verify_opts, &key, &key_len); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "cert_to_ssh_key failed, ignoring.\n"); - continue; - } - - el_res->values[el_res->num_values].data = - talloc_steal(el_res->values, key); - el_res->values[el_res->num_values].length = key_len; - el_res->num_values++; - } - - if (el_res->num_values == 0) { - *_el_res = NULL; - } else { - *_el_res = talloc_steal(mem_ctx, el_res); - } - - ret = EOK; - -done: - - talloc_free(tmp_ctx); - - return ret; -} - -static errno_t decode_and_add_base64_data(struct ssh_cmd_ctx *cmd_ctx, - struct ldb_message_element *el, - bool skip_base64_decode, - struct ssh_ctx *ssh_ctx, - size_t fqname_len, - const char *fqname, - size_t *c) -{ - struct cli_protocol *pctx; - uint8_t *key; - size_t key_len; - uint8_t *body; - size_t body_len; - int ret; - size_t d; - TALLOC_CTX *tmp_ctx; - - if (el == NULL) { - DEBUG(SSSDBG_TRACE_ALL, "Mssing element, nothing to do.\n"); - return EOK; - } - - tmp_ctx = talloc_new(NULL); - if (tmp_ctx == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "talloc_new failed.\n"); - return ENOMEM; - } - - pctx = talloc_get_type(cmd_ctx->cctx->protocol_ctx, struct cli_protocol); - - for (d = 0; d < el->num_values; d++) { - if (skip_base64_decode) { - key = el->values[d].data; - key_len = el->values[d].length; - } else { - key = sss_base64_decode(tmp_ctx, (const char *) el->values[d].data, - &key_len); - if (key == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "sss_base64_decode failed.\n"); - ret = ENOMEM; - goto done; - } - } - - ret = sss_packet_grow(pctx->creq->out, - 3*sizeof(uint32_t) + key_len + fqname_len); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "sss_packet_grow failed.\n"); - goto done; - } - sss_packet_get_body(pctx->creq->out, &body, &body_len); - - SAFEALIGN_SET_UINT32(body+(*c), 0, c); - SAFEALIGN_SET_UINT32(body+(*c), fqname_len, c); - safealign_memcpy(body+(*c), fqname, fqname_len, c); - SAFEALIGN_SET_UINT32(body+(*c), key_len, c); - safealign_memcpy(body+(*c), key, key_len, c); - - } - - ret = EOK; - -done: - talloc_free(tmp_ctx); - - return ret; -} - -static errno_t -ssh_cmd_build_reply(struct ssh_cmd_ctx *cmd_ctx) -{ - errno_t ret; - uint8_t *body; - size_t body_len; - size_t c = 0; - struct ldb_message_element *el = NULL; - struct ldb_message_element *el_override = NULL; - struct ldb_message_element *el_orig = NULL; - struct ldb_message_element *el_user_cert = NULL; - struct ldb_message_element *el_user_cert_keys = NULL; - uint32_t count = 0; - const char *name; - char *fqname; - uint32_t fqname_len; - TALLOC_CTX *tmp_ctx; - struct ssh_ctx *ssh_ctx; - struct cli_protocol *pctx; - - ssh_ctx = talloc_get_type(cmd_ctx->cctx->rctx->pvt_ctx, struct ssh_ctx); - pctx = talloc_get_type(cmd_ctx->cctx->protocol_ctx, struct cli_protocol); - - ret = sss_packet_new(pctx->creq, 0, - sss_packet_get_cmd(pctx->creq->in), - &pctx->creq->out); - if (ret != EOK) { - return ret; - } - - tmp_ctx = talloc_new(NULL); - if (tmp_ctx == NULL) { - DEBUG(SSSDBG_OP_FAILURE, "talloc_new failed.\n"); - return ENOMEM; - } - - el = ldb_msg_find_element(cmd_ctx->result, SYSDB_SSH_PUBKEY); - if (el) { - count = el->num_values; - } - - el_orig = ldb_msg_find_element(cmd_ctx->result, - ORIGINALAD_PREFIX SYSDB_SSH_PUBKEY); - if (el_orig) { - count = el_orig->num_values; - } - - if (DOM_HAS_VIEWS(cmd_ctx->domain)) { - el_override = ldb_msg_find_element(cmd_ctx->result, - OVERRIDE_PREFIX SYSDB_SSH_PUBKEY); - if (el_override) { - count += el_override->num_values; - } - } - - el_user_cert = ldb_msg_find_element(cmd_ctx->result, SYSDB_USER_CERT); - if (el_user_cert) { - ret = get_valid_certs_keys(cmd_ctx, cmd_ctx, el_user_cert, ssh_ctx, - &el_user_cert_keys); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "get_valid_certs_keys failed.\n"); - goto done; - } - - if (el_user_cert_keys) { - count += el_user_cert_keys->num_values; - } - } - - ret = sss_packet_grow(pctx->creq->out, 2*sizeof(uint32_t)); - if (ret != EOK) { - goto done; - } - sss_packet_get_body(pctx->creq->out, &body, &body_len); - - SAFEALIGN_SET_UINT32(body+c, count, &c); - SAFEALIGN_SET_UINT32(body+c, 0, &c); - - if (count == 0) { - ret = EOK; - goto done; - } - - name = ldb_msg_find_attr_as_string(cmd_ctx->result, SYSDB_NAME, NULL); - if (!name) { - DEBUG(SSSDBG_OP_FAILURE, - "Got unnamed result for [%s@%s]\n", - cmd_ctx->name, cmd_ctx->domain->name); - ret = ENOENT; - goto done; - } - - fqname = talloc_asprintf(cmd_ctx, "%s@%s", - name, cmd_ctx->domain->name); - if (!fqname) { - ret = ENOMEM; - goto done; - } - - fqname_len = strlen(fqname)+1; - - ret = decode_and_add_base64_data(cmd_ctx, el, false, ssh_ctx, - fqname_len, fqname, &c); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "decode_and_add_base64_data failed.\n"); - goto done; - } - - ret = decode_and_add_base64_data(cmd_ctx, el_orig, false, ssh_ctx, - fqname_len, fqname, &c); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "decode_and_add_base64_data failed.\n"); - goto done; - } - - ret = decode_and_add_base64_data(cmd_ctx, el_override, false, ssh_ctx, - fqname_len, fqname, &c); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "decode_and_add_base64_data failed.\n"); - goto done; - } - - ret = decode_and_add_base64_data(cmd_ctx, el_user_cert_keys, true, ssh_ctx, - fqname_len, fqname, &c); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, "decode_and_add_base64_data failed.\n"); - goto done; - } - - ret = EOK; - -done: - - talloc_free(tmp_ctx); - - return ret; -} - -static errno_t -ssh_cmd_send_error(struct ssh_cmd_ctx *cmd_ctx, - errno_t error) -{ - struct cli_ctx *cctx = cmd_ctx->cctx; - errno_t ret; - - ret = sss_cmd_send_error(cctx, error); - if (ret != EOK) { - return ret; - } - - sss_cmd_done(cctx, cmd_ctx); - - return EOK; -} - -static errno_t -ssh_cmd_send_reply(struct ssh_cmd_ctx *cmd_ctx) -{ - struct cli_protocol *pctx; - errno_t ret; - - pctx = talloc_get_type(cmd_ctx->cctx->protocol_ctx, struct cli_protocol); - - /* create response packet */ - ret = ssh_cmd_build_reply(cmd_ctx); - if (ret != EOK) { - return ret; - } - - sss_packet_set_error(pctx->creq->out, EOK); - sss_cmd_done(cmd_ctx->cctx, cmd_ctx); - - return EOK; -} - -static errno_t -ssh_cmd_done(struct ssh_cmd_ctx *cmd_ctx, - errno_t ret) -{ - switch (ret) { - case EOK: - ret = ssh_cmd_send_reply(cmd_ctx); - break; - - case EAGAIN: - return EOK; - - case EFAULT: - break; - - default: - ret = ssh_cmd_send_error(cmd_ctx, ret); - break; - } - - if (ret != EOK) { - DEBUG(SSSDBG_CRIT_FAILURE, "Fatal error, killing connection!\n"); - talloc_free(cmd_ctx->cctx); - return EFAULT; - } - - return EOK; -} - -static errno_t -ssh_cmd_get_user_pubkeys_done(struct ssh_cmd_ctx *cmd_ctx, - errno_t ret) -{ - return ssh_cmd_done(cmd_ctx, ret); -} - -static errno_t -ssh_cmd_get_host_pubkeys_done(struct ssh_cmd_ctx *cmd_ctx, - errno_t ret) -{ - if (ret == EOK || ret == ENOENT) { - ssh_host_pubkeys_update_known_hosts(cmd_ctx); - } - - return ssh_cmd_done(cmd_ctx, ret); -} - -struct cli_protocol_version *register_cli_protocol_version(void) -{ - static struct cli_protocol_version ssh_cli_protocol_version[] = { - {0, NULL, NULL} - }; - - return ssh_cli_protocol_version; -} - -struct sss_cmd_table *get_ssh_cmds(void) { - static struct sss_cmd_table ssh_cmds[] = { - {SSS_GET_VERSION, sss_cmd_get_version}, - {SSS_SSH_GET_USER_PUBKEYS, sss_ssh_cmd_get_user_pubkeys}, - {SSS_SSH_GET_HOST_PUBKEYS, sss_ssh_cmd_get_host_pubkeys}, - {SSS_CLI_NULL, NULL} - }; - - return ssh_cmds; -} diff -Nru sssd-1.15.0/src/responder/ssh/sshsrv_dp.c sssd-1.15.2/src/responder/ssh/sshsrv_dp.c --- sssd-1.15.0/src/responder/ssh/sshsrv_dp.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ssh/sshsrv_dp.c 1970-01-01 00:00:00.000000000 +0000 @@ -1,156 +0,0 @@ -/* - Authors: - Jakub Hrozek - - Copyright (C) 2012 Red Hat - - This program is free software; you can redistribute it and/or modify - it under the terms of the GNU General Public License as published by - the Free Software Foundation; either version 3 of the License, or - (at your option) any later version. - - This program is distributed in the hope that it will be useful, - but WITHOUT ANY WARRANTY; without even the implied warranty of - MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - GNU General Public License for more details. - - You should have received a copy of the GNU General Public License - along with this program. If not, see . -*/ - -#include -#include -#include -#include "sbus/sssd_dbus.h" - -#include "util/util.h" -#include "sbus/sbus_client.h" -#include "providers/data_provider/dp_responder_iface.h" -#include "responder/common/responder.h" -#include "responder/ssh/sshsrv_private.h" - -struct sss_dp_get_ssh_host_info { - struct sss_domain_info *dom; - - bool fast_reply; - const char *name; - const char *alias; -}; - -static DBusMessage * -sss_dp_get_ssh_host_msg(void *pvt); - -struct tevent_req * -sss_dp_get_ssh_host_send(TALLOC_CTX *mem_ctx, - struct resp_ctx *rctx, - struct sss_domain_info *dom, - bool fast_reply, - const char *name, - const char *alias) -{ - errno_t ret; - struct tevent_req *req; - struct sss_dp_get_ssh_host_info *info; - struct sss_dp_req_state *state; - char *key; - - req = tevent_req_create(mem_ctx, &state, struct sss_dp_req_state); - if (!req) { - return NULL; - } - - if (!dom) { - ret = EINVAL; - goto error; - } - - info = talloc_zero(state, struct sss_dp_get_ssh_host_info); - info->fast_reply = fast_reply; - info->name = name; - info->alias = alias; - info->dom = dom; - - if (alias) { - key = talloc_asprintf(state, "%s:%s@%s", name, alias, dom->name); - } else { - key = talloc_asprintf(state, "%s@%s", name, dom->name); - } - if (!key) { - ret = ENOMEM; - goto error; - } - - ret = sss_dp_issue_request(state, rctx, key, dom, sss_dp_get_ssh_host_msg, - info, req); - talloc_free(key); - if (ret != EOK) { - DEBUG(SSSDBG_OP_FAILURE, - "Could not issue DP request [%d]: %s\n", - ret, strerror(ret)); - goto error; - } - - return req; - -error: - tevent_req_error(req, ret); - tevent_req_post(req, rctx->ev); - return req; -} - -static DBusMessage * -sss_dp_get_ssh_host_msg(void *pvt) -{ - DBusMessage *msg; - dbus_bool_t dbret; - struct sss_dp_get_ssh_host_info *info; - uint32_t dp_flags = 0; - - info = talloc_get_type(pvt, struct sss_dp_get_ssh_host_info); - - if (info->fast_reply) { - dp_flags |= DP_FAST_REPLY; - } - - msg = dbus_message_new_method_call(NULL, - DP_PATH, - IFACE_DP, - IFACE_DP_HOSTHANDLER); - if (msg == NULL) { - DEBUG(SSSDBG_CRIT_FAILURE, "Out of memory?!\n"); - return NULL; - } - - /* create the message */ - DEBUG(SSSDBG_TRACE_FUNC, - "Creating SSH host request for [%s][%u][%s][%s]\n", - info->dom->name, dp_flags, info->name, - info->alias == NULL ? "-" : info->alias); - - if (info->alias == NULL) { - info->alias = ""; - } - - dbret = dbus_message_append_args(msg, - DBUS_TYPE_UINT32, &dp_flags, - DBUS_TYPE_STRING, &info->name, - DBUS_TYPE_STRING, &info->alias, - DBUS_TYPE_INVALID); - if (!dbret) { - DEBUG(SSSDBG_CRIT_FAILURE, "Failed to build message\n"); - dbus_message_unref(msg); - return NULL; - } - - return msg; -} - -errno_t -sss_dp_get_ssh_host_recv(TALLOC_CTX *mem_ctx, - struct tevent_req *req, - dbus_uint16_t *dp_err, - dbus_uint32_t *dp_ret, - char **err_msg) -{ - return sss_dp_req_recv(mem_ctx, req, dp_err, dp_ret, err_msg); -} diff -Nru sssd-1.15.0/src/responder/ssh/sshsrv_private.h sssd-1.15.2/src/responder/ssh/sshsrv_private.h --- sssd-1.15.0/src/responder/ssh/sshsrv_private.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/responder/ssh/sshsrv_private.h 1970-01-01 00:00:00.000000000 +0000 @@ -1,69 +0,0 @@ -/* - Authors: - Jan Cholasta - - Copyright (C) 2012 Red Hat - - This program is free software; you can redistribute it and/or modify - it under the terms of the GNU General Public License as published by - the Free Software Foundation; either version 3 of the License, or - (at your option) any later version. - - This program is distributed in the hope that it will be useful, - but WITHOUT ANY WARRANTY; without even the implied warranty of - MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - GNU General Public License for more details. - - You should have received a copy of the GNU General Public License - along with this program. If not, see . -*/ - -#ifndef _SSHSRV_PRIVATE_H_ -#define _SSHSRV_PRIVATE_H_ - -#include "responder/common/responder.h" - -#define SSS_SSH_KNOWN_HOSTS_PATH PUBCONF_PATH"/known_hosts" -#define SSS_SSH_KNOWN_HOSTS_TEMP_TMPL PUBCONF_PATH"/.known_hosts.XXXXXX" - -struct ssh_ctx { - struct resp_ctx *rctx; - struct sss_names_ctx *snctx; - - bool hash_known_hosts; - int known_hosts_timeout; - char *ca_db; -}; - -struct ssh_cmd_ctx { - struct cli_ctx *cctx; - char *name; - char *alias; - char *domname; - bool is_user; - - struct sss_domain_info *domain; - bool check_next; - char *fqdn; - - struct ldb_message *result; -}; - -struct sss_cmd_table *get_ssh_cmds(void); - -struct tevent_req * -sss_dp_get_ssh_host_send(TALLOC_CTX *mem_ctx, - struct resp_ctx *rctx, - struct sss_domain_info *dom, - bool fast_reply, - const char *name, - const char *alias); - -errno_t -sss_dp_get_ssh_host_recv(TALLOC_CTX *mem_ctx, - struct tevent_req *req, - dbus_uint16_t *dp_err, - dbus_uint32_t *dp_ret, - char **err_msg); - -#endif /* _SSHSRV_PRIVATE_H_ */ diff -Nru sssd-1.15.0/src/sbus/sssd_dbus_connection.c sssd-1.15.2/src/sbus/sssd_dbus_connection.c --- sssd-1.15.0/src/sbus/sssd_dbus_connection.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sbus/sssd_dbus_connection.c 2017-03-15 16:53:24.000000000 +0000 @@ -27,9 +27,6 @@ #include "sbus/sssd_dbus_private.h" #include "sbus/sssd_dbus_meta.h" -/* Types */ -struct dbus_ctx_list; - static int sbus_auto_reconnect(struct sbus_connection *conn); static void sbus_dispatch(struct tevent_context *ev, @@ -166,22 +163,22 @@ conn->last_request_time = last_request_time; conn->client_destructor_data = client_destructor_data; - ret = sbus_opath_hash_init(conn, conn, &conn->managed_paths); - if (ret != EOK) { + conn->managed_paths = sbus_opath_hash_init(conn, conn); + if (conn->managed_paths == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Cannot create object paths hash table\n"); talloc_free(conn); return EIO; } - ret = sbus_nodes_hash_init(conn, conn, &conn->nodes_fns); - if (ret != EOK) { + conn->nodes_fns = sbus_nodes_hash_init(conn); + if (conn->nodes_fns == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Cannot create node functions hash table\n"); talloc_free(conn); return EIO; } - ret = sbus_incoming_signal_hash_init(conn, &conn->incoming_signals); - if (ret != EOK) { + conn->incoming_signals = sbus_incoming_signal_hash_init(conn); + if (conn->incoming_signals == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Cannot create incoming singals " "hash table\n"); talloc_free(conn); @@ -501,12 +498,6 @@ conn->reconnect_pvt = pvt; } -bool sbus_conn_disconnecting(struct sbus_connection *conn) -{ - if (conn->disconnect == 1) return true; - return false; -} - int sss_dbus_conn_send(DBusConnection *dbus_conn, DBusMessage *msg, int timeout_ms, diff -Nru sssd-1.15.0/src/sbus/sssd_dbus.h sssd-1.15.2/src/sbus/sssd_dbus.h --- sssd-1.15.0/src/sbus/sssd_dbus.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sbus/sssd_dbus.h 2017-03-15 16:53:24.000000000 +0000 @@ -247,8 +247,6 @@ const char *object_path, const char *base_path); -bool sbus_conn_disconnecting(struct sbus_connection *conn); - /* max_retries < 0: retry forever * max_retries = 0: never retry (why are you calling this function?) * max_retries > 0: obvious diff -Nru sssd-1.15.0/src/sbus/sssd_dbus_interface.c sssd-1.15.2/src/sbus/sssd_dbus_interface.c --- sssd-1.15.0/src/sbus/sssd_dbus_interface.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sbus/sssd_dbus_interface.c 2017-03-15 16:53:24.000000000 +0000 @@ -23,6 +23,7 @@ #include #include "util/util.h" +#include "util/sss_ptr_hash.h" #include "sbus/sssd_dbus.h" #include "sbus/sssd_dbus_meta.h" #include "sbus/sssd_dbus_private.h" @@ -492,13 +493,11 @@ dbus_connection_unregister_object_path(conn->dbus.conn, path); } -errno_t +hash_table_t * sbus_opath_hash_init(TALLOC_CTX *mem_ctx, - struct sbus_connection *conn, - hash_table_t **_table) + struct sbus_connection *conn) { - return sss_hash_create_ex(mem_ctx, 10, _table, 0, 0, 0, 0, - sbus_opath_hash_delete_cb, conn); + return sss_ptr_hash_create(mem_ctx, sbus_opath_hash_delete_cb, conn); } static errno_t @@ -511,11 +510,8 @@ struct sbus_interface_list *list = NULL; struct sbus_interface_list *item = NULL; const char *iface_name = iface->vtable->meta->name; - hash_key_t key; - hash_value_t value; bool path_known; errno_t ret; - int hret; tmp_ctx = talloc_new(NULL); if (tmp_ctx == NULL) { @@ -536,22 +532,14 @@ /* first lookup existing list in hash table */ - key.type = HASH_KEY_STRING; - key.str = talloc_strdup(tmp_ctx, object_path); - if (key.str == NULL) { - ret = ENOMEM; - goto done; - } - - hret = hash_lookup(table, &key, &value); - if (hret == HASH_SUCCESS) { + list = sss_ptr_hash_lookup(table, object_path, struct sbus_interface_list); + if (list != NULL) { /* This object path has already some interface registered. We will * check for existence of the interface currently being added and * add it if missing. */ path_known = true; - list = talloc_get_type(value.ptr, struct sbus_interface_list); if (sbus_iface_list_lookup(list, iface_name) != NULL) { DEBUG(SSSDBG_MINOR_FAILURE, "Trying to register the same interface" " twice: iface=%s, opath=%s\n", iface_name, object_path); @@ -562,9 +550,6 @@ DLIST_ADD_END(list, item, struct sbus_interface_list *); ret = EOK; goto done; - } else if (hret != HASH_ERROR_KEY_NOT_FOUND) { - ret = EIO; - goto done; } /* otherwise create new hash entry and new list */ @@ -572,17 +557,8 @@ path_known = false; list = item; - value.type = HASH_VALUE_PTR; - value.ptr = list; - - hret = hash_enter(table, &key, &value); - if (hret != HASH_SUCCESS) { - ret = EIO; - goto done; - } - - talloc_steal(table, key.str); - ret = EOK; + ret = sss_ptr_hash_add(table, object_path, list, + struct sbus_interface_list); done: if (ret == EOK) { @@ -599,12 +575,7 @@ sbus_opath_hash_has_path(hash_table_t *table, const char *object_path) { - hash_key_t key; - - key.type = HASH_KEY_STRING; - key.str = discard_const(object_path); - - return hash_has_key(table, &key); + return sss_ptr_hash_has_key(table, object_path); } /** @@ -621,9 +592,6 @@ struct sbus_interface_list *list = NULL; struct sbus_interface *iface = NULL; char *lookup_path = NULL; - hash_key_t key; - hash_value_t value; - int hret; tmp_ctx = talloc_new(NULL); if (tmp_ctx == NULL) { @@ -636,21 +604,13 @@ } while (lookup_path != NULL) { - key.type = HASH_KEY_STRING; - key.str = lookup_path; - - hret = hash_lookup(table, &key, &value); - if (hret == HASH_SUCCESS) { - list = talloc_get_type(value.ptr, struct sbus_interface_list); + list = sss_ptr_hash_lookup(table, lookup_path, + struct sbus_interface_list); + if (list != NULL) { iface = sbus_iface_list_lookup(list, iface_name); if (iface != NULL) { goto done; } - } else if (hret != HASH_ERROR_KEY_NOT_FOUND) { - DEBUG(SSSDBG_OP_FAILURE, - "Unable to search hash table: hret=%d\n", hret); - iface = NULL; - goto done; } /* we will not free lookup path since it is freed with tmp_ctx @@ -674,13 +634,11 @@ { TALLOC_CTX *tmp_ctx = NULL; TALLOC_CTX *list_ctx = NULL; - struct sbus_interface_list *copy = NULL; - struct sbus_interface_list *list = NULL; + struct sbus_interface_list *copy; + struct sbus_interface_list *output_list; + struct sbus_interface_list *table_list; char *lookup_path = NULL; - hash_key_t key; - hash_value_t value; errno_t ret; - int hret; tmp_ctx = talloc_new(NULL); if (tmp_ctx == NULL) { @@ -699,23 +657,19 @@ goto done; } - while (lookup_path != NULL) { - key.type = HASH_KEY_STRING; - key.str = lookup_path; + /* Initialize output_list. */ + output_list = NULL; - hret = hash_lookup(table, &key, &value); - if (hret == HASH_SUCCESS) { - ret = sbus_iface_list_copy(list_ctx, value.ptr, ©); + while (lookup_path != NULL) { + table_list = sss_ptr_hash_lookup(table, lookup_path, + struct sbus_interface_list); + if (table_list != NULL) { + ret = sbus_iface_list_copy(list_ctx, table_list, ©); if (ret != EOK) { goto done; } - DLIST_CONCATENATE(list, copy, struct sbus_interface_list *); - } else if (hret != HASH_ERROR_KEY_NOT_FOUND) { - DEBUG(SSSDBG_OP_FAILURE, - "Unable to search hash table: hret=%d\n", hret); - ret = EIO; - goto done; + DLIST_CONCATENATE(output_list, copy, struct sbus_interface_list *); } /* we will not free lookup path since it is freed with tmp_ctx @@ -724,7 +678,7 @@ } talloc_steal(mem_ctx, list_ctx); - *_list = list; + *_list = output_list; ret = EOK; done: @@ -732,13 +686,10 @@ return ret; } -errno_t -sbus_nodes_hash_init(TALLOC_CTX *mem_ctx, - struct sbus_connection *conn, - hash_table_t **_table) +hash_table_t * +sbus_nodes_hash_init(TALLOC_CTX *mem_ctx) { - return sss_hash_create_ex(mem_ctx, 10, _table, 0, 0, 0, 0, - NULL, conn); + return sss_ptr_hash_create(mem_ctx, NULL, NULL); } struct sbus_nodes_data { @@ -752,57 +703,24 @@ sbus_nodes_fn nodes_fn, void *handler_data) { - TALLOC_CTX *tmp_ctx; struct sbus_nodes_data *data; - hash_key_t key; - hash_value_t value; errno_t ret; - bool has_key; - int hret; - - tmp_ctx = talloc_new(NULL); - if (tmp_ctx == NULL) { - return ENOMEM; - } - - key.type = HASH_KEY_STRING; - key.str = talloc_strdup(tmp_ctx, object_path); - if (key.str == NULL) { - return ENOMEM; - } - - has_key = hash_has_key(table, &key); - if (has_key) { - ret = EEXIST; - goto done; - } - data = talloc_zero(tmp_ctx, struct sbus_nodes_data); + data = talloc_zero(table, struct sbus_nodes_data); if (data == NULL) { - ret = ENOMEM; - goto done; + return ENOMEM; } data->handler_data = handler_data; data->nodes_fn = nodes_fn; - value.type = HASH_VALUE_PTR; - value.ptr = data; - - hret = hash_enter(table, &key, &value); - if (hret != HASH_SUCCESS) { - ret = EIO; - goto done; + ret = sss_ptr_hash_add(table, object_path, data, struct sbus_nodes_data); + if (ret != EOK) { + talloc_free(data); + return ret; } - talloc_steal(table, key.str); - talloc_steal(table, data); - - ret = EOK; - -done: - talloc_free(tmp_ctx); - return ret; + return EOK; } const char ** @@ -811,24 +729,12 @@ const char *object_path) { struct sbus_nodes_data *data; - hash_key_t key; - hash_value_t value; - int hret; - - key.type = HASH_KEY_STRING; - key.str = discard_const(object_path); - hret = hash_lookup(table, &key, &value); - if (hret == HASH_ERROR_KEY_NOT_FOUND) { - return NULL; - } else if (hret != HASH_SUCCESS) { - DEBUG(SSSDBG_OP_FAILURE, - "Unable to search hash table: hret=%d\n", hret); + data = sss_ptr_hash_lookup(table, object_path, struct sbus_nodes_data); + if (data == NULL) { return NULL; } - data = talloc_get_type(value.ptr, struct sbus_nodes_data); - return data->nodes_fn(mem_ctx, object_path, data->handler_data); } diff -Nru sssd-1.15.0/src/sbus/sssd_dbus_private.h sssd-1.15.2/src/sbus/sssd_dbus_private.h --- sssd-1.15.0/src/sbus/sssd_dbus_private.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sbus/sssd_dbus_private.h 2017-03-15 16:53:24.000000000 +0000 @@ -121,10 +121,9 @@ struct sbus_interface *interface; }; -errno_t +hash_table_t * sbus_opath_hash_init(TALLOC_CTX *mem_ctx, - struct sbus_connection *conn, - hash_table_t **_table); + struct sbus_connection *conn); struct sbus_interface * sbus_opath_hash_lookup_iface(hash_table_t *table, @@ -137,10 +136,8 @@ const char *object_path, struct sbus_interface_list **_list); -errno_t -sbus_nodes_hash_init(TALLOC_CTX *mem_ctx, - struct sbus_connection *conn, - hash_table_t **_table); +hash_table_t * +sbus_nodes_hash_init(TALLOC_CTX *mem_ctx); const char ** sbus_nodes_hash_lookup(TALLOC_CTX *mem_ctx, @@ -183,9 +180,8 @@ DBusMessage *message, void *handler_data); -errno_t -sbus_incoming_signal_hash_init(TALLOC_CTX *mem_ctx, - hash_table_t **_table); +hash_table_t * +sbus_incoming_signal_hash_init(TALLOC_CTX *mem_ctx); void sbus_register_common_signals(struct sbus_connection *conn, void *pvt); diff -Nru sssd-1.15.0/src/sbus/sssd_dbus_signals.c sssd-1.15.2/src/sbus/sssd_dbus_signals.c --- sssd-1.15.0/src/sbus/sssd_dbus_signals.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sbus/sssd_dbus_signals.c 2017-03-15 16:53:24.000000000 +0000 @@ -23,6 +23,7 @@ #include #include "util/util.h" +#include "util/sss_ptr_hash.h" #include "sbus/sssd_dbus.h" #include "sbus/sssd_dbus_private.h" @@ -60,11 +61,10 @@ void *handler_data; }; -errno_t -sbus_incoming_signal_hash_init(TALLOC_CTX *mem_ctx, - hash_table_t **_table) +hash_table_t * +sbus_incoming_signal_hash_init(TALLOC_CTX *mem_ctx) { - return sss_hash_create(mem_ctx, 10, _table); + return sss_ptr_hash_create(mem_ctx, NULL, NULL); } static errno_t @@ -76,30 +76,20 @@ { TALLOC_CTX *tmp_ctx; struct sbus_incoming_signal_data *data; - hash_key_t key; - hash_value_t value; + char *key; errno_t ret; - bool has_key; - int hret; tmp_ctx = talloc_new(NULL); if (tmp_ctx == NULL) { return ENOMEM; } - key.type = HASH_KEY_STRING; - key.str = talloc_asprintf(tmp_ctx, "%s.%s", iface, a_signal); - if (key.str == NULL) { + key = talloc_asprintf(tmp_ctx, "%s.%s", iface, a_signal); + if (key == NULL) { ret = ENOMEM; goto done; } - has_key = hash_has_key(table, &key); - if (has_key) { - ret = EEXIST; - goto done; - } - data = talloc_zero(tmp_ctx, struct sbus_incoming_signal_data); if (data == NULL) { ret = ENOMEM; @@ -109,16 +99,11 @@ data->handler_data = handler_data; data->handler_fn = handler_fn; - value.type = HASH_VALUE_PTR; - value.ptr = data; - - hret = hash_enter(table, &key, &value); - if (hret != HASH_SUCCESS) { - ret = EIO; + ret = sss_ptr_hash_add(table, key, data, struct sbus_incoming_signal_data); + if (ret != EOK) { goto done; } - talloc_steal(table, key.str); talloc_steal(table, data); ret = EOK; @@ -134,31 +119,16 @@ const char *a_signal) { struct sbus_incoming_signal_data *data; - hash_key_t key; - hash_value_t value; - int hret; - - key.type = HASH_KEY_STRING; - key.str = talloc_asprintf(NULL, "%s.%s", iface, a_signal); - if (key.str == NULL) { - return NULL; - } + char *key; - hret = hash_lookup(table, &key, &value); - if (hret == HASH_ERROR_KEY_NOT_FOUND) { - data = NULL; - goto done; - } else if (hret != HASH_SUCCESS) { - DEBUG(SSSDBG_OP_FAILURE, - "Unable to search hash table: hret=%d\n", hret); - data = NULL; - goto done; + key = talloc_asprintf(NULL, "%s.%s", iface, a_signal); + if (key == NULL) { + return NULL; } - data = talloc_get_type(value.ptr, struct sbus_incoming_signal_data); + data = sss_ptr_hash_lookup(table, key, struct sbus_incoming_signal_data); + talloc_free(key); -done: - talloc_free(key.str); return data; } diff -Nru sssd-1.15.0/src/sbus/sssd_dbus_utils.h sssd-1.15.2/src/sbus/sssd_dbus_utils.h --- sssd-1.15.0/src/sbus/sssd_dbus_utils.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sbus/sssd_dbus_utils.h 2017-03-15 16:53:24.000000000 +0000 @@ -25,6 +25,13 @@ errno_t sbus_error_to_errno(DBusError *error); errno_t sbus_check_reply(DBusMessage *reply); +/* Creates a DBusMessage from a vararg list. Please note that even though + * this function and sbus_create_message accept a talloc memory context, + * it is not valid to free the resulting message with talloc_free() directly. + * Instead, either free the parent memory context or directly call + * dbus_message_unref on the message if you pass NULL memory context to + * these functions + */ DBusMessage *sbus_create_message_valist(TALLOC_CTX *mem_ctx, const char *bus, const char *path, diff -Nru sssd-1.15.0/src/sss_client/idmap/sss_nss_idmap.pc.in sssd-1.15.2/src/sss_client/idmap/sss_nss_idmap.pc.in --- sssd-1.15.0/src/sss_client/idmap/sss_nss_idmap.pc.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sss_client/idmap/sss_nss_idmap.pc.in 2017-03-15 16:53:24.000000000 +0000 @@ -8,4 +8,4 @@ Version: @VERSION@ Libs: -L${libdir} -lsss_nss_idmap Cflags: -URL: http://fedorahosted.org/sssd/ +URL: https://pagure.io/SSSD/sssd/ diff -Nru sssd-1.15.0/src/sss_client/libwbclient/wbclient_sssd.pc.in sssd-1.15.2/src/sss_client/libwbclient/wbclient_sssd.pc.in --- sssd-1.15.0/src/sss_client/libwbclient/wbclient_sssd.pc.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sss_client/libwbclient/wbclient_sssd.pc.in 2017-03-15 16:53:24.000000000 +0000 @@ -8,4 +8,4 @@ Version: @libwbclient_version@ Libs: -L${libdir} -lwbclient Cflags: -URL: http://fedorahosted.org/sssd/, http://www.samba.org +URL: https://pagure.io/SSSD/sssd/, http://www.samba.org diff -Nru sssd-1.15.0/src/sss_client/pam_message.h sssd-1.15.2/src/sss_client/pam_message.h --- sssd-1.15.0/src/sss_client/pam_message.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sss_client/pam_message.h 2017-03-15 16:53:24.000000000 +0000 @@ -61,6 +61,8 @@ char *cert_user; char *token_name; + char *module_name; + char *key_id; }; int pack_message_v3(struct pam_items *pi, size_t *size, uint8_t **buffer); diff -Nru sssd-1.15.0/src/sss_client/pam_sss.c sssd-1.15.2/src/sss_client/pam_sss.c --- sssd-1.15.0/src/sss_client/pam_sss.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sss_client/pam_sss.c 2017-03-15 16:53:24.000000000 +0000 @@ -54,6 +54,7 @@ #define FLAGS_IGNORE_AUTHINFO_UNAVAIL (1 << 4) #define FLAGS_USE_2FA (1 << 5) #define FLAGS_ALLOW_MISSING_NAME (1 << 6) +#define FLAGS_PROMPT_ALWAYS (1 << 7) #define PWEXP_FLAG "pam_sss:password_expired_flag" #define FD_DESTRUCTOR "pam_sss:fd_destructor" @@ -162,6 +163,12 @@ free(pi->token_name); pi->token_name = NULL; + + free(pi->module_name); + pi->module_name = NULL; + + free(pi->key_id); + pi->key_id = NULL; } static int null_strcmp(const char *s1, const char *s2) { @@ -205,6 +212,10 @@ ret=pam_get_item(pamh, PAM_CONV, (const void **) &conv); if (ret != PAM_SUCCESS) return ret; + if (conv == NULL || conv->conv == NULL) { + logger(pamh, LOG_ERR, "No conversation function"); + return PAM_SYSTEM_ERR; + } do { pam_msg = malloc(sizeof(struct pam_message)); @@ -689,7 +700,7 @@ ret = snprintf(user_msg, bufsize, "%s%s%.*s", EXP_ACC_MSG, msg_len > 0 ? SRV_MSG : "", - msg_len, + (int)msg_len, msg_len > 0 ? (char *)(buf + 2 * sizeof(uint32_t)) : "" ); if (ret < 0 || ret > bufsize) { D(("snprintf failed.")); @@ -744,7 +755,7 @@ ret = snprintf(user_msg, bufsize, "%s%s%.*s", _("Password change failed. "), msg_len > 0 ? _("Server message: ") : "", - msg_len, + (int)msg_len, msg_len > 0 ? (char *)(buf + 2 * sizeof(uint32_t)) : "" ); if (ret < 0 || ret > bufsize) { D(("snprintf failed.")); @@ -865,6 +876,7 @@ break; } D(("domain name: [%s]", &buf[p])); + free(pi->domain_name); pi->domain_name = strdup((char *) &buf[p]); if (pi->domain_name == NULL) { D(("strdup failed")); @@ -933,6 +945,7 @@ break; } + free(pi->otp_vendor); pi->otp_vendor = strdup((char *) &buf[p]); if (pi->otp_vendor == NULL) { D(("strdup failed")); @@ -946,6 +959,7 @@ pi->otp_vendor = NULL; break; } + free(pi->otp_token_id); pi->otp_token_id = strdup((char *) &buf[p + offset]); if (pi->otp_token_id == NULL) { D(("strdup failed")); @@ -959,6 +973,7 @@ pi->otp_token_id = NULL; break; } + free(pi->otp_challenge); pi->otp_challenge = strdup((char *) &buf[p + offset]); if (pi->otp_challenge == NULL) { D(("strdup failed")); @@ -972,6 +987,7 @@ break; } + free(pi->cert_user); pi->cert_user = strdup((char *) &buf[p]); if (pi->cert_user == NULL) { D(("strdup failed")); @@ -1006,13 +1022,51 @@ pi->cert_user = NULL; break; } + free(pi->token_name); pi->token_name = strdup((char *) &buf[p + offset]); if (pi->token_name == NULL) { D(("strdup failed")); + free(pi->cert_user); + pi->cert_user = NULL; + break; + } + + offset += strlen(pi->token_name) + 1; + if (offset >= len) { + D(("Cert message size mismatch")); + free(pi->cert_user); + pi->cert_user = NULL; + free(pi->token_name); + pi->token_name = NULL; + break; + } + free(pi->module_name); + pi->module_name = strdup((char *) &buf[p + offset]); + if (pi->module_name == NULL) { + D(("strdup failed")); + break; + } + + offset += strlen(pi->module_name) + 1; + if (offset >= len) { + D(("Cert message size mismatch")); + free(pi->cert_user); + pi->cert_user = NULL; + free(pi->token_name); + pi->token_name = NULL; + free(pi->module_name); + pi->module_name = NULL; break; } - D(("cert user: [%s] token name: [%s]", pi->cert_user, - pi->token_name)); + free(pi->key_id); + pi->key_id = strdup((char *) &buf[p + offset]); + if (pi->key_id == NULL) { + D(("strdup failed")); + break; + } + D(("cert user: [%s] token name: [%s] module: [%s] key id: [%s]", + pi->cert_user, pi->token_name, pi->module_name, + pi->key_id)); break; case SSS_PASSWORD_PROMPTING: D(("Password prompting available.")); @@ -1110,6 +1164,8 @@ pi->cert_user = NULL; pi->token_name = NULL; + pi->module_name = NULL; + pi->key_id = NULL; return PAM_SUCCESS; } @@ -1304,6 +1360,10 @@ if (ret != PAM_SUCCESS) { return ret; } + if (conv == NULL || conv->conv == NULL) { + logger(pamh, LOG_ERR, "No conversation function"); + return PAM_SYSTEM_ERR; + } m[0].msg_style = PAM_PROMPT_ECHO_OFF; m[0].msg = prompt_fa1; @@ -1417,6 +1477,7 @@ char *answer = NULL; char *prompt; size_t size; + size_t needed_size; if (pi->token_name == NULL || *pi->token_name == '\0' || pi->cert_user == NULL || *pi->cert_user == '\0') { @@ -1450,18 +1511,48 @@ pi->pam_authtok_type = SSS_AUTHTOK_TYPE_EMPTY; pi->pam_authtok_size=0; } else { - pi->pam_authtok = strdup(answer); - _pam_overwrite((void *)answer); - free(answer); - answer=NULL; + + ret = sss_auth_pack_sc_blob(answer, 0, pi->token_name, 0, + pi->module_name, 0, + pi->key_id, 0, + NULL, 0, &needed_size); + if (ret != EAGAIN) { + D(("sss_auth_pack_sc_blob failed.")); + ret = PAM_BUF_ERR; + goto done; + } + + pi->pam_authtok = malloc(needed_size); if (pi->pam_authtok == NULL) { - return PAM_BUF_ERR; + D(("malloc failed.")); + ret = PAM_BUF_ERR; + goto done; } + + ret = sss_auth_pack_sc_blob(answer, 0, pi->token_name, 0, + pi->module_name, 0, + pi->key_id, 0, + (uint8_t *) pi->pam_authtok, needed_size, + &needed_size); + if (ret != EOK) { + D(("sss_auth_pack_sc_blob failed.")); + free((void *)pi->pam_authtok); + ret = PAM_BUF_ERR; + goto done; + } + pi->pam_authtok_type = SSS_AUTHTOK_TYPE_SC_PIN; - pi->pam_authtok_size=strlen(pi->pam_authtok); + pi->pam_authtok_size = needed_size; } - return PAM_SUCCESS; + ret = PAM_SUCCESS; + +done: + _pam_overwrite((void *)answer); + free(answer); + answer=NULL; + + return ret; } static int prompt_new_password(pam_handle_t *pamh, struct pam_items *pi) @@ -1551,6 +1642,8 @@ *flags |= FLAGS_USE_2FA; } else if (strcmp(*argv, "allow_missing_name") == 0) { *flags |= FLAGS_ALLOW_MISSING_NAME; + } else if (strcmp(*argv, "prompt_always") == 0) { + *flags |= FLAGS_PROMPT_ALWAYS; } else { logger(pamh, LOG_WARNING, "unknown option: %s", *argv); } @@ -1565,7 +1658,10 @@ { int ret; - if (flags & FLAGS_USE_FIRST_PASS) { + if ((flags & FLAGS_USE_FIRST_PASS) + || ( pi->pamstack_authtok != NULL + && *(pi->pamstack_authtok) != '\0' + && !(flags & FLAGS_PROMPT_ALWAYS))) { pi->pam_authtok_type = SSS_AUTHTOK_TYPE_PASSWORD; pi->pam_authtok = strdup(pi->pamstack_authtok); if (pi->pam_authtok == NULL) { @@ -1798,10 +1894,12 @@ /* * Only do preauth if * - FLAGS_USE_FIRST_PASS is not set - * - no password is on the stack + * - no password is on the stack or FLAGS_PROMPT_ALWAYS is set * - preauth indicator file exists. */ - if ( !(flags & FLAGS_USE_FIRST_PASS) && pi.pam_authtok == NULL + if ( !(flags & FLAGS_USE_FIRST_PASS) + && (pi.pam_authtok == NULL + || (flags & FLAGS_PROMPT_ALWAYS)) && access(PAM_PREAUTH_INDICATOR, F_OK) == 0) { pam_status = send_and_receive(pamh, &pi, SSS_PAM_PREAUTH, quiet_mode); diff -Nru sssd-1.15.0/src/sss_client/sss_cli.h sssd-1.15.2/src/sss_client/sss_cli.h --- sssd-1.15.0/src/sss_client/sss_cli.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sss_client/sss_cli.h 2017-03-15 16:53:24.000000000 +0000 @@ -431,6 +431,12 @@ * SSS_PAM_OTP_INFO to determine the type of * prompting. There is no message. * @param None. */ + SSS_CERT_AUTH_PROMPTING, /**< Indicates that on the server side + * Smartcard/certificate based authentication is + * available for the selected account. This might + * be used together with other prompting options + * to determine the type of prompting. + * @param None. */ }; /** diff -Nru sssd-1.15.0/src/sysv/systemd/journal.conf.in sssd-1.15.2/src/sysv/systemd/journal.conf.in --- sssd-1.15.0/src/sysv/systemd/journal.conf.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/journal.conf.in 2017-03-15 16:53:24.000000000 +0000 @@ -4,4 +4,4 @@ # run 'systemctl daemon-reload' and then restart the SSSD service # for this to take effect #ExecStart= -#ExecStart=@sbindir@/sssd -D +#ExecStart=@sbindir@/sssd -i diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-autofs.service.in sssd-1.15.2/src/sysv/systemd/sssd-autofs.service.in --- sssd-1.15.0/src/sysv/systemd/sssd-autofs.service.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-autofs.service.in 2017-03-15 16:53:24.000000000 +0000 @@ -3,6 +3,7 @@ Documentation=man:sssd.conf(5) After=sssd.service BindsTo=sssd.service +RefuseManualStart=true [Install] Also=sssd-autofs.socket diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-autofs.socket.in sssd-1.15.2/src/sysv/systemd/sssd-autofs.socket.in --- sssd-1.15.0/src/sysv/systemd/sssd-autofs.socket.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-autofs.socket.in 2017-03-15 16:53:24.000000000 +0000 @@ -1,9 +1,13 @@ [Unit] Description=SSSD AutoFS Service responder socket Documentation=man:sssd.conf(5) +After=sssd.service BindsTo=sssd.service +DefaultDependencies=no +Conflicts=shutdown.target [Socket] +ExecStartPre=@libexecdir@/sssd/sssd_check_socket_activated_responders -r autofs ListenStream=@pipepath@/autofs SocketUser=@SSSD_USER@ SocketGroup=@SSSD_USER@ diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-nss.service.in sssd-1.15.2/src/sysv/systemd/sssd-nss.service.in --- sssd-1.15.0/src/sysv/systemd/sssd-nss.service.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-nss.service.in 2017-03-15 16:53:24.000000000 +0000 @@ -3,11 +3,11 @@ Documentation=man:sssd.conf(5) After=sssd.service BindsTo=sssd.service +RefuseManualStart=true [Install] Also=sssd-nss.socket [Service] -ExecStartPre=-/bin/chown root:root @logpath@/sssd_nss.log ExecStart=@libexecdir@/sssd/sssd_nss --debug-to-files --socket-activated Restart=on-failure diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-nss.socket.in sssd-1.15.2/src/sysv/systemd/sssd-nss.socket.in --- sssd-1.15.0/src/sysv/systemd/sssd-nss.socket.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-nss.socket.in 2017-03-15 16:53:24.000000000 +0000 @@ -1,12 +1,15 @@ [Unit] Description=SSSD NSS Service responder socket Documentation=man:sssd.conf(5) +After=sssd.service BindsTo=sssd.service +Before=sssd-autofs.socket sssd-pac.socket sssd-pam.socket sssd-ssh.socket sssd-sudo.socket +DefaultDependencies=no +Conflicts=shutdown.target [Socket] +ExecStartPre=@libexecdir@/sssd/sssd_check_socket_activated_responders -r nss ListenStream=@pipepath@/nss -SocketUser=@SSSD_USER@ -SocketGroup=@SSSD_USER@ [Install] WantedBy=sssd.service diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-pac.service.in sssd-1.15.2/src/sysv/systemd/sssd-pac.service.in --- sssd-1.15.0/src/sysv/systemd/sssd-pac.service.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-pac.service.in 2017-03-15 16:53:24.000000000 +0000 @@ -3,6 +3,7 @@ Documentation=man:sssd.conf(5) After=sssd.service BindsTo=sssd.service +RefuseManualStart=true [Install] Also=sssd-pac.socket diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-pac.socket.in sssd-1.15.2/src/sysv/systemd/sssd-pac.socket.in --- sssd-1.15.0/src/sysv/systemd/sssd-pac.socket.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-pac.socket.in 2017-03-15 16:53:24.000000000 +0000 @@ -1,9 +1,13 @@ [Unit] Description=SSSD PAC Service responder socket Documentation=man:sssd.conf(5) +After=sssd.service BindsTo=sssd.service +DefaultDependencies=no +Conflicts=shutdown.target [Socket] +ExecStartPre=@libexecdir@/sssd/sssd_check_socket_activated_responders -r pac ListenStream=@pipepath@/pac SocketUser=@SSSD_USER@ SocketGroup=@SSSD_USER@ diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-pam-priv.socket.in sssd-1.15.2/src/sysv/systemd/sssd-pam-priv.socket.in --- sssd-1.15.0/src/sysv/systemd/sssd-pam-priv.socket.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-pam-priv.socket.in 2017-03-15 16:53:24.000000000 +0000 @@ -1,10 +1,14 @@ [Unit] Description=SSSD PAM Service responder private socket Documentation=man:sssd.conf(5) +After=sssd.service BindsTo=sssd.service BindsTo=sssd-pam.socket +DefaultDependencies=no +Conflicts=shutdown.target [Socket] +ExecStartPre=@libexecdir@/sssd/sssd_check_socket_activated_responders -r pam Service=sssd-pam.service ListenStream=@pipepath@/private/pam SocketUser=root diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-pam.service.in sssd-1.15.2/src/sysv/systemd/sssd-pam.service.in --- sssd-1.15.0/src/sysv/systemd/sssd-pam.service.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-pam.service.in 2017-03-15 16:53:24.000000000 +0000 @@ -3,6 +3,7 @@ Documentation=man:sssd.conf(5) After=sssd.service BindsTo=sssd.service +RefuseManualStart=true [Install] Also=sssd-pam.socket sssd-pam-priv.socket diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-pam.socket.in sssd-1.15.2/src/sysv/systemd/sssd-pam.socket.in --- sssd-1.15.0/src/sysv/systemd/sssd-pam.socket.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-pam.socket.in 2017-03-15 16:53:24.000000000 +0000 @@ -1,10 +1,14 @@ [Unit] Description=SSSD PAM Service responder socket Documentation=man:sssd.conf(5) +After=sssd.service BindsTo=sssd.service BindsTo=sssd-pam-priv.socket +DefaultDependencies=no +Conflicts=shutdown.target [Socket] +ExecStartPre=@libexecdir@/sssd/sssd_check_socket_activated_responders -r pam ListenStream=@pipepath@/pam SocketUser=root SocketGroup=root diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-ssh.service.in sssd-1.15.2/src/sysv/systemd/sssd-ssh.service.in --- sssd-1.15.0/src/sysv/systemd/sssd-ssh.service.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-ssh.service.in 2017-03-15 16:53:24.000000000 +0000 @@ -3,6 +3,7 @@ Documentation=man:sssd.conf(5) After=sssd.service BindsTo=sssd.service +RefuseManualStart=true [Install] Also=sssd-ssh.socket diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-ssh.socket.in sssd-1.15.2/src/sysv/systemd/sssd-ssh.socket.in --- sssd-1.15.0/src/sysv/systemd/sssd-ssh.socket.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-ssh.socket.in 2017-03-15 16:53:24.000000000 +0000 @@ -1,9 +1,13 @@ [Unit] Description=SSSD SSH Service responder socket Documentation=man:sssd.conf(5) +After=sssd.service BindsTo=sssd.service +DefaultDependencies=no +Conflicts=shutdown.target [Socket] +ExecStartPre=@libexecdir@/sssd/sssd_check_socket_activated_responders -r ssh ListenStream=@pipepath@/ssh SocketUser=@SSSD_USER@ SocketGroup=@SSSD_USER@ diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-sudo.service.in sssd-1.15.2/src/sysv/systemd/sssd-sudo.service.in --- sssd-1.15.0/src/sysv/systemd/sssd-sudo.service.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-sudo.service.in 2017-03-15 16:53:24.000000000 +0000 @@ -3,6 +3,7 @@ Documentation=man:sssd.conf(5) man:sssd-sudo(5) After=sssd.service BindsTo=sssd.service +RefuseManualStart=true [Install] Also=sssd-sudo.socket diff -Nru sssd-1.15.0/src/sysv/systemd/sssd-sudo.socket.in sssd-1.15.2/src/sysv/systemd/sssd-sudo.socket.in --- sssd-1.15.0/src/sysv/systemd/sssd-sudo.socket.in 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/sysv/systemd/sssd-sudo.socket.in 2017-03-15 16:53:24.000000000 +0000 @@ -1,9 +1,13 @@ [Unit] Description=SSSD Sudo Service responder socket Documentation=man:sssd.conf(5) +After=sssd.service BindsTo=sssd.service +DefaultDependencies=no +Conflicts=shutdown.target [Socket] +ExecStartPre=@libexecdir@/sssd/sssd_check_socket_activated_responders -r sudo ListenStream=@pipepath@/sudo SocketUser=@SSSD_USER@ SocketGroup=@SSSD_USER@ diff -Nru sssd-1.15.0/src/tests/cmocka/common_mock_resp_dp.c sssd-1.15.2/src/tests/cmocka/common_mock_resp_dp.c --- sssd-1.15.0/src/tests/cmocka/common_mock_resp_dp.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/common_mock_resp_dp.c 2017-03-15 16:53:24.000000000 +0000 @@ -61,16 +61,70 @@ return test_request_recv(req); } +struct tevent_req * +sss_dp_get_ssh_host_send(TALLOC_CTX *mem_ctx, + struct resp_ctx *rctx, + struct sss_domain_info *dom, + bool fast_reply, + const char *name, + const char *alias) +{ + return test_req_succeed_send(mem_ctx, rctx->ev); +} + + +errno_t +sss_dp_get_ssh_host_recv(TALLOC_CTX *mem_ctx, + struct tevent_req *req, + dbus_uint16_t *dp_err, + dbus_uint32_t *dp_ret, + char **err_msg) +{ + acct_cb_t cb; + + *dp_err = sss_mock_type(dbus_uint16_t); + *dp_ret = sss_mock_type(dbus_uint32_t); + *err_msg = sss_mock_ptr_type(char *); + + cb = sss_mock_ptr_type(acct_cb_t); + if (cb) { + (cb)(sss_mock_ptr_type(void *)); + } + + return test_request_recv(req); +} + +errno_t +sss_dp_req_recv(TALLOC_CTX *mem_ctx, + struct tevent_req *req, + dbus_uint16_t *dp_err, + dbus_uint32_t *dp_ret, + char **err_msg) +{ + acct_cb_t cb; + + *dp_err = sss_mock_type(dbus_uint16_t); + *dp_ret = sss_mock_type(dbus_uint32_t); + *err_msg = sss_mock_ptr_type(char *); + + cb = sss_mock_ptr_type(acct_cb_t); + if (cb) { + (cb)(sss_mock_ptr_type(void *)); + } + + return test_request_recv(req); +} + void mock_account_recv(uint16_t dp_err, uint32_t dp_ret, char *msg, acct_cb_t acct_cb, void *pvt) { - will_return(sss_dp_get_account_recv, dp_err); - will_return(sss_dp_get_account_recv, dp_ret); - will_return(sss_dp_get_account_recv, msg); + will_return(sss_dp_req_recv, dp_err); + will_return(sss_dp_req_recv, dp_ret); + will_return(sss_dp_req_recv, msg); - will_return(sss_dp_get_account_recv, acct_cb); + will_return(sss_dp_req_recv, acct_cb); if (acct_cb) { - will_return(sss_dp_get_account_recv, pvt); + will_return(sss_dp_req_recv, pvt); } } @@ -80,7 +134,9 @@ } struct tevent_req * -sss_parse_inp_send(TALLOC_CTX *mem_ctx, struct resp_ctx *rctx, +sss_parse_inp_send(TALLOC_CTX *mem_ctx, + struct resp_ctx *rctx, + const char *default_domain, const char *rawinp) { return test_req_succeed_send(mem_ctx, rctx->ev); diff -Nru sssd-1.15.0/src/tests/cmocka/test_ad_common.c sssd-1.15.2/src/tests/cmocka/test_ad_common.c --- sssd-1.15.0/src/tests/cmocka/test_ad_common.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_ad_common.c 2017-03-15 16:53:24.000000000 +0000 @@ -78,9 +78,6 @@ static int test_ad_sysdb_setup(void **state) { struct ad_sysdb_test_ctx *test_ctx; - struct sss_test_conf_param params[] = { - { NULL, NULL }, /* Sentinel */ - }; assert_true(leak_check_setup()); @@ -92,7 +89,7 @@ test_ctx->tctx = create_multidom_test_ctx(test_ctx, TESTS_PATH, TEST_CONF_DB, domains, - TEST_ID_PROVIDER, params); + TEST_ID_PROVIDER, NULL); assert_non_null(test_ctx->tctx); *state = test_ctx; @@ -392,24 +389,6 @@ struct sss_domain_info *subdom; }; -static void test_ad_create_default_options(void **state) -{ - struct ad_options *ad_options; - const char *s; - - ad_options = ad_create_default_options(global_talloc_context); - - assert_non_null(ad_options->basic); - - /* Not too much to test here except some defaults */ - s = dp_opt_get_string(ad_options->basic, AD_DOMAIN); - assert_null(s); - - assert_non_null(ad_options->id); - - talloc_free(ad_options); -} - static int test_ad_common_setup(void **state) { struct ad_common_test_ctx *test_ctx; @@ -465,9 +444,12 @@ /* Make sure this is not the keytab that __wrap_krb5_kt_default uses */ mock_keytab_with_contents(test_ctx, ONEWAY_KEYTAB_PATH, ONEWAY_TEST_PRINC); + test_ctx->subdom->name = discard_const(ONEWAY_DOMNAME); test_ctx->ad_ctx->ad_options = ad_create_1way_trust_options( test_ctx->ad_ctx, - ONEWAY_DOMNAME, + NULL, + NULL, + test_ctx->subdom, ONEWAY_HOST_NAME, ONEWAY_KEYTAB_PATH, ONEWAY_AUTHID); @@ -527,13 +509,17 @@ call_real_sasl_options = true; mock_keytab_with_contents(test_ctx, KEYTAB_PATH, KEYTAB_TEST_PRINC); + test_ctx->subdom->name = discard_const(DOMNAME); test_ctx->ad_ctx->ad_options = ad_create_2way_trust_options( - test_ctx->ad_ctx, - REALMNAME, - DOMNAME, - HOST_NAME, - NULL); + test_ctx->ad_ctx, + NULL, + NULL, + REALMNAME, + test_ctx->subdom, + HOST_NAME, + NULL); + assert_non_null(test_ctx->ad_ctx->ad_options); assert_int_equal(test_ctx->ad_ctx->ad_options->id->schema_type, @@ -595,11 +581,15 @@ ad_ctx = test_ctx->ad_ctx; - ad_ctx->ad_options = ad_create_2way_trust_options(ad_ctx, - REALMNAME, - DOMNAME, - HOST_NAME, - NULL); + test_ctx->ad_ctx->ad_options = ad_create_2way_trust_options( + ad_ctx, + NULL, + NULL, + REALMNAME, + test_ctx->subdom, + HOST_NAME, + NULL); + assert_non_null(ad_ctx->ad_options); ad_ctx->gc_ctx = talloc_zero(ad_ctx, struct sdap_id_conn_ctx); @@ -892,7 +882,6 @@ }; const struct CMUnitTest tests[] = { - cmocka_unit_test(test_ad_create_default_options), cmocka_unit_test_setup_teardown(test_ad_create_1way_trust_options, test_ad_common_setup, test_ad_common_teardown), diff -Nru sssd-1.15.0/src/tests/cmocka/test_authtok.c sssd-1.15.2/src/tests/cmocka/test_authtok.c --- sssd-1.15.0/src/tests/cmocka/test_authtok.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_authtok.c 2017-03-15 16:53:24.000000000 +0000 @@ -437,6 +437,85 @@ talloc_free(fa2); } +void test_sss_authtok_sc_blobs(void **state) +{ + int ret; + struct test_state *ts; + size_t needed_size; + uint8_t *buf; + const char *pin; + size_t pin_len; + const char *token_name; + size_t token_name_len; + const char *module_name; + size_t module_name_len; + const char *key_id; + size_t key_id_len; + + ts = talloc_get_type_abort(*state, struct test_state); + + ret = sss_auth_pack_sc_blob("abc", 0, "defg", 0, "hijkl", 0, "mnopqr", 0, + NULL, 0, &needed_size); + assert_int_equal(ret, EAGAIN); + + buf = talloc_size(ts, needed_size); + assert_non_null(buf); + + ret = sss_auth_pack_sc_blob("abc", 0, "defg", 0, "hijkl", 0, "mnopqr", 0, + buf, needed_size, &needed_size); + assert_int_equal(ret, EOK); + +#if __BYTE_ORDER == __LITTLE_ENDIAN + assert_memory_equal(buf, "\4\0\0\0\5\0\0\0\6\0\0\0\7\0\0\0abc\0defg\0hijkl\0mnopqr\0", + needed_size); +#else + assert_memory_equal(buf, "\0\0\0\4\0\0\0\5\0\0\0\6\0\0\0\7abc\0defg\0hijkl\0mnopqr\0", + needed_size); +#endif + + ret = sss_authtok_set(ts->authtoken, SSS_AUTHTOK_TYPE_SC_PIN, buf, + needed_size); + assert_int_equal(ret, EOK); + + ret = sss_authtok_get_sc(ts->authtoken, &pin, &pin_len, + &token_name, &token_name_len, + &module_name, &module_name_len, + &key_id, &key_id_len); + assert_int_equal(ret, EOK); + assert_int_equal(pin_len, 3); + assert_string_equal(pin, "abc"); + assert_int_equal(token_name_len, 4); + assert_string_equal(token_name, "defg"); + assert_int_equal(module_name_len, 5); + assert_string_equal(module_name, "hijkl"); + assert_int_equal(key_id_len, 6); + assert_string_equal(key_id, "mnopqr"); + + ret = sss_authtok_get_sc(ts->authtoken, NULL, NULL, + &token_name, &token_name_len, + &module_name, &module_name_len, + &key_id, &key_id_len); + assert_int_equal(ret, EOK); + assert_int_equal(token_name_len, 4); + assert_string_equal(token_name, "defg"); + assert_int_equal(module_name_len, 5); + assert_string_equal(module_name, "hijkl"); + assert_int_equal(key_id_len, 6); + assert_string_equal(key_id, "mnopqr"); + + ret = sss_authtok_get_sc(ts->authtoken, NULL, NULL, + &token_name, NULL, + &module_name, NULL, + &key_id, NULL); + assert_int_equal(ret, EOK); + assert_string_equal(token_name, "defg"); + assert_string_equal(module_name, "hijkl"); + assert_string_equal(key_id, "mnopqr"); + + sss_authtok_set_empty(ts->authtoken); + talloc_free(buf); +} + #define MISSING_NULL_CHECK do { \ assert_int_equal(ret, EOK); \ assert_int_equal(fa1_len, 3); \ @@ -524,18 +603,32 @@ assert_int_equal(sss_authtok_get_type(ts->authtoken), SSS_AUTHTOK_TYPE_SC_PIN); size = sss_authtok_get_size(ts->authtoken); - assert_int_equal(size, 9); - assert_memory_equal(sss_authtok_get_data(ts->authtoken), "12345678\0", - size); + assert_int_equal(size, 28); +#if __BYTE_ORDER == __LITTLE_ENDIAN + assert_memory_equal(sss_authtok_get_data(ts->authtoken), + "\11\0\0\0\1\0\0\0\1\0\0\0\1\0\0\0" "12345678\0\0\0\0", + size); +#else + assert_memory_equal(sss_authtok_get_data(ts->authtoken), + "\0\0\0\11\0\0\0\1\0\0\0\1\0\0\0\1" "12345678\0\0\0\0", + size); +#endif ret = sss_authtok_set_sc_pin(ts->authtoken, "12345678", 5); assert_int_equal(ret, EOK); assert_int_equal(sss_authtok_get_type(ts->authtoken), SSS_AUTHTOK_TYPE_SC_PIN); size = sss_authtok_get_size(ts->authtoken); - assert_int_equal(size, 6); - assert_memory_equal(sss_authtok_get_data(ts->authtoken), "12345\0", - size); + assert_int_equal(size, 25); +#if __BYTE_ORDER == __LITTLE_ENDIAN + assert_memory_equal(sss_authtok_get_data(ts->authtoken), + "\6\0\0\0\1\0\0\0\1\0\0\0\1\0\0\0" "12345\0\0\0\0", + size); +#else + assert_memory_equal(sss_authtok_get_data(ts->authtoken), + "\0\0\0\6\0\0\0\1\0\0\0\1\0\0\0\1" "12345\0\0\0\0", + size); +#endif ret = sss_authtok_get_sc_pin(ts->authtoken, &pin, &len); assert_int_equal(ret, EOK); @@ -592,6 +685,8 @@ setup, teardown), cmocka_unit_test_setup_teardown(test_sss_authtok_sc_pin, setup, teardown), + cmocka_unit_test_setup_teardown(test_sss_authtok_sc_blobs, + setup, teardown), }; /* Set debug level to invalid value so we can deside if -d 0 was used. */ diff -Nru sssd-1.15.0/src/tests/cmocka/test_fqnames.c sssd-1.15.2/src/tests/cmocka/test_fqnames.c --- sssd-1.15.0/src/tests/cmocka/test_fqnames.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_fqnames.c 2017-03-15 16:53:24.000000000 +0000 @@ -309,7 +309,7 @@ * discovered */ test_ctx->subdom = new_subdomain(dom, dom, SUBDOMNAME, NULL, SUBFLATNAME, - NULL, false, false, NULL, 0); + NULL, false, false, NULL, NULL, 0); assert_non_null(test_ctx->subdom); check_leaks_push(test_ctx); diff -Nru sssd-1.15.0/src/tests/cmocka/test_inotify.c sssd-1.15.2/src/tests/cmocka/test_inotify.c --- sssd-1.15.0/src/tests/cmocka/test_inotify.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_inotify.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,582 @@ +/* + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include +#include +#include +#include +#include +#include +#include +#include +#include + +#include "limits.h" +#include "util/io.h" +#include "util/inotify.h" +#include "util/util.h" +#include "tests/common.h" + +struct inotify_test_ctx { + char *filename; + char *dirname; + + int ncb; + int threshold; + /* if the cb receives flags not in this set, test fails */ + uint32_t exp_flags; + + struct sss_test_ctx *tctx; + struct tevent_timer *fail_te; +}; + +static void test_timeout(struct tevent_context *ev, + struct tevent_timer *te, + struct timeval t, + void *ptr) +{ + DEBUG(SSSDBG_FATAL_FAILURE, "The test timed out!\n"); + talloc_free(te); + fail(); +} + +static struct inotify_test_ctx *common_setup(TALLOC_CTX *mem_ctx) +{ + struct inotify_test_ctx *ctx; + struct timeval tv; + + ctx = talloc_zero(mem_ctx, struct inotify_test_ctx); + if (ctx == NULL) { + return NULL; + } + + ctx->tctx = create_ev_test_ctx(ctx); + if (ctx->tctx == NULL) { + talloc_free(ctx); + return NULL; + } + + gettimeofday(&tv, NULL); + tv.tv_sec += 5; + ctx->fail_te = tevent_add_timer(ctx->tctx->ev, ctx, + tv, test_timeout, ctx); + if (ctx->fail_te == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Unable to queue fallback timer!\n"); + talloc_free(ctx); + return NULL; + } + + return ctx; +} + +static int inotify_test_setup(void **state) +{ + struct inotify_test_ctx *ctx; + int fd; + + ctx = common_setup(NULL); + if (ctx == NULL) { + return 1; + } + + ctx->filename = talloc_strdup(ctx, "test_inotify.XXXXXX"); + if (ctx->filename == NULL) { + talloc_free(ctx); + return 1; + } + + fd = mkstemp(ctx->filename); + if (fd == -1) { + talloc_free(ctx); + return 1; + } + close(fd); + + *state = ctx; + return 0; +} + +static int inotify_test_dir_setup(void **state) +{ + struct inotify_test_ctx *ctx; + + ctx = common_setup(NULL); + if (ctx == NULL) { + return 1; + } + + ctx->dirname = talloc_strdup(ctx, "test_inotify_dir.XXXXXX"); + if (ctx->dirname == NULL) { + talloc_free(ctx); + return 1; + } + + ctx->dirname = mkdtemp(ctx->dirname); + if (ctx->dirname == NULL) { + talloc_free(ctx); + return 1; + } + + ctx->filename = talloc_asprintf(ctx, "%s/testfile", ctx->dirname); + if (ctx->filename == NULL) { + talloc_free(ctx); + return 1; + } + + *state = ctx; + return 0; +} + +static int inotify_test_teardown(void **state) +{ + struct inotify_test_ctx *ctx = talloc_get_type_abort(*state, + struct inotify_test_ctx); + int ret; + + ret = unlink(ctx->filename); + if (ret == -1 && errno != ENOENT) { + return 1; + } + + talloc_free(ctx); + return 0; +} + +static int inotify_test_dir_teardown(void **state) +{ + struct inotify_test_ctx *ctx = talloc_get_type_abort(*state, + struct inotify_test_ctx); + int ret; + + ret = unlink(ctx->filename); + if (ret == -1 && errno != ENOENT) { + return 1; + } + + ret = rmdir(ctx->dirname); + if (ret == -1 && errno != ENOENT) { + return 1; + } + + talloc_free(ctx); + return 0; +} + +static void file_mod_op(struct tevent_context *ev, + struct tevent_timer *te, + struct timeval t, + void *ptr) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(ptr, + struct inotify_test_ctx); + FILE *f; + + talloc_free(te); + + f = fopen(test_ctx->filename, "w"); + if (f == NULL) { + test_ctx->tctx->error = errno; + test_ctx->tctx->done = true; + return; + } + + fprintf(f, "%s\n", test_ctx->filename); + fflush(f); + fclose(f); +} + +static void check_and_set_threshold(struct inotify_test_ctx *test_ctx, + uint32_t flags) +{ + if (test_ctx->exp_flags != 0 && !(test_ctx->exp_flags & flags)) { + fail(); + } + + test_ctx->ncb++; +} + +static int inotify_set_threshold_cb(const char *filename, + uint32_t flags, + void *pvt) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(pvt, + struct inotify_test_ctx); + + check_and_set_threshold(test_ctx, flags); + return EOK; +} + +static int inotify_threshold_cb(const char *filename, + uint32_t flags, + void *pvt) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(pvt, + struct inotify_test_ctx); + + check_and_set_threshold(test_ctx, flags); + if (test_ctx->ncb == test_ctx->threshold) { + test_ctx->tctx->done = true; + return EOK; + } + + return EOK; +} + +/* Test that running two modifications fires the callback twice */ +static void test_inotify_mod(void **state) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(*state, + struct inotify_test_ctx); + struct snotify_ctx *ctx; + struct timeval tv; + struct tevent_timer *te; + errno_t ret; + + ctx = snotify_create(test_ctx, test_ctx->tctx->ev, SNOTIFY_WATCH_DIR, + test_ctx->filename, NULL, IN_MODIFY, + inotify_threshold_cb, test_ctx); + assert_non_null(ctx); + + test_ctx->threshold = 2; + test_ctx->exp_flags = IN_MODIFY; + + gettimeofday(&tv, NULL); + tv.tv_usec += 500; + te = tevent_add_timer(test_ctx->tctx->ev, test_ctx, + tv, file_mod_op, test_ctx); + if (te == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Unable to queue file update!\n"); + return; + } + + gettimeofday(&tv, NULL); + tv.tv_sec += 1; + te = tevent_add_timer(test_ctx->tctx->ev, test_ctx, + tv, file_mod_op, test_ctx); + if (te == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Unable to queue file update!\n"); + return; + } + + ret = test_ev_loop(test_ctx->tctx); + assert_int_equal(ret, EOK); + + talloc_free(ctx); +} + +static void file_mv_op(struct tevent_context *ev, + struct tevent_timer *te, + struct timeval t, + void *ptr) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(ptr, + struct inotify_test_ctx); + FILE *f; + int fd; + char src_tmp_file[] = "test_inotify_src.XXXXXX"; + int ret; + + talloc_free(te); + + fd = mkstemp(src_tmp_file); + if (fd == -1) { + test_ctx->tctx->error = errno; + test_ctx->tctx->done = true; + return; + } + + f = fdopen(fd, "w"); + if (f == NULL) { + close(fd); + unlink(src_tmp_file); + test_ctx->tctx->error = errno; + test_ctx->tctx->done = true; + return; + } + + fprintf(f, "%s\n", test_ctx->filename); + fflush(f); + fclose(f); + + ret = rename(src_tmp_file, test_ctx->filename); + if (ret == -1) { + unlink(src_tmp_file); + test_ctx->tctx->error = errno; + test_ctx->tctx->done = true; + return; + } +} + +static void test_inotify_mv(void **state) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(*state, + struct inotify_test_ctx); + struct snotify_ctx *ctx; + struct timeval tv; + struct tevent_timer *te; + errno_t ret; + + ctx = snotify_create(test_ctx, test_ctx->tctx->ev, SNOTIFY_WATCH_DIR, + test_ctx->filename, NULL, IN_MOVED_TO, + inotify_threshold_cb, test_ctx); + assert_non_null(ctx); + + test_ctx->threshold = 1; + test_ctx->exp_flags = IN_MOVED_TO; + + gettimeofday(&tv, NULL); + tv.tv_usec += 200; + te = tevent_add_timer(test_ctx->tctx->ev, test_ctx, + tv, file_mv_op, test_ctx); + if (te == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Unable to queue file update!\n"); + return; + } + + ret = test_ev_loop(test_ctx->tctx); + assert_int_equal(ret, EOK); +} + +static void file_del_add_op(struct tevent_context *ev, + struct tevent_timer *te, + struct timeval t, + void *ptr) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(ptr, + struct inotify_test_ctx); + FILE *f; + int ret; + + talloc_free(te); + + ret = unlink(test_ctx->filename); + if (ret == -1) { + test_ctx->tctx->error = errno; + test_ctx->tctx->done = true; + return; + } + + f = fopen(test_ctx->filename, "w"); + if (f == NULL) { + test_ctx->tctx->error = errno; + test_ctx->tctx->done = true; + return; + } + + fprintf(f, "%s\n", test_ctx->filename); + fflush(f); + fclose(f); +} + +static void test_inotify_del_add(void **state) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(*state, + struct inotify_test_ctx); + struct snotify_ctx *ctx; + struct timeval tv; + struct tevent_timer *te; + errno_t ret; + + test_ctx->threshold = 1; + test_ctx->exp_flags = IN_CREATE; + + ctx = snotify_create(test_ctx, test_ctx->tctx->ev, SNOTIFY_WATCH_DIR, + test_ctx->filename, NULL, + IN_CREATE, + inotify_threshold_cb, test_ctx); + assert_non_null(ctx); + + gettimeofday(&tv, NULL); + tv.tv_usec += 200; + te = tevent_add_timer(test_ctx->tctx->ev, test_ctx, + tv, file_del_add_op, test_ctx); + if (te == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Unable to queue file update!\n"); + return; + } + + ret = test_ev_loop(test_ctx->tctx); + assert_int_equal(ret, EOK); +} + +static void test_inotify_file_moved_in(void **state) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(*state, + struct inotify_test_ctx); + struct snotify_ctx *ctx; + struct timeval tv; + struct tevent_timer *te; + errno_t ret; + + test_ctx->threshold = 1; + test_ctx->exp_flags = IN_CREATE; + + ctx = snotify_create(test_ctx, test_ctx->tctx->ev, SNOTIFY_WATCH_DIR, + test_ctx->filename, NULL, + IN_CREATE | IN_CLOSE_WRITE, + inotify_threshold_cb, test_ctx); + assert_non_null(ctx); + + gettimeofday(&tv, NULL); + tv.tv_usec += 200; + + te = tevent_add_timer(test_ctx->tctx->ev, test_ctx, + tv, file_mod_op, test_ctx); + if (te == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Unable to queue file update!\n"); + return; + } + + ret = test_ev_loop(test_ctx->tctx); + assert_int_equal(ret, EOK); +} + +static void file_del_op(struct tevent_context *ev, + struct tevent_timer *te, + struct timeval t, + void *ptr) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(ptr, + struct inotify_test_ctx); + int ret; + + talloc_free(te); + + ret = unlink(test_ctx->filename); + if (ret == -1) { + test_ctx->tctx->error = errno; + test_ctx->tctx->done = true; + return; + } +} + +static void check_threshold_cb(struct tevent_context *ev, + struct tevent_timer *te, + struct timeval t, + void *ptr) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(ptr, + struct inotify_test_ctx); + + /* tests that no more callbacks were issued and exactly one + * was caught for both requests + */ + if (test_ctx->ncb == test_ctx->threshold) { + test_ctx->tctx->done = true; + return; + } + + fail(); +} + +static void test_inotify_delay(void **state) +{ + struct inotify_test_ctx *test_ctx = talloc_get_type_abort(*state, + struct inotify_test_ctx); + struct snotify_ctx *ctx; + struct timeval tv; + struct tevent_timer *te; + errno_t ret; + struct timeval delay = { .tv_sec = 1, .tv_usec = 0 }; + + test_ctx->threshold = 1; + test_ctx->exp_flags = IN_CREATE | IN_DELETE; + + ctx = snotify_create(test_ctx, test_ctx->tctx->ev, SNOTIFY_WATCH_DIR, + test_ctx->filename, &delay, + IN_CREATE | IN_DELETE, + inotify_set_threshold_cb, test_ctx); + assert_non_null(ctx); + + gettimeofday(&tv, NULL); + tv.tv_usec += 100; + te = tevent_add_timer(test_ctx->tctx->ev, test_ctx, + tv, file_mod_op, test_ctx); + if (te == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Unable to queue file update!\n"); + return; + } + + gettimeofday(&tv, NULL); + tv.tv_usec += 200; + te = tevent_add_timer(test_ctx->tctx->ev, test_ctx, + tv, file_del_op, test_ctx); + if (te == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Unable to queue file update!\n"); + return; + } + + gettimeofday(&tv, NULL); + tv.tv_sec += 2; + te = tevent_add_timer(test_ctx->tctx->ev, test_ctx, + tv, check_threshold_cb, test_ctx); + if (te == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Unable to queue file update!\n"); + return; + } + + ret = test_ev_loop(test_ctx->tctx); + assert_int_equal(ret, EOK); +} + +int main(int argc, const char *argv[]) +{ + poptContext pc; + int opt; + struct poptOption long_options[] = { + POPT_AUTOHELP + SSSD_DEBUG_OPTS + POPT_TABLEEND + }; + + const struct CMUnitTest tests[] = { + cmocka_unit_test_setup_teardown(test_inotify_mv, + inotify_test_setup, + inotify_test_teardown), + cmocka_unit_test_setup_teardown(test_inotify_mod, + inotify_test_setup, + inotify_test_teardown), + cmocka_unit_test_setup_teardown(test_inotify_del_add, + inotify_test_setup, + inotify_test_teardown), + cmocka_unit_test_setup_teardown(test_inotify_file_moved_in, + inotify_test_dir_setup, + inotify_test_dir_teardown), + cmocka_unit_test_setup_teardown(test_inotify_delay, + inotify_test_dir_setup, + inotify_test_dir_teardown), + }; + + /* Set debug level to invalid value so we can deside if -d 0 was used. */ + debug_level = SSSDBG_INVALID; + + pc = poptGetContext(argv[0], argc, argv, long_options, 0); + while((opt = poptGetNextOpt(pc)) != -1) { + switch(opt) { + default: + fprintf(stderr, "\nInvalid option %s: %s\n\n", + poptBadOption(pc, 0), poptStrerror(opt)); + poptPrintUsage(pc, stderr, 0); + return 1; + } + } + poptFreeContext(pc); + + DEBUG_CLI_INIT(debug_level); + + return cmocka_run_group_tests(tests, NULL, NULL); +} diff -Nru sssd-1.15.0/src/tests/cmocka/test_iobuf.c sssd-1.15.2/src/tests/cmocka/test_iobuf.c --- sssd-1.15.0/src/tests/cmocka/test_iobuf.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_iobuf.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,195 @@ +/* + SSSD + + test_iobuf - IO buffer tests + + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ +#include +#include +#include +#include +#include +#include +#include +#include +#include + +#include "util/sss_iobuf.h" +#include "util/util.h" + +static void test_sss_iobuf_read(void **state) +{ + errno_t ret; + uint8_t buffer[] = { 'H', 'e', 'l', 'l', 'o', ' ', 'w', 'o', 'r', 'l', 'd', 0 }; + uint8_t readbuf[64] = { 0 }; + size_t nread; + struct sss_iobuf *rb; + + rb = sss_iobuf_init_readonly(NULL, buffer, sizeof(buffer)); + assert_non_null(rb); + + ret = sss_iobuf_read(rb, 5, readbuf, &nread); + assert_int_equal(ret, EOK); + /* There is enough data in the buffer */ + assert_int_equal(nread, 5); + /* The data matches beginning of the buffer */ + assert_int_equal(strncmp((const char *) readbuf, "Hello", 5), 0); + + memset(readbuf, 0, sizeof(readbuf)); + ret = sss_iobuf_read(rb, 3, readbuf, &nread); + assert_int_equal(ret, EOK); + /* There is enough data in the buffer */ + assert_int_equal(nread, 3); + /* The data matches beginning of the buffer */ + assert_int_equal(strncmp((const char *) readbuf, " wo", 3), 0); + + /* Try to read more than the buffer has */ + memset(readbuf, 0, sizeof(readbuf)); + ret = sss_iobuf_read(rb, 10, readbuf, &nread); + /* This is not a fatal error */ + assert_int_equal(ret, EOK); + /* We just see how much there was */ + assert_int_equal(nread, 4); + /* And get the rest of the buffer back. readbuf includes trailing zero now */ + assert_int_equal(strcmp((const char *) readbuf, "rld"), 0); + + /* Reading a depleted buffer will just yield zero bytes read now */ + ret = sss_iobuf_read(rb, 10, readbuf, &nread); + assert_int_equal(ret, EOK); + assert_int_equal(nread, 0); + + /* Failure cases */ + ret = sss_iobuf_read(NULL, 10, readbuf, &nread); + assert_int_equal(ret, EINVAL); + ret = sss_iobuf_read(rb, 10, NULL, &nread); + assert_int_equal(ret, EINVAL); + + talloc_free(rb); +} + +static void test_sss_iobuf_write(void **state) +{ + struct sss_iobuf *wb; + struct sss_iobuf *rb; + size_t hwlen = sizeof("Hello world"); /* Includes trailing zero */ + uint8_t readbuf[64]; + size_t nread; + errno_t ret; + + /* Exactly fill the capacity */ + wb = sss_iobuf_init_empty(NULL, hwlen, hwlen); + assert_non_null(wb); + ret = sss_iobuf_write_len(wb, + (uint8_t *) discard_const("Hello world"), + sizeof("Hello world")); + assert_int_equal(ret, EOK); + + rb = sss_iobuf_init_readonly(NULL, + sss_iobuf_get_data(wb), + sss_iobuf_get_len(wb)); + talloc_free(wb); + assert_non_null(rb); + + ret = sss_iobuf_read(rb, sizeof(readbuf), readbuf, &nread); + assert_int_equal(ret, EOK); + assert_int_equal(nread, hwlen); + assert_int_equal(strcmp((const char *) readbuf, "Hello world"), 0); + talloc_zfree(rb); + + /* Overflow the capacity by one */ + wb = sss_iobuf_init_empty(NULL, hwlen, hwlen); + assert_non_null(wb); + ret = sss_iobuf_write_len(wb, + (uint8_t *) discard_const("Hello world!"), + sizeof("Hello world!")); + assert_int_not_equal(ret, EOK); + talloc_zfree(wb); + + /* Test resizing exactly up to capacity in several writes */ + wb = sss_iobuf_init_empty(NULL, 2, hwlen); + assert_non_null(wb); + + ret = sss_iobuf_write_len(wb, + (uint8_t *) discard_const("Hello "), + sizeof("Hello ")-1); /* Not the null byte now.. */ + assert_int_equal(ret, EOK); + ret = sss_iobuf_write_len(wb, + (uint8_t *) discard_const("world"), + sizeof("world")); + assert_int_equal(ret, EOK); + + rb = sss_iobuf_init_readonly(NULL, + sss_iobuf_get_data(wb), + sss_iobuf_get_len(wb)); + talloc_free(wb); + assert_non_null(rb); + + ret = sss_iobuf_read(rb, sizeof(readbuf), readbuf, &nread); + assert_int_equal(ret, EOK); + assert_int_equal(nread, hwlen); + assert_int_equal(strcmp((const char *) readbuf, "Hello world"), 0); + talloc_zfree(rb); + + /* Overflow the capacity during a resize by one */ + wb = sss_iobuf_init_empty(NULL, 2, hwlen); + assert_non_null(wb); + + ret = sss_iobuf_write_len(wb, + (uint8_t *) discard_const("Hello "), + sizeof("Hello ")-1); /* Not the null byte now.. */ + assert_int_equal(ret, EOK); + ret = sss_iobuf_write_len(wb, + (uint8_t *) discard_const("world!"), + sizeof("world!")); + assert_int_not_equal(ret, EOK); + talloc_zfree(wb); + + /* Test allocating an unlimited buffer */ + wb = sss_iobuf_init_empty(NULL, 2, 0); + assert_non_null(wb); + + ret = sss_iobuf_write_len(wb, + (uint8_t *) discard_const("Hello "), + sizeof("Hello ")-1); /* Not the null byte now.. */ + assert_int_equal(ret, EOK); + ret = sss_iobuf_write_len(wb, + (uint8_t *) discard_const("world"), + sizeof("world")); + assert_int_equal(ret, EOK); + + rb = sss_iobuf_init_readonly(NULL, + sss_iobuf_get_data(wb), + sss_iobuf_get_len(wb)); + talloc_free(wb); + assert_non_null(rb); + + ret = sss_iobuf_read(rb, sizeof(readbuf), readbuf, &nread); + assert_int_equal(ret, EOK); + assert_int_equal(nread, hwlen); + assert_int_equal(strcmp((const char *) readbuf, "Hello world"), 0); + talloc_zfree(rb); +} + +int main(void) +{ + const struct CMUnitTest tests[] = { + cmocka_unit_test(test_sss_iobuf_read), + cmocka_unit_test(test_sss_iobuf_write), + }; + + return cmocka_run_group_tests(tests, NULL, NULL); +} diff -Nru sssd-1.15.0/src/tests/cmocka/test_ipa_dn.c sssd-1.15.2/src/tests/cmocka/test_ipa_dn.c --- sssd-1.15.0/src/tests/cmocka/test_ipa_dn.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_ipa_dn.c 2017-03-15 16:53:24.000000000 +0000 @@ -169,6 +169,13 @@ ret = ipa_get_rdn(test_ctx, test_ctx->sysdb, "cn=rdn,attr1=value1", &rdn, "cn", "attr1", "value1"); assert_int_equal(ret, ENOENT); assert_null(rdn); + + ret = ipa_get_rdn(test_ctx, test_ctx->sysdb, + "cn=rdn+nsuniqueid=9b1e3301-c32611e6-bdcae37a-ef905e7c," + "attr1=value1,attr2=value2,dc=example,dc=com", + &rdn, "cn", "attr1", "value1", "attr2", "value2"); + assert_int_equal(ret, ENOENT); + assert_null(rdn); } int main(int argc, const char *argv[]) diff -Nru sssd-1.15.0/src/tests/cmocka/test_negcache.c sssd-1.15.2/src/tests/cmocka/test_negcache.c --- sssd-1.15.0/src/tests/cmocka/test_negcache.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_negcache.c 2017-03-15 16:53:24.000000000 +0000 @@ -785,6 +785,74 @@ ret = check_group_in_ncache(ncache, dom2, "testgroup2"); assert_int_equal(ret, EEXIST); } + +static void test_sss_ncache_reset(void **state) +{ + errno_t ret; + struct test_state *ts; + struct sss_domain_info *dom; + + ts = talloc_get_type_abort(*state, struct test_state); + dom = talloc(ts, struct sss_domain_info); + assert_non_null(dom); + dom->case_sensitive = true; + + dom->name = discard_const_p(char, TEST_DOM_NAME); + + /* Set users */ + ret = sss_ncache_check_uid(ts->ctx, NULL, 123); + assert_int_equal(ret, ENOENT); + ret = sss_ncache_set_uid(ts->ctx, false, NULL, 123); + assert_int_equal(ret, EOK); + ret = sss_ncache_check_uid(ts->ctx, NULL, 123); + assert_int_equal(ret, EEXIST); + + ret = sss_ncache_check_user(ts->ctx, dom, "foo"); + assert_int_equal(ret, ENOENT); + ret = sss_ncache_set_user(ts->ctx, false, dom, "foo"); + assert_int_equal(ret, EOK); + ret = sss_ncache_check_user(ts->ctx, dom, "foo"); + assert_int_equal(ret, EEXIST); + + /* Set groups */ + ret = sss_ncache_check_gid(ts->ctx, NULL, 456); + assert_int_equal(ret, ENOENT); + ret = sss_ncache_set_gid(ts->ctx, false, NULL, 456); + assert_int_equal(ret, EOK); + ret = sss_ncache_check_gid(ts->ctx, NULL, 456); + assert_int_equal(ret, EEXIST); + + ret = sss_ncache_check_group(ts->ctx, dom, "bar"); + assert_int_equal(ret, ENOENT); + ret = sss_ncache_set_group(ts->ctx, false, dom, "bar"); + assert_int_equal(ret, EOK); + ret = sss_ncache_check_group(ts->ctx, dom, "bar"); + assert_int_equal(ret, EEXIST); + + ret = sss_ncache_reset_users(ts->ctx); + assert_int_equal(ret, EOK); + + /* Users are no longer negatively cached */ + ret = sss_ncache_check_user(ts->ctx, dom, "foo"); + assert_int_equal(ret, ENOENT); + ret = sss_ncache_check_uid(ts->ctx, NULL, 123); + assert_int_equal(ret, ENOENT); + + /* Groups still are */ + ret = sss_ncache_check_gid(ts->ctx, NULL, 456); + assert_int_equal(ret, EEXIST); + ret = sss_ncache_check_group(ts->ctx, dom, "bar"); + assert_int_equal(ret, EEXIST); + + ret = sss_ncache_reset_groups(ts->ctx); + assert_int_equal(ret, EOK); + + ret = sss_ncache_check_gid(ts->ctx, NULL, 456); + assert_int_equal(ret, ENOENT); + ret = sss_ncache_check_group(ts->ctx, dom, "bar"); + assert_int_equal(ret, ENOENT); +} + int main(void) { int rv; @@ -809,6 +877,8 @@ setup, teardown), cmocka_unit_test_setup_teardown(test_sss_ncache_reset_prepopulate, setup, teardown), + cmocka_unit_test_setup_teardown(test_sss_ncache_reset, + setup, teardown), }; tests_set_cwd(); diff -Nru sssd-1.15.0/src/tests/cmocka/test_nss_srv.c sssd-1.15.2/src/tests/cmocka/test_nss_srv.c --- sssd-1.15.0/src/tests/cmocka/test_nss_srv.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_nss_srv.c 2017-03-15 16:53:24.000000000 +0000 @@ -171,6 +171,21 @@ return ret; } +int __real_sss_ncache_check_upn(struct sss_nc_ctx *ctx, + struct sss_domain_info *dom, const char *name); + +int __wrap_sss_ncache_check_upn(struct sss_nc_ctx *ctx, + struct sss_domain_info *dom, const char *name) +{ + int ret; + + ret = __real_sss_ncache_check_upn(ctx, dom, name); + if (ret == EEXIST) { + nss_test_ctx->ncache_hits++; + } + return ret; +} + int __real_sss_ncache_check_uid(struct sss_nc_ctx *ctx, struct sss_domain_info *dom, uid_t uid); @@ -2558,6 +2573,38 @@ assert_int_equal(ret, EOK); } +void test_nss_getpwnam_upn_same_domain(void **state) +{ + errno_t ret; + struct sysdb_attrs *attrs; + + attrs = sysdb_new_attrs(nss_test_ctx); + assert_non_null(attrs); + + ret = sysdb_attrs_add_string(attrs, SYSDB_UPN, "upnuser_upn@" TEST_DOM_NAME); + assert_int_equal(ret, EOK); + + /* Prime the cache with a valid user */ + ret = store_user(nss_test_ctx, nss_test_ctx->tctx->dom, + &upn_user, attrs, 0); + assert_int_equal(ret, EOK); + + mock_input_user_or_group("upnuser_upn@" TEST_DOM_NAME); + mock_account_recv_simple(); + will_return(__wrap_sss_packet_get_cmd, SSS_NSS_GETPWNAM); + mock_fill_user(); + + /* Query for that user, call a callback when command finishes */ + set_cmd_cb(test_nss_getpwnam_upn_check); + ret = sss_cmd_execute(nss_test_ctx->cctx, SSS_NSS_GETPWNAM, + nss_test_ctx->nss_cmds); + assert_int_equal(ret, EOK); + + /* Wait until the test finishes with EOK */ + ret = test_ev_loop(nss_test_ctx->tctx); + assert_int_equal(ret, EOK); +} + /* Test that searching for a nonexistant user yields ENOENT. * Account callback will be called */ @@ -3159,7 +3206,7 @@ subdomain = new_subdomain(nss_test_ctx, nss_test_ctx->tctx->dom, testdom[0], testdom[1], testdom[2], testdom[3], - false, false, NULL, 0); + false, false, NULL, NULL, 0); assert_non_null(subdomain); ret = sysdb_subdomain_store(nss_test_ctx->tctx->sysdb, @@ -3743,6 +3790,8 @@ nss_test_teardown), cmocka_unit_test_setup_teardown(test_nss_getpwnam_upn, nss_test_setup, nss_test_teardown), + cmocka_unit_test_setup_teardown(test_nss_getpwnam_upn_same_domain, + nss_test_setup, nss_test_teardown), cmocka_unit_test_setup_teardown(test_nss_getpwnam_upn_neg, nss_test_setup, nss_test_teardown), cmocka_unit_test_setup_teardown(test_nss_initgroups, diff -Nru sssd-1.15.0/src/tests/cmocka/test_pam_srv.c sssd-1.15.2/src/tests/cmocka/test_pam_srv.c --- sssd-1.15.0/src/tests/cmocka/test_pam_srv.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_pam_srv.c 2017-03-15 16:53:24.000000000 +0000 @@ -48,6 +48,8 @@ #define NSS_DB "sql:"NSS_DB_PATH #define TEST_TOKEN_NAME "SSSD Test Token" +#define TEST_MODULE_NAME "NSS-Internal" +#define TEST_KEY_ID "6822EDDD231DAB8DBCD83721BE16A13DD0E31C08" #define TEST_TOKEN_CERT \ "MIIECTCCAvGgAwIBAgIBCDANBgkqhkiG9w0BAQsFADA0MRIwEAYDVQQKDAlJUEEu" \ "REVWRUwxHjAcBgNVBAMMFUNlcnRpZmljYXRlIEF1dGhvcml0eTAeFw0xNTA2MjMx" \ @@ -285,6 +287,9 @@ pam_test_ctx->tctx->dom->name); assert_non_null(pam_test_ctx->wrong_user_fqdn); + /* integer values cannot be set by pam_params */ + pam_test_ctx->pctx->id_timeout = 5; + /* Prime the cache with a valid user */ ret = sysdb_add_user(pam_test_ctx->tctx->dom, pam_test_ctx->pam_user_fqdn, @@ -552,16 +557,22 @@ will_return(__wrap_sss_packet_get_body, WRAP_CALL_WRAPPER); will_return(__wrap_sss_packet_get_body, buf); will_return(__wrap_sss_packet_get_body, buf_size); + + mock_parse_inp(name, NULL, EOK); + mock_account_recv_simple(); } static void mock_input_pam_cert(TALLOC_CTX *mem_ctx, const char *name, - const char *pin, const char *service) + const char *pin, const char *service, + acct_cb_t acct_cb, const char *cert, + bool only_one_provider_call) { size_t buf_size; uint8_t *m_buf; uint8_t *buf; struct pam_items pi = { 0 }; int ret; + bool already_mocked = false; if (name != NULL) { pi.pam_user = name; @@ -598,6 +609,18 @@ will_return(__wrap_sss_packet_get_body, WRAP_CALL_WRAPPER); will_return(__wrap_sss_packet_get_body, buf); will_return(__wrap_sss_packet_get_body, buf_size); + + if (acct_cb != NULL) { + mock_account_recv(0, 0, NULL, acct_cb, discard_const(cert)); + already_mocked = true; + } + + if (name != NULL) { + mock_parse_inp(name, NULL, EOK); + if (!(only_one_provider_call && already_mocked)) { + mock_account_recv_simple(); + } + } } static int test_pam_simple_check(uint32_t status, uint8_t *body, size_t blen) @@ -665,7 +688,10 @@ assert_int_equal(val, SSS_PAM_CERT_INFO); SAFEALIGN_COPY_UINT32(&val, body + rp, &rp); - assert_int_equal(val, (sizeof("pamuser@"TEST_DOM_NAME) + sizeof(TEST_TOKEN_NAME))); + assert_int_equal(val, (sizeof("pamuser@"TEST_DOM_NAME) + + sizeof(TEST_TOKEN_NAME) + + sizeof(TEST_MODULE_NAME) + + sizeof(TEST_KEY_ID))); assert_int_equal(*(body + rp + sizeof("pamuser@"TEST_DOM_NAME) - 1), 0); assert_string_equal(body + rp, "pamuser@"TEST_DOM_NAME); @@ -673,7 +699,17 @@ assert_int_equal(*(body + rp + sizeof(TEST_TOKEN_NAME) - 1), 0); assert_string_equal(body + rp, TEST_TOKEN_NAME); + rp += sizeof(TEST_TOKEN_NAME); + + assert_int_equal(*(body + rp + sizeof(TEST_MODULE_NAME) - 1), 0); + assert_string_equal(body + rp, TEST_MODULE_NAME); + rp += sizeof(TEST_MODULE_NAME); + assert_int_equal(*(body + rp + sizeof(TEST_KEY_ID) - 1), 0); + assert_string_equal(body + rp, TEST_KEY_ID); + rp += sizeof(TEST_KEY_ID); + + assert_int_equal(rp, blen); return EOK; } @@ -704,7 +740,10 @@ assert_int_equal(val, SSS_PAM_CERT_INFO); SAFEALIGN_COPY_UINT32(&val, body + rp, &rp); - assert_int_equal(val, (sizeof("pamuser@"TEST_DOM_NAME) + sizeof(TEST_TOKEN_NAME))); + assert_int_equal(val, (sizeof("pamuser@"TEST_DOM_NAME) + + sizeof(TEST_TOKEN_NAME) + + sizeof(TEST_MODULE_NAME) + + sizeof(TEST_KEY_ID))); assert_int_equal(*(body + rp + sizeof("pamuser@"TEST_DOM_NAME) - 1), 0); assert_string_equal(body + rp, "pamuser@"TEST_DOM_NAME); @@ -712,6 +751,17 @@ assert_int_equal(*(body + rp + sizeof(TEST_TOKEN_NAME) - 1), 0); assert_string_equal(body + rp, TEST_TOKEN_NAME); + rp += sizeof(TEST_TOKEN_NAME); + + assert_int_equal(*(body + rp + sizeof(TEST_MODULE_NAME) - 1), 0); + assert_string_equal(body + rp, TEST_MODULE_NAME); + rp += sizeof(TEST_MODULE_NAME); + + assert_int_equal(*(body + rp + sizeof(TEST_KEY_ID) - 1), 0); + assert_string_equal(body + rp, TEST_KEY_ID); + rp += sizeof(TEST_KEY_ID); + + assert_int_equal(rp, blen); return EOK; } @@ -783,6 +833,13 @@ return test_pam_simple_check(status, body, blen); } +static int test_pam_simple_check_success(uint32_t status, + uint8_t *body, size_t blen) +{ + pam_test_ctx->exp_pam_status = PAM_SUCCESS; + return test_pam_simple_check(status, body, blen); +} + static int test_pam_creds_insufficient_check(uint32_t status, uint8_t *body, size_t blen) { @@ -883,7 +940,9 @@ will_return(__wrap_sss_packet_get_cmd, SSS_PAM_OPEN_SESSION); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); - pam_test_ctx->exp_pam_status = PAM_NO_MODULE_DATA; + /* make sure pam_status is not touched by setting it to a value which is + * not used by SSSD. */ + pam_test_ctx->exp_pam_status = _PAM_RETURN_VALUES; set_cmd_cb(test_pam_simple_check); ret = sss_cmd_execute(pam_test_ctx->cctx, SSS_PAM_OPEN_SESSION, pam_test_ctx->pam_cmds); @@ -1010,6 +1069,8 @@ /* Reset before next call */ pam_test_ctx->provider_contacted = false; + pam_test_ctx->tctx->done = false; + common_test_pam_cached_auth("12345"); /* Back end should not be contacted */ @@ -1096,6 +1157,8 @@ /* Reset before next call */ pam_test_ctx->provider_contacted = false; + pam_test_ctx->tctx->done = false; + common_test_pam_cached_auth("12345678"); assert_false(pam_test_ctx->provider_contacted); @@ -1478,7 +1541,7 @@ { int ret; - mock_input_pam_cert(pam_test_ctx, NULL, NULL, NULL); + mock_input_pam_cert(pam_test_ctx, NULL, NULL, NULL, NULL, NULL, false); will_return(__wrap_sss_packet_get_cmd, SSS_PAM_PREAUTH); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); @@ -1505,7 +1568,7 @@ set_cert_auth_param(pam_test_ctx->pctx, "/no/path"); - mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, NULL); + mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, NULL, NULL, NULL, false); will_return(__wrap_sss_packet_get_cmd, SSS_PAM_PREAUTH); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); @@ -1549,6 +1612,38 @@ return EOK; } +static int test_lookup_by_cert_double_cb(void *pvt) +{ + int ret; + struct sysdb_attrs *attrs; + unsigned char *der = NULL; + size_t der_size; + + if (pvt != NULL) { + + ret = test_lookup_by_cert_cb(pvt); + assert_int_equal(ret, EOK); + + attrs = sysdb_new_attrs(pam_test_ctx); + assert_non_null(attrs); + + der = sss_base64_decode(pam_test_ctx, pvt, &der_size); + assert_non_null(der); + + ret = sysdb_attrs_add_mem(attrs, SYSDB_USER_CERT, der, der_size); + talloc_free(der); + assert_int_equal(ret, EOK); + + ret = sysdb_set_user_attr(pam_test_ctx->tctx->dom, + pam_test_ctx->wrong_user_fqdn, + attrs, + LDB_FLAG_MOD_ADD); + assert_int_equal(ret, EOK); + } + + return EOK; +} + static int test_lookup_by_cert_wrong_user_cb(void *pvt) { int ret; @@ -1584,11 +1679,11 @@ set_cert_auth_param(pam_test_ctx->pctx, NSS_DB); - mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, NULL); + mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, NULL, + test_lookup_by_cert_cb, NULL, false); will_return(__wrap_sss_packet_get_cmd, SSS_PAM_PREAUTH); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); - mock_account_recv(0, 0, NULL, test_lookup_by_cert_cb, NULL); set_cmd_cb(test_pam_simple_check); ret = sss_cmd_execute(pam_test_ctx->cctx, SSS_PAM_PREAUTH, @@ -1606,12 +1701,11 @@ set_cert_auth_param(pam_test_ctx->pctx, NSS_DB); - mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, NULL); + mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, NULL, + test_lookup_by_cert_cb, TEST_TOKEN_CERT, false); will_return(__wrap_sss_packet_get_cmd, SSS_PAM_PREAUTH); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); - mock_account_recv(0, 0, NULL, test_lookup_by_cert_cb, - discard_const(TEST_TOKEN_CERT)); set_cmd_cb(test_pam_cert_check); ret = sss_cmd_execute(pam_test_ctx->cctx, SSS_PAM_PREAUTH, @@ -1630,12 +1724,11 @@ set_cert_auth_param(pam_test_ctx->pctx, NSS_DB); - mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, "gdm-smartcard"); + mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, "gdm-smartcard", + test_lookup_by_cert_cb, TEST_TOKEN_CERT, false); will_return(__wrap_sss_packet_get_cmd, SSS_PAM_PREAUTH); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); - mock_account_recv(0, 0, NULL, test_lookup_by_cert_cb, - discard_const(TEST_TOKEN_CERT)); set_cmd_cb(test_pam_cert_check_gdm_smartcard); ret = sss_cmd_execute(pam_test_ctx->cctx, SSS_PAM_PREAUTH, @@ -1653,12 +1746,12 @@ set_cert_auth_param(pam_test_ctx->pctx, NSS_DB); - mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, NULL); + mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, NULL, + test_lookup_by_cert_wrong_user_cb, + TEST_TOKEN_CERT, false); will_return(__wrap_sss_packet_get_cmd, SSS_PAM_PREAUTH); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); - mock_account_recv(0, 0, NULL, test_lookup_by_cert_wrong_user_cb, - discard_const(TEST_TOKEN_CERT)); set_cmd_cb(test_pam_simple_check); ret = sss_cmd_execute(pam_test_ctx->cctx, SSS_PAM_PREAUTH, @@ -1677,12 +1770,17 @@ set_cert_auth_param(pam_test_ctx->pctx, NSS_DB); - mock_input_pam_cert(pam_test_ctx, NULL, NULL, NULL); + /* If no logon name is given the user is looked by certificate first. + * Since there is a matching user the upcoming lookup by name will find + * the user entry. But since we force the lookup by name to go to the + * backend to make sure the group-membership data is up to date the + * backend response has to be mocked twice and the second argument of + * mock_input_pam_cert cannot be NULL but must match the user name. */ + mock_input_pam_cert(pam_test_ctx, "pamuser", NULL, NULL, + test_lookup_by_cert_cb, TEST_TOKEN_CERT, false); will_return(__wrap_sss_packet_get_cmd, SSS_PAM_PREAUTH); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); - mock_account_recv(0, 0, NULL, test_lookup_by_cert_cb, - discard_const(TEST_TOKEN_CERT)); set_cmd_cb(test_pam_cert_check); ret = sss_cmd_execute(pam_test_ctx->cctx, SSS_PAM_PREAUTH, @@ -1694,13 +1792,35 @@ assert_int_equal(ret, EOK); } +void test_pam_preauth_cert_no_logon_name_double_cert(void **state) +{ + int ret; + + set_cert_auth_param(pam_test_ctx->pctx, NSS_DB); + + mock_input_pam_cert(pam_test_ctx, NULL, NULL, NULL, + test_lookup_by_cert_double_cb, TEST_TOKEN_CERT, false); + + will_return(__wrap_sss_packet_get_cmd, SSS_PAM_PREAUTH); + will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); + + set_cmd_cb(test_pam_creds_insufficient_check); + ret = sss_cmd_execute(pam_test_ctx->cctx, SSS_PAM_PREAUTH, + pam_test_ctx->pam_cmds); + assert_int_equal(ret, EOK); + + /* Wait until the test finishes with EOK */ + ret = test_ev_loop(pam_test_ctx->tctx); + assert_int_equal(ret, EOK); +} + void test_pam_preauth_no_cert_no_logon_name(void **state) { int ret; set_cert_auth_param(pam_test_ctx->pctx, "/no/path"); - mock_input_pam_cert(pam_test_ctx, NULL, NULL, NULL); + mock_input_pam_cert(pam_test_ctx, NULL, NULL, NULL, NULL, NULL, false); will_return(__wrap_sss_packet_get_cmd, SSS_PAM_PREAUTH); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); @@ -1721,11 +1841,11 @@ set_cert_auth_param(pam_test_ctx->pctx, NSS_DB); - mock_input_pam_cert(pam_test_ctx, NULL, NULL, NULL); + mock_input_pam_cert(pam_test_ctx, NULL, NULL, NULL, + test_lookup_by_cert_cb, NULL, false); will_return(__wrap_sss_packet_get_cmd, SSS_PAM_PREAUTH); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); - mock_account_recv(0, 0, NULL, test_lookup_by_cert_cb, NULL); set_cmd_cb(test_pam_user_unknown_check); ret = sss_cmd_execute(pam_test_ctx->cctx, SSS_PAM_PREAUTH, @@ -1743,14 +1863,48 @@ set_cert_auth_param(pam_test_ctx->pctx, NSS_DB); - mock_input_pam_cert(pam_test_ctx, "pamuser", "123456", NULL); + /* Here the last option must be set to true because the backend is only + * connected once. During authentication the backend is connected first to + * see if it can handle Smartcard authentication, but before that the user + * is looked up. Since the first mocked reply already adds the certificate + * to the user entry the lookup by certificate will already find the user + * in the cache and no second request to the backend is needed. */ + mock_input_pam_cert(pam_test_ctx, "pamuser", "123456", NULL, + test_lookup_by_cert_cb, TEST_TOKEN_CERT, true); will_return(__wrap_sss_packet_get_cmd, SSS_PAM_AUTHENTICATE); will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); - mock_account_recv(0, 0, NULL, test_lookup_by_cert_cb, - discard_const(TEST_TOKEN_CERT)); - set_cmd_cb(test_pam_simple_check); + /* Assume backend cannot handle Smartcard credentials */ + pam_test_ctx->exp_pam_status = PAM_BAD_ITEM; + + + set_cmd_cb(test_pam_simple_check_success); + ret = sss_cmd_execute(pam_test_ctx->cctx, SSS_PAM_AUTHENTICATE, + pam_test_ctx->pam_cmds); + assert_int_equal(ret, EOK); + + /* Wait until the test finishes with EOK */ + ret = test_ev_loop(pam_test_ctx->tctx); + assert_int_equal(ret, EOK); +} + +void test_pam_cert_auth_double_cert(void **state) +{ + int ret; + + set_cert_auth_param(pam_test_ctx->pctx, NSS_DB); + + mock_input_pam_cert(pam_test_ctx, "pamuser", "123456", NULL, + test_lookup_by_cert_double_cb, TEST_TOKEN_CERT, true); + + will_return(__wrap_sss_packet_get_cmd, SSS_PAM_AUTHENTICATE); + will_return(__wrap_sss_packet_get_body, WRAP_CALL_REAL); + + /* Assume backend cannot handle Smartcard credentials */ + pam_test_ctx->exp_pam_status = PAM_BAD_ITEM; + + set_cmd_cb(test_pam_simple_check_success); ret = sss_cmd_execute(pam_test_ctx->cctx, SSS_PAM_AUTHENTICATE, pam_test_ctx->pam_cmds); assert_int_equal(ret, EOK); @@ -2043,6 +2197,9 @@ pam_test_setup, pam_test_teardown), cmocka_unit_test_setup_teardown(test_pam_preauth_cert_no_logon_name, pam_test_setup, pam_test_teardown), + cmocka_unit_test_setup_teardown( + test_pam_preauth_cert_no_logon_name_double_cert, + pam_test_setup, pam_test_teardown), cmocka_unit_test_setup_teardown(test_pam_preauth_no_cert_no_logon_name, pam_test_setup, pam_test_teardown), cmocka_unit_test_setup_teardown( @@ -2053,6 +2210,8 @@ cmocka_unit_test_setup_teardown(test_pam_cert_auth, pam_test_setup_no_verification, pam_test_teardown), + cmocka_unit_test_setup_teardown(test_pam_cert_auth_double_cert, + pam_test_setup, pam_test_teardown), #endif /* HAVE_NSS */ cmocka_unit_test_setup_teardown(test_filter_response, diff -Nru sssd-1.15.0/src/tests/cmocka/test_responder_cache_req.c sssd-1.15.2/src/tests/cmocka/test_responder_cache_req.c --- sssd-1.15.0/src/tests/cmocka/test_responder_cache_req.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_responder_cache_req.c 2017-03-15 16:53:24.000000000 +0000 @@ -530,7 +530,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); mock_parse_inp(users[0].short_name, NULL, ERR_OK); /* Test. */ @@ -547,7 +547,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); mock_parse_inp(users[0].short_name, NULL, ERR_OK); /* Test. */ @@ -749,7 +749,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); mock_parse_inp(NULL, NULL, ERR_DOMAIN_NOT_FOUND); /* Test. */ @@ -766,7 +766,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); mock_parse_inp(NULL, NULL, ERR_DOMAIN_NOT_FOUND); /* Test. */ @@ -839,9 +839,9 @@ test_ctx = talloc_get_type_abort(*state, struct cache_req_test_ctx); - /* Setup user. */ - ret = sss_ncache_set_user(test_ctx->ncache, false, - test_ctx->tctx->dom, users[0].upn); + /* Setup user's UPN. */ + ret = sss_ncache_set_upn(test_ctx->ncache, false, + test_ctx->tctx->dom, users[0].upn); assert_int_equal(ret, EOK); /* Mock values. */ @@ -904,7 +904,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); /* Test. */ run_user_by_id(test_ctx, NULL, 0, ERR_OK); @@ -920,7 +920,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); /* Test. */ run_user_by_id(test_ctx, NULL, 0, ENOENT); @@ -1045,7 +1045,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); mock_parse_inp(groups[0].short_name, NULL, ERR_OK); /* Test. */ @@ -1062,7 +1062,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); mock_parse_inp(groups[0].short_name, NULL, ERR_OK); /* Test. */ @@ -1261,7 +1261,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); /* Test. */ run_group_by_id(test_ctx, NULL, 0, ERR_OK); @@ -1277,7 +1277,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); /* Test. */ run_group_by_id(test_ctx, NULL, 0, ENOENT); @@ -1912,7 +1912,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); /* Test. */ run_object_by_sid(test_ctx, NULL, users[0].sid, attrs, 0, ERR_OK); @@ -1929,7 +1929,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); /* Test. */ run_object_by_sid(test_ctx, NULL, users[0].sid, attrs, 0, ENOENT); @@ -2068,7 +2068,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); /* Test. */ run_object_by_sid(test_ctx, NULL, groups[0].sid, attrs, 0, ERR_OK); @@ -2085,7 +2085,7 @@ /* Mock values. */ will_return_always(__wrap_sss_dp_get_account_send, test_ctx); - will_return_always(sss_dp_get_account_recv, 0); + will_return_always(sss_dp_req_recv, 0); /* Test. */ run_object_by_sid(test_ctx, NULL, groups[0].sid, attrs, 0, ENOENT); diff -Nru sssd-1.15.0/src/tests/cmocka/test_responder_common.c sssd-1.15.2/src/tests/cmocka/test_responder_common.c --- sssd-1.15.0/src/tests/cmocka/test_responder_common.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_responder_common.c 2017-03-15 16:53:24.000000000 +0000 @@ -192,7 +192,8 @@ will_return(__wrap_sss_parse_name_for_domains, WRAP_CALL_REAL); - req = sss_parse_inp_send(parse_inp_ctx, parse_inp_ctx->rctx, NAME); + req = sss_parse_inp_send(parse_inp_ctx, parse_inp_ctx->rctx, + parse_inp_ctx->rctx->default_domain, NAME); assert_non_null(req); tevent_req_set_callback(req, parse_inp_simple_done, parse_inp_ctx); @@ -213,7 +214,8 @@ /* The second one will succeed as the domains are up-to-date */ will_return(__wrap_sss_parse_name_for_domains, WRAP_CALL_REAL); - req = sss_parse_inp_send(parse_inp_ctx, parse_inp_ctx->rctx, NAME); + req = sss_parse_inp_send(parse_inp_ctx, parse_inp_ctx->rctx, + parse_inp_ctx->rctx->default_domain, NAME); assert_non_null(req); tevent_req_set_callback(req, parse_inp_simple_done, parse_inp_ctx); @@ -235,7 +237,8 @@ * as the domains are up-to-date */ will_return(__wrap_sss_parse_name_for_domains, WRAP_CALL_REAL); - req = sss_parse_inp_send(parse_inp_ctx, parse_inp_ctx->rctx, NAME); + req = sss_parse_inp_send(parse_inp_ctx, parse_inp_ctx->rctx, + parse_inp_ctx->rctx->default_domain, NAME); assert_non_null(req); tevent_req_set_callback(req, parse_inp_simple_done, parse_inp_ctx); @@ -271,7 +274,8 @@ will_return(__wrap_sss_parse_name_for_domains, WRAP_CALL_WRAPPER); will_return(__wrap_sss_parse_name_for_domains, EINVAL); - req = sss_parse_inp_send(parse_inp_ctx, parse_inp_ctx->rctx, NAME); + req = sss_parse_inp_send(parse_inp_ctx, parse_inp_ctx->rctx, + parse_inp_ctx->rctx->default_domain, NAME); assert_non_null(req); tevent_req_set_callback(req, parse_inp_neg_done, parse_inp_ctx); diff -Nru sssd-1.15.0/src/tests/cmocka/test_sdap_initgr.c sssd-1.15.2/src/tests/cmocka/test_sdap_initgr.c --- sssd-1.15.0/src/tests/cmocka/test_sdap_initgr.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_sdap_initgr.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,540 @@ +/* + Authors: + Petr Čech + + Copyright (C) 2017 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include +#include +#include +#include +#include +#include +#include +#include +#include +#include + +#include "tests/cmocka/common_mock.h" +#include "tests/cmocka/common_mock_sysdb_objects.h" +#include "tests/cmocka/common_mock_sdap.h" +#include "providers/ad/ad_common.h" + +#include "providers/ad/ad_opts.c" +#include "providers/ldap/sdap_async_initgroups.c" + +/* Declarations from providers/ldap/sdap_async_initgroups.c */ +struct sdap_get_initgr_state; +static int sdap_search_initgr_user_in_batch(struct sdap_get_initgr_state *state, + struct sysdb_attrs **users, + size_t count); + +#define TESTS_PATH "tp_" BASE_FILE_STEM +#define TEST_CONF_DB "test_sdap_initgr_conf.ldb" +#define TEST_ID_PROVIDER "ldap" + +#define TEST_DOM1_NAME "domain.test.com" +#define TEST_DOM2_NAME "subdom1.domain.test.com" +#define TEST_DOM3_NAME "another_domain.test.com" + +#define OBJECT_BASE_DN1 "dc=domain,dc=test,dc=com,cn=sysdb" +#define OBJECT_BASE_DN2 "dc=subdom1,dc=domain,dc=test,dc=com,cn=sysdb" +#define OBJECT_BASE_DN3 "dc=another_domain,dc=test,dc=com,cn=sysdb" + +#define TEST_USER_1 "test_user_1" +#define TEST_USER_2 "test_user_2" +#define TEST_USER_3 "test_user_3" + +const char *domains[] = { TEST_DOM1_NAME, + TEST_DOM2_NAME, + TEST_DOM3_NAME, + NULL }; + +const char *object_bases[] = { OBJECT_BASE_DN1, + OBJECT_BASE_DN2, + OBJECT_BASE_DN3, + NULL }; + +const char *test_users[] = { TEST_USER_1, + TEST_USER_2, + TEST_USER_3, + NULL }; + +/* ====================== Utilities =============================== */ + +struct test_sdap_initgr_ctx { + struct sss_test_ctx *tctx; +}; + +static struct passwd **get_users(TALLOC_CTX *ctx) +{ + struct passwd **passwds = NULL; + char *homedir = NULL; + size_t user_count = 0; + + for (int i = 0; test_users[i] != NULL; i++) { + user_count++; + } + passwds = talloc_array(ctx, struct passwd *, user_count); + assert_non_null(passwds); + + for (int i = 0; i < user_count; i++) { + passwds[i] = talloc(passwds, struct passwd); + assert_non_null(passwds[i]); + + homedir = talloc_strdup_append(homedir, "/home/"); + homedir = talloc_strdup_append(homedir, test_users[i]); + + passwds[i]->pw_name = discard_const(test_users[i]); + passwds[i]->pw_uid = 567 + i; + passwds[i]->pw_gid = 890 + i; + passwds[i]->pw_dir = talloc_strdup(passwds[i], homedir); + passwds[i]->pw_gecos = discard_const(test_users[i]); + passwds[i]->pw_shell = discard_const("/bin/sh"); + passwds[i]->pw_passwd = discard_const("*"); + + talloc_zfree(homedir); + } + + return passwds; +} + +static struct sss_test_conf_param **get_params(TALLOC_CTX *ctx) +{ + struct sss_test_conf_param **params; + char *user_base_dn = NULL; + char *group_base_dn = NULL; + size_t base_count = 0; + + for (int i = 0; object_bases[i] != NULL; i++) { + base_count++; + } + + params = talloc_array(ctx, struct sss_test_conf_param *, base_count + 1); + assert_non_null(params); + + for (int i = 0; i < base_count; i++) { + params[i] = talloc(params, struct sss_test_conf_param); + assert_non_null(params[i]); + + user_base_dn = talloc_strdup_append(user_base_dn, "cn=users,"); + user_base_dn = talloc_strdup_append(user_base_dn, object_bases[i]); + + group_base_dn = talloc_strdup_append(group_base_dn, "cn=groups,"); + group_base_dn = talloc_strdup_append(group_base_dn, object_bases[i]); + + params[i] = talloc_array(params[i], struct sss_test_conf_param, 5); + params[i][0].key = "ldap_schema"; + params[i][0].value = "rfc2307bis"; + params[i][1].key = "ldap_search_base"; + params[i][1].value = talloc_strdup(params[i], object_bases[i]); + params[i][2].key = "ldap_user_search_base"; + params[i][2].value = talloc_strdup(params[i], user_base_dn); + params[i][3].key = "ldap_group_search_base"; + params[i][3].value = talloc_strdup(params[i], group_base_dn); + params[i][4].key = NULL; + params[i][4].value = NULL; + + talloc_zfree(user_base_dn); + talloc_zfree(group_base_dn); + } + + return params; +} + +struct sss_domain_info *get_domain_info(struct sss_domain_info *domain, + const char *domain_name) +{ + struct sss_domain_info *dom = domain; + + while(dom != NULL) { + if (strcmp(dom->name, domain_name) == 0) { + break; + } + dom = dom->next; + } + + return dom; +} + +struct sdap_get_initgr_state *prepare_state(struct test_sdap_initgr_ctx *ctx, + const char **domain_names) +{ + struct sdap_get_initgr_state *state; + struct sss_domain_info *dom_info = NULL; + struct sss_domain_info *recent_dom_info = NULL; + + state = talloc_zero(ctx->tctx, struct sdap_get_initgr_state); + assert_non_null(state); + + for (int i=0; domain_names[i] != NULL; i++) { + dom_info = get_domain_info(ctx->tctx->dom, domain_names[i]); + assert_non_null(dom_info); + + if (i == 0) { + state->dom = dom_info; + recent_dom_info = state->dom; + } else { + recent_dom_info->next = dom_info; + recent_dom_info = recent_dom_info->next; + } + } + assert_non_null(state->dom); + assert_non_null(recent_dom_info); + recent_dom_info->next = NULL; + + state->opts = mock_sdap_options_ldap(state, state->dom, + ctx->tctx->confdb, + ctx->tctx->conf_dom_path); + assert_non_null(state->opts); + + return state; +} + +/* TODO: This function is copied from test_nss_srv.c + * It could be fine move both to one place, + * for example src/tests/common_sysdb.c + */ +static errno_t store_user(TALLOC_CTX *ctx, + struct sss_domain_info *dom, + struct passwd *user, + struct sysdb_attrs *attrs, + time_t cache_update) +{ + errno_t ret; + char *fqname; + + fqname = sss_create_internal_fqname(ctx, + user->pw_name, + dom->name); + if (fqname == NULL) { + return ENOMEM; + } + + /* Prime the cache with a valid user */ + ret = sysdb_store_user(dom, + fqname, + user->pw_passwd, + user->pw_uid, + user->pw_gid, + user->pw_gecos, + user->pw_dir, + user->pw_shell, + NULL, attrs, + NULL, 300, cache_update); + talloc_free(fqname); + + return ret; +} + +/* ====================== Setup =============================== */ + +static int test_sdap_initgr_setup_one_domain(void **state) +{ + struct test_sdap_initgr_ctx *test_ctx; + struct sss_test_conf_param **params; + + assert_true(leak_check_setup()); + + test_ctx = talloc_zero(global_talloc_context, struct test_sdap_initgr_ctx); + assert_non_null(test_ctx); + + params = get_params(test_ctx); + assert_non_null(params); + + test_ctx->tctx = create_dom_test_ctx(test_ctx, TESTS_PATH, + TEST_CONF_DB, domains[0], + TEST_ID_PROVIDER, params[0]); + assert_non_null(test_ctx->tctx); + + check_leaks_push(test_ctx); + *state = test_ctx; + return 0; +} + +static int test_sdap_initgr_setup_multi_domains(void **state) +{ + struct test_sdap_initgr_ctx *test_ctx; + struct sss_test_conf_param **params; + + assert_true(leak_check_setup()); + + test_ctx = talloc_zero(global_talloc_context, struct test_sdap_initgr_ctx); + assert_non_null(test_ctx); + + params = get_params(test_ctx); + assert_non_null(params); + + test_ctx->tctx = create_multidom_test_ctx(test_ctx, TESTS_PATH, + TEST_CONF_DB, domains, + TEST_ID_PROVIDER, params); + assert_non_null(test_ctx->tctx); + + check_leaks_push(test_ctx); + *state = test_ctx; + return 0; +} + +static int test_sdap_initgr_setup_other_multi_domains(void **state) +{ + struct test_sdap_initgr_ctx *test_ctx; + struct sss_test_conf_param **params; + const char *domains_vith_other[] = { TEST_DOM1_NAME, + TEST_DOM3_NAME, + NULL }; + + assert_true(leak_check_setup()); + + test_ctx = talloc_zero(global_talloc_context, struct test_sdap_initgr_ctx); + assert_non_null(test_ctx); + + params = get_params(test_ctx); + assert_non_null(params); + + test_ctx->tctx = create_multidom_test_ctx(test_ctx, TESTS_PATH, + TEST_CONF_DB, domains_vith_other, + TEST_ID_PROVIDER, params); + assert_non_null(test_ctx->tctx); + + check_leaks_push(test_ctx); + *state = test_ctx; + return 0; +} + +static int test_sdap_initgr_teardown(void **state) +{ + struct test_sdap_initgr_ctx *test_ctx; + + test_ctx = talloc_get_type(*state, struct test_sdap_initgr_ctx); + assert_non_null(test_ctx); + + assert_true(check_leaks_pop(test_ctx) == true); + talloc_free(test_ctx); + assert_true(leak_check_teardown()); + return 0; +} + +/* ====================== The tests =============================== */ + +static void test_user_is_on_batch(void **state) +{ + struct test_sdap_initgr_ctx *test_ctx; + struct sdap_get_initgr_state *initgr_state; + const char *domains_set[] = { domains[0], NULL }; + struct sss_domain_info *dom1_info = NULL; + struct sss_domain_info *dom2_info = NULL; + struct passwd **passwd_users; + struct sysdb_attrs **users; + const char *user_name; + errno_t ret; + + test_ctx = talloc_get_type(*state, struct test_sdap_initgr_ctx); + assert_non_null(test_ctx); + + dom1_info = get_domain_info(test_ctx->tctx->dom, domains[0]); + assert_non_null(dom1_info); + dom2_info = get_domain_info(test_ctx->tctx->dom, domains[1]); + assert_non_null(dom2_info); + + initgr_state = prepare_state(test_ctx, domains_set); + assert_non_null(initgr_state); + + passwd_users = get_users(test_ctx); + assert_non_null(passwd_users); + + ret = store_user(test_ctx, dom1_info, passwd_users[0], NULL, 0); + assert_int_equal(ret, 0); + ret = store_user(test_ctx, dom2_info, passwd_users[1], NULL, 0); + assert_int_equal(ret, 0); + + users = talloc_array(test_ctx, struct sysdb_attrs *, 2); + users[0] = mock_sysdb_user(users, object_bases[0], + passwd_users[0]->pw_uid, + passwd_users[0]->pw_name); + users[1] = mock_sysdb_user(users, object_bases[1], + passwd_users[1]->pw_uid, + passwd_users[1]->pw_name); + + ret = sdap_search_initgr_user_in_batch(initgr_state, users, 2); + assert_int_equal(ret, 0); + + ret = sysdb_attrs_get_string(initgr_state->orig_user, "name", &user_name); + assert_int_equal(ret, 0); + assert_string_equal(user_name, passwd_users[0]->pw_name); + + talloc_zfree(initgr_state); + talloc_zfree(passwd_users); + talloc_zfree(users); +} + +static void test_user_is_from_subdomain(void **state) +{ + struct test_sdap_initgr_ctx *test_ctx; + struct sdap_get_initgr_state *initgr_state; + const char *domains_set[] = { domains[0], NULL }; + struct sss_domain_info *dom_info = NULL; + struct passwd **passwd_users; + struct sysdb_attrs **users; + const char *user_name; + errno_t ret; + + test_ctx = talloc_get_type(*state, struct test_sdap_initgr_ctx); + assert_non_null(test_ctx); + + dom_info = get_domain_info(test_ctx->tctx->dom, domains[0]); + assert_non_null(dom_info); + + initgr_state = prepare_state(test_ctx, domains_set); + assert_non_null(initgr_state); + + passwd_users = get_users(test_ctx); + assert_non_null(passwd_users); + + ret = store_user(test_ctx, dom_info, passwd_users[0], NULL, 0); + assert_int_equal(ret, 0); + + users = talloc_array(test_ctx, struct sysdb_attrs *, 1); + users[0] = mock_sysdb_user(users, object_bases[1], + passwd_users[1]->pw_uid, + passwd_users[1]->pw_name); + + const char *original_dn = NULL; + ret = sysdb_attrs_get_string(users[0], SYSDB_ORIG_DN, &original_dn); + + ret = sdap_search_initgr_user_in_batch(initgr_state, users, 1); + assert_int_equal(ret, 0); + + ret = sysdb_attrs_get_string(initgr_state->orig_user, "name", &user_name); + assert_int_equal(ret, 0); + assert_string_equal(user_name, passwd_users[1]->pw_name); + + talloc_zfree(initgr_state); + talloc_zfree(passwd_users); + talloc_zfree(users); +} + +static void test_user_is_from_another_domain(void **state) +{ + struct test_sdap_initgr_ctx *test_ctx; + struct sdap_get_initgr_state *initgr_state; + const char *domains_set[] = { domains[0], domains[2], NULL }; + struct sss_domain_info *dom_info = NULL; + struct sss_domain_info *other_dom_info = NULL; + struct sdap_domain *other_sdom = NULL; + struct passwd **passwd_users; + struct sysdb_attrs **users; + errno_t ret; + + test_ctx = talloc_get_type(*state, struct test_sdap_initgr_ctx); + assert_non_null(test_ctx); + + dom_info = get_domain_info(test_ctx->tctx->dom, domains[0]); + assert_non_null(dom_info); + + initgr_state = prepare_state(test_ctx, domains_set); + assert_non_null(initgr_state); + + other_dom_info = get_domain_info(test_ctx->tctx->dom, domains[2]); + assert_non_null(other_dom_info); + + ret = sdap_domain_add(initgr_state->opts, other_dom_info, &other_sdom); + assert_int_equal(ret, EOK); + + talloc_zfree(other_sdom->search_bases); + other_sdom->search_bases = talloc_array(other_sdom, + struct sdap_search_base *, 2); + assert_non_null(other_sdom->search_bases); + other_sdom->search_bases[1] = NULL; + + ret = sdap_create_search_base(other_sdom, object_bases[2], + LDAP_SCOPE_SUBTREE, NULL, + &other_sdom->search_bases[0]); + assert_int_equal(ret, EOK); + + passwd_users = get_users(test_ctx); + assert_non_null(passwd_users); + + ret = store_user(test_ctx, dom_info, passwd_users[0], NULL, 0); + assert_int_equal(ret, 0); + + users = talloc_array(test_ctx, struct sysdb_attrs *, 1); + users[0] = mock_sysdb_user(users, object_bases[2], + passwd_users[2]->pw_uid, + passwd_users[2]->pw_name); + + ret = sdap_search_initgr_user_in_batch(initgr_state, users, 1); + assert_int_equal(ret, EINVAL); + + talloc_zfree(initgr_state); + talloc_zfree(passwd_users); + talloc_zfree(users); +} + +int main(int argc, const char *argv[]) +{ + int rv; + poptContext pc; + int opt; + struct poptOption long_options[] = { + POPT_AUTOHELP + SSSD_DEBUG_OPTS + POPT_TABLEEND + }; + + const struct CMUnitTest tests[] = { + cmocka_unit_test_setup_teardown(test_user_is_on_batch, + test_sdap_initgr_setup_multi_domains, + test_sdap_initgr_teardown), + cmocka_unit_test_setup_teardown(test_user_is_from_subdomain, + test_sdap_initgr_setup_one_domain, + test_sdap_initgr_teardown), + cmocka_unit_test_setup_teardown(test_user_is_from_another_domain, + test_sdap_initgr_setup_other_multi_domains, + test_sdap_initgr_teardown), + }; + + /* Set debug level to invalid value so we can deside if -d 0 was used. */ + debug_level = SSSDBG_INVALID; + + pc = poptGetContext(argv[0], argc, argv, long_options, 0); + while((opt = poptGetNextOpt(pc)) != -1) { + switch(opt) { + default: + fprintf(stderr, "\nInvalid option %s: %s\n\n", + poptBadOption(pc, 0), poptStrerror(opt)); + poptPrintUsage(pc, stderr, 0); + return 1; + } + } + poptFreeContext(pc); + + DEBUG_CLI_INIT(debug_level); + + /* Even though normally the tests should clean up after themselves + * they might not after a failed run. Remove the old db to be sure */ + tests_set_cwd(); + + test_multidom_suite_cleanup(TESTS_PATH, TEST_CONF_DB, domains); + test_dom_suite_setup(TESTS_PATH); + + rv = cmocka_run_group_tests(tests, NULL, NULL); + if (rv == 0) { + test_multidom_suite_cleanup(TESTS_PATH, TEST_CONF_DB, domains); + } + + return rv; +} diff -Nru sssd-1.15.0/src/tests/cmocka/test_sysdb_subdomains.c sssd-1.15.2/src/tests/cmocka/test_sysdb_subdomains.c --- sssd-1.15.0/src/tests/cmocka/test_sysdb_subdomains.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_sysdb_subdomains.c 2017-03-15 16:53:24.000000000 +0000 @@ -60,9 +60,6 @@ static int test_sysdb_subdom_setup(void **state) { struct subdom_test_ctx *test_ctx; - struct sss_test_conf_param params[] = { - { NULL, NULL }, /* Sentinel */ - }; assert_true(leak_check_setup()); @@ -74,7 +71,7 @@ test_ctx->tctx = create_multidom_test_ctx(test_ctx, TESTS_PATH, TEST_CONF_DB, domains, - TEST_ID_PROVIDER, params); + TEST_ID_PROVIDER, NULL); assert_non_null(test_ctx->tctx); *state = test_ctx; @@ -515,107 +512,6 @@ } -static void test_try_to_find_expected_dn(void **state) -{ - int ret; - struct sysdb_attrs *result; - struct sysdb_attrs *usr_attrs[10] = { NULL }; - struct sysdb_attrs *dom_usr_attrs[10] = { NULL }; - struct sss_domain_info *dom; - char *dom_basedn; - struct subdom_test_ctx *test_ctx = - talloc_get_type(*state, struct subdom_test_ctx); - - dom = find_domain_by_name(test_ctx->tctx->dom, - "child2.test_sysdb_subdomains_2", true); - assert_non_null(dom); - - ret = domain_to_basedn(test_ctx, dom->name, &dom_basedn); - assert_int_equal(ret, EOK); - - usr_attrs[0] = sysdb_new_attrs(test_ctx); - assert_non_null(usr_attrs[0]); - - ret = sysdb_attrs_add_string(usr_attrs[0], SYSDB_ORIG_DN, - "uid=user,cn=abc,dc=c2,dc=child2,dc=test_sysdb_subdomains_2"); - assert_int_equal(ret, EOK); - - ret = sysdb_try_to_find_expected_dn(NULL, NULL, NULL, NULL, 0, NULL); - assert_int_equal(ret, EINVAL); - - ret = sysdb_try_to_find_expected_dn(dom, "dc", dom_basedn, usr_attrs, 1, &result); - assert_int_equal(ret, ENOENT); - - ret = sysdb_try_to_find_expected_dn(dom, "xy", dom_basedn, usr_attrs, 1, &result); - assert_int_equal(ret, EOK); - assert_ptr_equal(result, usr_attrs[0]); - - usr_attrs[1] = sysdb_new_attrs(test_ctx); - assert_non_null(usr_attrs[1]); - - ret = sysdb_attrs_add_string(usr_attrs[1], SYSDB_ORIG_DN, - "uid=user1,cn=abc,dc=child2,dc=test_sysdb_subdomains_2"); - assert_int_equal(ret, EOK); - - usr_attrs[2] = sysdb_new_attrs(test_ctx); - assert_non_null(usr_attrs[2]); - - ret = sysdb_attrs_add_string(usr_attrs[2], SYSDB_ORIG_DN, - "uid=user2,cn=abc,dc=c2,dc=child2,dc=test_sysdb_subdomains_2"); - assert_int_equal(ret, EOK); - - ret = sysdb_try_to_find_expected_dn(dom, "dc", dom_basedn, usr_attrs, 3, &result); - assert_int_equal(ret, EOK); - assert_ptr_equal(result, usr_attrs[1]); - - ret = sysdb_try_to_find_expected_dn(dom, "xy", dom_basedn, usr_attrs, 3, &result); - assert_int_equal(ret, EINVAL); - - /* Make sure cn=users match is preferred */ - talloc_free(usr_attrs[2]); - usr_attrs[2] = sysdb_new_attrs(test_ctx); - assert_non_null(usr_attrs[2]); - - ret = sysdb_attrs_add_string(usr_attrs[2], SYSDB_ORIG_DN, - "uid=user2,cn=abc,cn=users,dc=child2,dc=test_sysdb_subdomains_2"); - assert_int_equal(ret, EOK); - - ret = sysdb_try_to_find_expected_dn(dom, "dc", dom_basedn, usr_attrs, 3, &result); - assert_int_equal(ret, EOK); - assert_ptr_equal(result, usr_attrs[2]); - - /* test a case where the domain name does not match the basedn */ - dom->name = discard_const("default"); - dom_usr_attrs[0] = usr_attrs[0]; - - ret = sysdb_try_to_find_expected_dn(dom, "dc", dom_basedn, dom_usr_attrs, 1, &result); - assert_int_equal(ret, ENOENT); - - dom_usr_attrs[1] = usr_attrs[1]; - dom_usr_attrs[2] = usr_attrs[2]; - - /* Make sure cn=users match is preferred */ - ret = sysdb_try_to_find_expected_dn(dom, "dc", dom_basedn, dom_usr_attrs, 3, &result); - assert_int_equal(ret, EOK); - assert_ptr_equal(result, dom_usr_attrs[2]); - - talloc_free(usr_attrs[2]); - usr_attrs[2] = sysdb_new_attrs(test_ctx); - assert_non_null(usr_attrs[2]); - ret = sysdb_attrs_add_string(usr_attrs[2], SYSDB_ORIG_DN, - "uid=user2,cn=abc,dc=c2,dc=child2,dc=test_sysdb_subdomains_2"); - assert_int_equal(ret, EOK); - - dom_usr_attrs[2] = usr_attrs[2]; - ret = sysdb_try_to_find_expected_dn(dom, "dc", dom_basedn, dom_usr_attrs, 3, &result); - assert_int_equal(ret, EOK); - assert_ptr_equal(result, usr_attrs[1]); - - talloc_free(usr_attrs[0]); - talloc_free(usr_attrs[1]); - talloc_free(usr_attrs[2]); -} - int main(int argc, const char *argv[]) { int rv; @@ -649,9 +545,6 @@ cmocka_unit_test_setup_teardown(test_sysdb_link_ad_multidom, test_sysdb_subdom_setup, test_sysdb_subdom_teardown), - cmocka_unit_test_setup_teardown(test_try_to_find_expected_dn, - test_sysdb_subdom_setup, - test_sysdb_subdom_teardown), }; /* Set debug level to invalid value so we can deside if -d 0 was used. */ diff -Nru sssd-1.15.0/src/tests/cmocka/test_sysdb_sudo.c sssd-1.15.2/src/tests/cmocka/test_sysdb_sudo.c --- sssd-1.15.0/src/tests/cmocka/test_sysdb_sudo.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_sysdb_sudo.c 2017-03-15 16:53:24.000000000 +0000 @@ -335,6 +335,11 @@ test_ctx->tctx->dom->case_sensitive = false; + ret = sysdb_attrs_add_lower_case_string(rule, false, + SYSDB_SUDO_CACHE_AT_USER, + users[0].name); + assert_int_equal(ret, EOK); + ret = sysdb_sudo_store(test_ctx->tctx->dom, &rule, 1); assert_int_equal(ret, EOK); diff -Nru sssd-1.15.0/src/tests/cmocka/test_sysdb_ts_cache.c sssd-1.15.2/src/tests/cmocka/test_sysdb_ts_cache.c --- sssd-1.15.0/src/tests/cmocka/test_sysdb_ts_cache.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_sysdb_ts_cache.c 2017-03-15 16:53:24.000000000 +0000 @@ -74,9 +74,6 @@ static int test_sysdb_ts_setup(void **state) { struct sysdb_ts_test_ctx *test_ctx; - struct sss_test_conf_param params[] = { - { NULL, NULL }, /* Sentinel */ - }; assert_true(leak_check_setup()); @@ -88,7 +85,7 @@ test_ctx->tctx = create_multidom_test_ctx(test_ctx, TESTS_PATH, TEST_CONF_DB, domains, - TEST_ID_PROVIDER, params); + TEST_ID_PROVIDER, NULL); assert_non_null(test_ctx->tctx); check_leaks_push(test_ctx); @@ -1306,14 +1303,14 @@ TEST_NOW_2); assert_int_equal(ret, EOK); - ret = sysdb_getpwupn(test_ctx, test_ctx->tctx->dom, TEST_USER_UPN, &res); + ret = sysdb_getpwupn(test_ctx, test_ctx->tctx->dom, false, TEST_USER_UPN, &res); assert_int_equal(ret, EOK); assert_int_equal(res->count, 1); assert_ts_attrs_res(res, TEST_NOW_2 + TEST_CACHE_TIMEOUT, TEST_NOW_2); talloc_free(res); ret = sysdb_search_user_by_upn_res(test_ctx, test_ctx->tctx->dom, - TEST_USER_UPN, pw_fetch_attrs, + false, TEST_USER_UPN, pw_fetch_attrs, &res); assert_int_equal(ret, EOK); assert_int_equal(res->count, 1); @@ -1321,7 +1318,7 @@ talloc_free(res); ret = sysdb_search_user_by_upn(test_ctx, test_ctx->tctx->dom, - TEST_USER_UPN, pw_fetch_attrs, + false, TEST_USER_UPN, pw_fetch_attrs, &msg); assert_int_equal(ret, EOK); assert_ts_attrs_msg(msg, TEST_NOW_2 + TEST_CACHE_TIMEOUT, TEST_NOW_2); diff -Nru sssd-1.15.0/src/tests/cmocka/test_utils.c sssd-1.15.2/src/tests/cmocka/test_utils.c --- sssd-1.15.0/src/tests/cmocka/test_utils.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cmocka/test_utils.c 2017-03-15 16:53:24.000000000 +0000 @@ -41,6 +41,7 @@ #define STR(tok) MACRO_EXPAND(tok) #define USERNAME "sssduser" +#define FIRST_LETTER "s" #define UID 1234 #define DOMAIN "sssddomain" #define ORIGINAL_HOME "/home/user" @@ -1217,12 +1218,18 @@ check_expanded_value(tmp_ctx, homedir_ctx, DUMMY"%%"DUMMY2, DUMMY"%"DUMMY2); + check_expanded_value(tmp_ctx, homedir_ctx, "%l", FIRST_LETTER); + check_expanded_value(tmp_ctx, homedir_ctx, DUMMY"%l", DUMMY FIRST_LETTER); + check_expanded_value(tmp_ctx, homedir_ctx, "%l"DUMMY, FIRST_LETTER DUMMY); + check_expanded_value(tmp_ctx, homedir_ctx, DUMMY"%l"DUMMY2, + DUMMY FIRST_LETTER DUMMY2); + /* test all format strings */ check_expanded_value(tmp_ctx, homedir_ctx, - DUMMY"/%u/%U/%d/%f/%o/%F/%%/%H/"DUMMY2, + DUMMY"/%u/%U/%d/%f/%o/%F/%%/%H/%l/"DUMMY2, DUMMY"/"USERNAME"/" STR(UID) "/"DOMAIN"/" USERNAME"@"DOMAIN"/"ORIGINAL_HOME"/"FLATNAME"/%/" - HOMEDIR_SUBSTR"/"DUMMY2); + HOMEDIR_SUBSTR"/"FIRST_LETTER"/"DUMMY2); talloc_free(tmp_ctx); } diff -Nru sssd-1.15.0/src/tests/common_dom.c sssd-1.15.2/src/tests/common_dom.c --- sssd-1.15.0/src/tests/common_dom.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/common_dom.c 2017-03-15 16:53:24.000000000 +0000 @@ -231,7 +231,7 @@ const char *cdb_file, const char **domains, const char *id_provider, - struct sss_test_conf_param *params) + struct sss_test_conf_param **params) { struct sss_domain_info *domain = NULL; struct sss_test_ctx *test_ctx = NULL; @@ -255,7 +255,7 @@ /* create confdb objects for the domains */ for (i = 0; domains[i] != NULL; i++) { ret = mock_confdb_domain(test_ctx, test_ctx->confdb, tests_path, - domains[i], id_provider, params, + domains[i], id_provider, params != NULL ? params[i] : NULL, (cdb_path == NULL ? &cdb_path : NULL)); if (ret != EOK) { DEBUG(SSSDBG_CRIT_FAILURE, "Unable to initialize confdb domain " @@ -302,7 +302,7 @@ const char *domains[] = {domain_name, NULL}; return create_multidom_test_ctx(mem_ctx, tests_path, confdb_path, domains, - id_provider, params); + id_provider, ¶ms); } void test_multidom_suite_cleanup(const char *tests_path, diff -Nru sssd-1.15.0/src/tests/common.h sssd-1.15.2/src/tests/common.h --- sssd-1.15.0/src/tests/common.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/common.h 2017-03-15 16:53:24.000000000 +0000 @@ -92,7 +92,7 @@ const char *cdb_file, const char **domains, const char *id_provider, - struct sss_test_conf_param *params); + struct sss_test_conf_param **params); struct sss_test_ctx * create_dom_test_ctx(TALLOC_CTX *mem_ctx, diff -Nru sssd-1.15.0/src/tests/cwrap/Makefile.am sssd-1.15.2/src/tests/cwrap/Makefile.am --- sssd-1.15.0/src/tests/cwrap/Makefile.am 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/cwrap/Makefile.am 2017-03-15 16:53:24.000000000 +0000 @@ -38,6 +38,7 @@ SSSD_CACHE_REQ_OBJ = \ ../../../src/responder/common/cache_req/cache_req.c \ + ../../../src/responder/common/cache_req/cache_req_result.c \ ../../../src/responder/common/cache_req/cache_req_search.c \ ../../../src/responder/common/cache_req/cache_req_data.c \ ../../../src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -60,6 +61,14 @@ ../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ ../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ ../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + ../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ + $(NULL) + +SSSD_RESPONDER_IFACE_OBJ = \ + ../../../src/responder/common/iface/responder_iface.c \ + ../../../src/responder/common/iface/responder_domain.c \ + ../../../src/responder/common/iface/responder_ncache.c \ + ../../../src/responder/common/iface/responder_iface_generated.c \ $(NULL) SSSD_RESPONDER_OBJ = \ @@ -68,6 +77,7 @@ ../../../src/responder/common/responder_cmd.c \ ../../../src/responder/common/responder_common.c \ ../../../src/responder/common/responder_dp.c \ + ../../../src/responder/common/responder_dp_ssh.c \ ../../../src/responder/common/responder_packet.c \ ../../../src/responder/common/responder_get_domains.c \ ../../../src/responder/common/responder_utils.c \ @@ -75,6 +85,7 @@ ../../../src/responder/common/data_provider/rdp_client.c \ ../../../src/monitor/monitor_iface_generated.c \ ../../../src/providers/data_provider_req.c \ + $(SSSD_RESPONDER_IFACE_OBJ) \ $(SSSD_CACHE_REQ_OBJ) \ $(NULL) @@ -156,6 +167,10 @@ responder_common_tests_SOURCES =\ test_responder_common.c \ + ../../../src/responder/common/iface/responder_iface.c \ + ../../../src/responder/common/iface/responder_domain.c \ + ../../../src/responder/common/iface/responder_ncache.c \ + ../../../src/responder/common/iface/responder_iface_generated.c \ ../../../src/responder/common/negcache_files.c \ ../../../src/responder/common/negcache.c \ ../../../src/responder/common/data_provider/rdp_message.c \ @@ -163,6 +178,8 @@ ../../../src/responder/common/responder_common.c \ ../../../src/responder/common/responder_packet.c \ ../../../src/responder/common/responder_cmd.c \ + ../../../src/tests/cmocka/common_mock_resp_dp.c \ + $(SSSD_CACHE_REQ_OBJ) \ $(NULL) responder_common_tests_CFLAGS = \ $(AM_CFLAGS) \ diff -Nru sssd-1.15.0/src/tests/cwrap/Makefile.in sssd-1.15.2/src/tests/cwrap/Makefile.in --- sssd-1.15.0/src/tests/cwrap/Makefile.in 2017-01-25 15:42:56.452156625 +0000 +++ sssd-1.15.2/src/tests/cwrap/Makefile.in 2017-03-15 16:57:42.241686648 +0000 @@ -149,6 +149,7 @@ $(top_srcdir)/src/external/intgcheck.m4 \ $(top_srcdir)/src/external/systemtap.m4 \ $(top_srcdir)/src/external/service.m4 \ + $(top_srcdir)/src/external/libcurl.m4 \ $(top_srcdir)/src/external/libhttp_parser.m4 \ $(top_srcdir)/src/external/libjansson.m4 \ $(top_srcdir)/src/external/libunistring.m4 \ @@ -182,7 +183,12 @@ $(become_user_tests_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) \ -o $@ am__dirstamp = $(am__leading_dot)dirstamp -am__objects_1 = ../../../src/responder/common/cache_req/negcache_tests-cache_req.$(OBJEXT) \ +am__objects_1 = ../../../src/responder/common/iface/negcache_tests-responder_iface.$(OBJEXT) \ + ../../../src/responder/common/iface/negcache_tests-responder_domain.$(OBJEXT) \ + ../../../src/responder/common/iface/negcache_tests-responder_ncache.$(OBJEXT) \ + ../../../src/responder/common/iface/negcache_tests-responder_iface_generated.$(OBJEXT) +am__objects_2 = ../../../src/responder/common/cache_req/negcache_tests-cache_req.$(OBJEXT) \ + ../../../src/responder/common/cache_req/negcache_tests-cache_req_result.$(OBJEXT) \ ../../../src/responder/common/cache_req/negcache_tests-cache_req_search.$(OBJEXT) \ ../../../src/responder/common/cache_req/negcache_tests-cache_req_data.$(OBJEXT) \ ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_common.$(OBJEXT) \ @@ -204,12 +210,14 @@ ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_object_by_id.$(OBJEXT) \ ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_svc_by_name.$(OBJEXT) \ ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_svc_by_port.$(OBJEXT) \ - ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_netgroup_by_name.$(OBJEXT) -am__objects_2 = ../../../src/responder/common/negcache_tests-negcache_files.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_netgroup_by_name.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.$(OBJEXT) +am__objects_3 = ../../../src/responder/common/negcache_tests-negcache_files.$(OBJEXT) \ ../../../src/responder/common/negcache_tests-negcache.$(OBJEXT) \ ../../../src/responder/common/negcache_tests-responder_cmd.$(OBJEXT) \ ../../../src/responder/common/negcache_tests-responder_common.$(OBJEXT) \ ../../../src/responder/common/negcache_tests-responder_dp.$(OBJEXT) \ + ../../../src/responder/common/negcache_tests-responder_dp_ssh.$(OBJEXT) \ ../../../src/responder/common/negcache_tests-responder_packet.$(OBJEXT) \ ../../../src/responder/common/negcache_tests-responder_get_domains.$(OBJEXT) \ ../../../src/responder/common/negcache_tests-responder_utils.$(OBJEXT) \ @@ -217,8 +225,8 @@ ../../../src/responder/common/data_provider/negcache_tests-rdp_client.$(OBJEXT) \ ../../../src/monitor/negcache_tests-monitor_iface_generated.$(OBJEXT) \ ../../../src/providers/negcache_tests-data_provider_req.$(OBJEXT) \ - $(am__objects_1) -am_negcache_tests_OBJECTS = $(am__objects_2) \ + $(am__objects_1) $(am__objects_2) +am_negcache_tests_OBJECTS = $(am__objects_3) \ negcache_tests-test_negcache.$(OBJEXT) negcache_tests_OBJECTS = $(am_negcache_tests_OBJECTS) am__DEPENDENCIES_2 = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ @@ -236,15 +244,46 @@ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(negcache_tests_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o \ $@ +am__objects_4 = ../../../src/responder/common/cache_req/responder_common_tests-cache_req.$(OBJEXT) \ + ../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.$(OBJEXT) \ + ../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.$(OBJEXT) \ + ../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.$(OBJEXT) \ + ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.$(OBJEXT) am_responder_common_tests_OBJECTS = \ responder_common_tests-test_responder_common.$(OBJEXT) \ + ../../../src/responder/common/iface/responder_common_tests-responder_iface.$(OBJEXT) \ + ../../../src/responder/common/iface/responder_common_tests-responder_domain.$(OBJEXT) \ + ../../../src/responder/common/iface/responder_common_tests-responder_ncache.$(OBJEXT) \ + ../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.$(OBJEXT) \ ../../../src/responder/common/responder_common_tests-negcache_files.$(OBJEXT) \ ../../../src/responder/common/responder_common_tests-negcache.$(OBJEXT) \ ../../../src/responder/common/data_provider/responder_common_tests-rdp_message.$(OBJEXT) \ ../../../src/responder/common/data_provider/responder_common_tests-rdp_client.$(OBJEXT) \ ../../../src/responder/common/responder_common_tests-responder_common.$(OBJEXT) \ ../../../src/responder/common/responder_common_tests-responder_packet.$(OBJEXT) \ - ../../../src/responder/common/responder_common_tests-responder_cmd.$(OBJEXT) + ../../../src/responder/common/responder_common_tests-responder_cmd.$(OBJEXT) \ + ../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.$(OBJEXT) \ + $(am__objects_4) responder_common_tests_OBJECTS = $(am_responder_common_tests_OBJECTS) responder_common_tests_DEPENDENCIES = $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_2) $(am__DEPENDENCIES_1) \ @@ -574,6 +613,8 @@ CPPFLAGS = @CPPFLAGS@ CRYPTO_CFLAGS = @CRYPTO_CFLAGS@ CRYPTO_LIBS = @CRYPTO_LIBS@ +CURL_CFLAGS = @CURL_CFLAGS@ +CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ @@ -897,6 +938,7 @@ SSSD_CACHE_REQ_OBJ = \ ../../../src/responder/common/cache_req/cache_req.c \ + ../../../src/responder/common/cache_req/cache_req_result.c \ ../../../src/responder/common/cache_req/cache_req_search.c \ ../../../src/responder/common/cache_req/cache_req_data.c \ ../../../src/responder/common/cache_req/plugins/cache_req_common.c \ @@ -919,6 +961,14 @@ ../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c \ ../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c \ ../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c \ + ../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c \ + $(NULL) + +SSSD_RESPONDER_IFACE_OBJ = \ + ../../../src/responder/common/iface/responder_iface.c \ + ../../../src/responder/common/iface/responder_domain.c \ + ../../../src/responder/common/iface/responder_ncache.c \ + ../../../src/responder/common/iface/responder_iface_generated.c \ $(NULL) SSSD_RESPONDER_OBJ = \ @@ -927,6 +977,7 @@ ../../../src/responder/common/responder_cmd.c \ ../../../src/responder/common/responder_common.c \ ../../../src/responder/common/responder_dp.c \ + ../../../src/responder/common/responder_dp_ssh.c \ ../../../src/responder/common/responder_packet.c \ ../../../src/responder/common/responder_get_domains.c \ ../../../src/responder/common/responder_utils.c \ @@ -934,6 +985,7 @@ ../../../src/responder/common/data_provider/rdp_client.c \ ../../../src/monitor/monitor_iface_generated.c \ ../../../src/providers/data_provider_req.c \ + $(SSSD_RESPONDER_IFACE_OBJ) \ $(SSSD_CACHE_REQ_OBJ) \ $(NULL) @@ -990,6 +1042,10 @@ $(am__append_3) responder_common_tests_SOURCES = \ test_responder_common.c \ + ../../../src/responder/common/iface/responder_iface.c \ + ../../../src/responder/common/iface/responder_domain.c \ + ../../../src/responder/common/iface/responder_ncache.c \ + ../../../src/responder/common/iface/responder_iface_generated.c \ ../../../src/responder/common/negcache_files.c \ ../../../src/responder/common/negcache.c \ ../../../src/responder/common/data_provider/rdp_message.c \ @@ -997,6 +1053,8 @@ ../../../src/responder/common/responder_common.c \ ../../../src/responder/common/responder_packet.c \ ../../../src/responder/common/responder_cmd.c \ + ../../../src/tests/cmocka/common_mock_resp_dp.c \ + $(SSSD_CACHE_REQ_OBJ) \ $(NULL) responder_common_tests_CFLAGS = \ @@ -1100,6 +1158,9 @@ ../../../src/responder/common/negcache_tests-responder_dp.$(OBJEXT): \ ../../../src/responder/common/$(am__dirstamp) \ ../../../src/responder/common/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/negcache_tests-responder_dp_ssh.$(OBJEXT): \ + ../../../src/responder/common/$(am__dirstamp) \ + ../../../src/responder/common/$(DEPDIR)/$(am__dirstamp) ../../../src/responder/common/negcache_tests-responder_packet.$(OBJEXT): \ ../../../src/responder/common/$(am__dirstamp) \ ../../../src/responder/common/$(DEPDIR)/$(am__dirstamp) @@ -1139,6 +1200,24 @@ ../../../src/providers/negcache_tests-data_provider_req.$(OBJEXT): \ ../../../src/providers/$(am__dirstamp) \ ../../../src/providers/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/iface/$(am__dirstamp): + @$(MKDIR_P) ../../../src/responder/common/iface + @: > ../../../src/responder/common/iface/$(am__dirstamp) +../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp): + @$(MKDIR_P) ../../../src/responder/common/iface/$(DEPDIR) + @: > ../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/iface/negcache_tests-responder_iface.$(OBJEXT): \ + ../../../src/responder/common/iface/$(am__dirstamp) \ + ../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/iface/negcache_tests-responder_domain.$(OBJEXT): \ + ../../../src/responder/common/iface/$(am__dirstamp) \ + ../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/iface/negcache_tests-responder_ncache.$(OBJEXT): \ + ../../../src/responder/common/iface/$(am__dirstamp) \ + ../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/iface/negcache_tests-responder_iface_generated.$(OBJEXT): \ + ../../../src/responder/common/iface/$(am__dirstamp) \ + ../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) ../../../src/responder/common/cache_req/$(am__dirstamp): @$(MKDIR_P) ../../../src/responder/common/cache_req @: > ../../../src/responder/common/cache_req/$(am__dirstamp) @@ -1148,6 +1227,9 @@ ../../../src/responder/common/cache_req/negcache_tests-cache_req.$(OBJEXT): \ ../../../src/responder/common/cache_req/$(am__dirstamp) \ ../../../src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/negcache_tests-cache_req_result.$(OBJEXT): \ + ../../../src/responder/common/cache_req/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) ../../../src/responder/common/cache_req/negcache_tests-cache_req_search.$(OBJEXT): \ ../../../src/responder/common/cache_req/$(am__dirstamp) \ ../../../src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) @@ -1200,10 +1282,24 @@ ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_netgroup_by_name.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) negcache-tests$(EXEEXT): $(negcache_tests_OBJECTS) $(negcache_tests_DEPENDENCIES) $(EXTRA_negcache_tests_DEPENDENCIES) @rm -f negcache-tests$(EXEEXT) $(AM_V_CCLD)$(negcache_tests_LINK) $(negcache_tests_OBJECTS) $(negcache_tests_LDADD) $(LIBS) +../../../src/responder/common/iface/responder_common_tests-responder_iface.$(OBJEXT): \ + ../../../src/responder/common/iface/$(am__dirstamp) \ + ../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/iface/responder_common_tests-responder_domain.$(OBJEXT): \ + ../../../src/responder/common/iface/$(am__dirstamp) \ + ../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/iface/responder_common_tests-responder_ncache.$(OBJEXT): \ + ../../../src/responder/common/iface/$(am__dirstamp) \ + ../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.$(OBJEXT): \ + ../../../src/responder/common/iface/$(am__dirstamp) \ + ../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) ../../../src/responder/common/responder_common_tests-negcache_files.$(OBJEXT): \ ../../../src/responder/common/$(am__dirstamp) \ ../../../src/responder/common/$(DEPDIR)/$(am__dirstamp) @@ -1225,6 +1321,69 @@ ../../../src/responder/common/responder_common_tests-responder_cmd.$(OBJEXT): \ ../../../src/responder/common/$(am__dirstamp) \ ../../../src/responder/common/$(DEPDIR)/$(am__dirstamp) +../../../src/tests/cmocka/$(am__dirstamp): + @$(MKDIR_P) ../../../src/tests/cmocka + @: > ../../../src/tests/cmocka/$(am__dirstamp) +../../../src/tests/cmocka/$(DEPDIR)/$(am__dirstamp): + @$(MKDIR_P) ../../../src/tests/cmocka/$(DEPDIR) + @: > ../../../src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) +../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.$(OBJEXT): \ + ../../../src/tests/cmocka/$(am__dirstamp) \ + ../../../src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/responder_common_tests-cache_req.$(OBJEXT): \ + ../../../src/responder/common/cache_req/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.$(OBJEXT): \ + ../../../src/responder/common/cache_req/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.$(OBJEXT): \ + ../../../src/responder/common/cache_req/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.$(OBJEXT): \ + ../../../src/responder/common/cache_req/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.$(OBJEXT): ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) \ + ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/$(am__dirstamp) responder_common-tests$(EXEEXT): $(responder_common_tests_OBJECTS) $(responder_common_tests_DEPENDENCIES) $(EXTRA_responder_common_tests_DEPENDENCIES) @rm -f responder_common-tests$(EXEEXT) @@ -1255,6 +1414,8 @@ -rm -f ../../../src/responder/common/cache_req/*.$(OBJEXT) -rm -f ../../../src/responder/common/cache_req/plugins/*.$(OBJEXT) -rm -f ../../../src/responder/common/data_provider/*.$(OBJEXT) + -rm -f ../../../src/responder/common/iface/*.$(OBJEXT) + -rm -f ../../../src/tests/cmocka/*.$(OBJEXT) -rm -f ../../../src/util/*.$(OBJEXT) distclean-compile: @@ -1267,6 +1428,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_cmd.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_common.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_dp.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_dp_ssh.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_get_domains.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_packet.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_utils.Po@am__quote@ @@ -1277,7 +1439,12 @@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/$(DEPDIR)/responder_common_tests-responder_packet.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_result.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_search.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_data.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_result.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_search.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_common.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_enum_groups.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_enum_svc.Po@am__quote@ @@ -1285,6 +1452,7 @@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_group_by_filter.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_group_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_host_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_initgroups_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_initgroups_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_netgroup_by_name.Po@am__quote@ @@ -1298,10 +1466,40 @@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_user_by_id.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_user_by_name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_user_by_upn.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_common.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_groups.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_svc.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_users.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_filter.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_id.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_host_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_upn.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_netgroup_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_id.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_sid.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_port.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_cert.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_filter.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_id.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_name.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_upn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/data_provider/$(DEPDIR)/negcache_tests-rdp_client.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/data_provider/$(DEPDIR)/negcache_tests-rdp_message.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/data_provider/$(DEPDIR)/responder_common_tests-rdp_client.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/data_provider/$(DEPDIR)/responder_common_tests-rdp_message.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_domain.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface_generated.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_ncache.Po@am__quote@ +@AMDEP_TRUE@@am__include@ @am__quote@../../../src/tests/cmocka/$(DEPDIR)/responder_common_tests-common_mock_resp_dp.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../../src/util/$(DEPDIR)/server_tests-server.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/become_user_tests-test_become_user.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/negcache_tests-test_negcache.Po@am__quote@ @@ -1417,6 +1615,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/negcache_tests-responder_dp.obj `if test -f '../../../src/responder/common/responder_dp.c'; then $(CYGPATH_W) '../../../src/responder/common/responder_dp.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/responder_dp.c'; fi` +../../../src/responder/common/negcache_tests-responder_dp_ssh.o: ../../../src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/negcache_tests-responder_dp_ssh.o -MD -MP -MF ../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_dp_ssh.Tpo -c -o ../../../src/responder/common/negcache_tests-responder_dp_ssh.o `test -f '../../../src/responder/common/responder_dp_ssh.c' || echo '$(srcdir)/'`../../../src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_dp_ssh.Tpo ../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_dp_ssh.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/responder_dp_ssh.c' object='../../../src/responder/common/negcache_tests-responder_dp_ssh.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/negcache_tests-responder_dp_ssh.o `test -f '../../../src/responder/common/responder_dp_ssh.c' || echo '$(srcdir)/'`../../../src/responder/common/responder_dp_ssh.c + +../../../src/responder/common/negcache_tests-responder_dp_ssh.obj: ../../../src/responder/common/responder_dp_ssh.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/negcache_tests-responder_dp_ssh.obj -MD -MP -MF ../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_dp_ssh.Tpo -c -o ../../../src/responder/common/negcache_tests-responder_dp_ssh.obj `if test -f '../../../src/responder/common/responder_dp_ssh.c'; then $(CYGPATH_W) '../../../src/responder/common/responder_dp_ssh.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/responder_dp_ssh.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_dp_ssh.Tpo ../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_dp_ssh.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/responder_dp_ssh.c' object='../../../src/responder/common/negcache_tests-responder_dp_ssh.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/negcache_tests-responder_dp_ssh.obj `if test -f '../../../src/responder/common/responder_dp_ssh.c'; then $(CYGPATH_W) '../../../src/responder/common/responder_dp_ssh.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/responder_dp_ssh.c'; fi` + ../../../src/responder/common/negcache_tests-responder_packet.o: ../../../src/responder/common/responder_packet.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/negcache_tests-responder_packet.o -MD -MP -MF ../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_packet.Tpo -c -o ../../../src/responder/common/negcache_tests-responder_packet.o `test -f '../../../src/responder/common/responder_packet.c' || echo '$(srcdir)/'`../../../src/responder/common/responder_packet.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_packet.Tpo ../../../src/responder/common/$(DEPDIR)/negcache_tests-responder_packet.Po @@ -1515,6 +1727,62 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/providers/negcache_tests-data_provider_req.obj `if test -f '../../../src/providers/data_provider_req.c'; then $(CYGPATH_W) '../../../src/providers/data_provider_req.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/providers/data_provider_req.c'; fi` +../../../src/responder/common/iface/negcache_tests-responder_iface.o: ../../../src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/negcache_tests-responder_iface.o -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface.Tpo -c -o ../../../src/responder/common/iface/negcache_tests-responder_iface.o `test -f '../../../src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface.Tpo ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_iface.c' object='../../../src/responder/common/iface/negcache_tests-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/negcache_tests-responder_iface.o `test -f '../../../src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_iface.c + +../../../src/responder/common/iface/negcache_tests-responder_iface.obj: ../../../src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/negcache_tests-responder_iface.obj -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface.Tpo -c -o ../../../src/responder/common/iface/negcache_tests-responder_iface.obj `if test -f '../../../src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface.Tpo ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_iface.c' object='../../../src/responder/common/iface/negcache_tests-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/negcache_tests-responder_iface.obj `if test -f '../../../src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_iface.c'; fi` + +../../../src/responder/common/iface/negcache_tests-responder_domain.o: ../../../src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/negcache_tests-responder_domain.o -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_domain.Tpo -c -o ../../../src/responder/common/iface/negcache_tests-responder_domain.o `test -f '../../../src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_domain.Tpo ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_domain.c' object='../../../src/responder/common/iface/negcache_tests-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/negcache_tests-responder_domain.o `test -f '../../../src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_domain.c + +../../../src/responder/common/iface/negcache_tests-responder_domain.obj: ../../../src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/negcache_tests-responder_domain.obj -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_domain.Tpo -c -o ../../../src/responder/common/iface/negcache_tests-responder_domain.obj `if test -f '../../../src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_domain.Tpo ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_domain.c' object='../../../src/responder/common/iface/negcache_tests-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/negcache_tests-responder_domain.obj `if test -f '../../../src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_domain.c'; fi` + +../../../src/responder/common/iface/negcache_tests-responder_ncache.o: ../../../src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/negcache_tests-responder_ncache.o -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_ncache.Tpo -c -o ../../../src/responder/common/iface/negcache_tests-responder_ncache.o `test -f '../../../src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_ncache.Tpo ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_ncache.c' object='../../../src/responder/common/iface/negcache_tests-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/negcache_tests-responder_ncache.o `test -f '../../../src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_ncache.c + +../../../src/responder/common/iface/negcache_tests-responder_ncache.obj: ../../../src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/negcache_tests-responder_ncache.obj -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_ncache.Tpo -c -o ../../../src/responder/common/iface/negcache_tests-responder_ncache.obj `if test -f '../../../src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_ncache.Tpo ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_ncache.c' object='../../../src/responder/common/iface/negcache_tests-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/negcache_tests-responder_ncache.obj `if test -f '../../../src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_ncache.c'; fi` + +../../../src/responder/common/iface/negcache_tests-responder_iface_generated.o: ../../../src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/negcache_tests-responder_iface_generated.o -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface_generated.Tpo -c -o ../../../src/responder/common/iface/negcache_tests-responder_iface_generated.o `test -f '../../../src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface_generated.Tpo ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_iface_generated.c' object='../../../src/responder/common/iface/negcache_tests-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/negcache_tests-responder_iface_generated.o `test -f '../../../src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_iface_generated.c + +../../../src/responder/common/iface/negcache_tests-responder_iface_generated.obj: ../../../src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/negcache_tests-responder_iface_generated.obj -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface_generated.Tpo -c -o ../../../src/responder/common/iface/negcache_tests-responder_iface_generated.obj `if test -f '../../../src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface_generated.Tpo ../../../src/responder/common/iface/$(DEPDIR)/negcache_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_iface_generated.c' object='../../../src/responder/common/iface/negcache_tests-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/negcache_tests-responder_iface_generated.obj `if test -f '../../../src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_iface_generated.c'; fi` + ../../../src/responder/common/cache_req/negcache_tests-cache_req.o: ../../../src/responder/common/cache_req/cache_req.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/negcache_tests-cache_req.o -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req.Tpo -c -o ../../../src/responder/common/cache_req/negcache_tests-cache_req.o `test -f '../../../src/responder/common/cache_req/cache_req.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req.Po @@ -1529,6 +1797,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/negcache_tests-cache_req.obj `if test -f '../../../src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req.c'; fi` +../../../src/responder/common/cache_req/negcache_tests-cache_req_result.o: ../../../src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/negcache_tests-cache_req_result.o -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_result.Tpo -c -o ../../../src/responder/common/cache_req/negcache_tests-cache_req_result.o `test -f '../../../src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_result.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/cache_req_result.c' object='../../../src/responder/common/cache_req/negcache_tests-cache_req_result.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/negcache_tests-cache_req_result.o `test -f '../../../src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req_result.c + +../../../src/responder/common/cache_req/negcache_tests-cache_req_result.obj: ../../../src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/negcache_tests-cache_req_result.obj -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_result.Tpo -c -o ../../../src/responder/common/cache_req/negcache_tests-cache_req_result.obj `if test -f '../../../src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req_result.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_result.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/cache_req_result.c' object='../../../src/responder/common/cache_req/negcache_tests-cache_req_result.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/negcache_tests-cache_req_result.obj `if test -f '../../../src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req_result.c'; fi` + ../../../src/responder/common/cache_req/negcache_tests-cache_req_search.o: ../../../src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/negcache_tests-cache_req_search.o -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_search.Tpo -c -o ../../../src/responder/common/cache_req/negcache_tests-cache_req_search.o `test -f '../../../src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req_search.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_search.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/negcache_tests-cache_req_search.Po @@ -1837,6 +2119,20 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_netgroup_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` +../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.o: ../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_host_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_host_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c + +../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.obj: ../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_host_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_host_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/negcache_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/negcache_tests-cache_req_host_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` + negcache_tests-test_negcache.o: test_negcache.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(negcache_tests_CFLAGS) $(CFLAGS) -MT negcache_tests-test_negcache.o -MD -MP -MF $(DEPDIR)/negcache_tests-test_negcache.Tpo -c -o negcache_tests-test_negcache.o `test -f 'test_negcache.c' || echo '$(srcdir)/'`test_negcache.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/negcache_tests-test_negcache.Tpo $(DEPDIR)/negcache_tests-test_negcache.Po @@ -1865,6 +2161,62 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o responder_common_tests-test_responder_common.obj `if test -f 'test_responder_common.c'; then $(CYGPATH_W) 'test_responder_common.c'; else $(CYGPATH_W) '$(srcdir)/test_responder_common.c'; fi` +../../../src/responder/common/iface/responder_common_tests-responder_iface.o: ../../../src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/responder_common_tests-responder_iface.o -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface.Tpo -c -o ../../../src/responder/common/iface/responder_common_tests-responder_iface.o `test -f '../../../src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface.Tpo ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_iface.c' object='../../../src/responder/common/iface/responder_common_tests-responder_iface.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/responder_common_tests-responder_iface.o `test -f '../../../src/responder/common/iface/responder_iface.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_iface.c + +../../../src/responder/common/iface/responder_common_tests-responder_iface.obj: ../../../src/responder/common/iface/responder_iface.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/responder_common_tests-responder_iface.obj -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface.Tpo -c -o ../../../src/responder/common/iface/responder_common_tests-responder_iface.obj `if test -f '../../../src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_iface.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface.Tpo ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_iface.c' object='../../../src/responder/common/iface/responder_common_tests-responder_iface.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/responder_common_tests-responder_iface.obj `if test -f '../../../src/responder/common/iface/responder_iface.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_iface.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_iface.c'; fi` + +../../../src/responder/common/iface/responder_common_tests-responder_domain.o: ../../../src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/responder_common_tests-responder_domain.o -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_domain.Tpo -c -o ../../../src/responder/common/iface/responder_common_tests-responder_domain.o `test -f '../../../src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_domain.Tpo ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_domain.c' object='../../../src/responder/common/iface/responder_common_tests-responder_domain.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/responder_common_tests-responder_domain.o `test -f '../../../src/responder/common/iface/responder_domain.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_domain.c + +../../../src/responder/common/iface/responder_common_tests-responder_domain.obj: ../../../src/responder/common/iface/responder_domain.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/responder_common_tests-responder_domain.obj -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_domain.Tpo -c -o ../../../src/responder/common/iface/responder_common_tests-responder_domain.obj `if test -f '../../../src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_domain.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_domain.Tpo ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_domain.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_domain.c' object='../../../src/responder/common/iface/responder_common_tests-responder_domain.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/responder_common_tests-responder_domain.obj `if test -f '../../../src/responder/common/iface/responder_domain.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_domain.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_domain.c'; fi` + +../../../src/responder/common/iface/responder_common_tests-responder_ncache.o: ../../../src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/responder_common_tests-responder_ncache.o -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_ncache.Tpo -c -o ../../../src/responder/common/iface/responder_common_tests-responder_ncache.o `test -f '../../../src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_ncache.Tpo ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_ncache.c' object='../../../src/responder/common/iface/responder_common_tests-responder_ncache.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/responder_common_tests-responder_ncache.o `test -f '../../../src/responder/common/iface/responder_ncache.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_ncache.c + +../../../src/responder/common/iface/responder_common_tests-responder_ncache.obj: ../../../src/responder/common/iface/responder_ncache.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/responder_common_tests-responder_ncache.obj -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_ncache.Tpo -c -o ../../../src/responder/common/iface/responder_common_tests-responder_ncache.obj `if test -f '../../../src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_ncache.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_ncache.Tpo ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_ncache.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_ncache.c' object='../../../src/responder/common/iface/responder_common_tests-responder_ncache.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/responder_common_tests-responder_ncache.obj `if test -f '../../../src/responder/common/iface/responder_ncache.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_ncache.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_ncache.c'; fi` + +../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.o: ../../../src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.o -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface_generated.Tpo -c -o ../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.o `test -f '../../../src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface_generated.Tpo ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_iface_generated.c' object='../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.o `test -f '../../../src/responder/common/iface/responder_iface_generated.c' || echo '$(srcdir)/'`../../../src/responder/common/iface/responder_iface_generated.c + +../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.obj: ../../../src/responder/common/iface/responder_iface_generated.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.obj -MD -MP -MF ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface_generated.Tpo -c -o ../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.obj `if test -f '../../../src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_iface_generated.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface_generated.Tpo ../../../src/responder/common/iface/$(DEPDIR)/responder_common_tests-responder_iface_generated.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/iface/responder_iface_generated.c' object='../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/iface/responder_common_tests-responder_iface_generated.obj `if test -f '../../../src/responder/common/iface/responder_iface_generated.c'; then $(CYGPATH_W) '../../../src/responder/common/iface/responder_iface_generated.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/iface/responder_iface_generated.c'; fi` + ../../../src/responder/common/responder_common_tests-negcache_files.o: ../../../src/responder/common/negcache_files.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/responder_common_tests-negcache_files.o -MD -MP -MF ../../../src/responder/common/$(DEPDIR)/responder_common_tests-negcache_files.Tpo -c -o ../../../src/responder/common/responder_common_tests-negcache_files.o `test -f '../../../src/responder/common/negcache_files.c' || echo '$(srcdir)/'`../../../src/responder/common/negcache_files.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/$(DEPDIR)/responder_common_tests-negcache_files.Tpo ../../../src/responder/common/$(DEPDIR)/responder_common_tests-negcache_files.Po @@ -1963,6 +2315,370 @@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/responder_common_tests-responder_cmd.obj `if test -f '../../../src/responder/common/responder_cmd.c'; then $(CYGPATH_W) '../../../src/responder/common/responder_cmd.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/responder_cmd.c'; fi` +../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.o: ../../../src/tests/cmocka/common_mock_resp_dp.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.o -MD -MP -MF ../../../src/tests/cmocka/$(DEPDIR)/responder_common_tests-common_mock_resp_dp.Tpo -c -o ../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.o `test -f '../../../src/tests/cmocka/common_mock_resp_dp.c' || echo '$(srcdir)/'`../../../src/tests/cmocka/common_mock_resp_dp.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/tests/cmocka/$(DEPDIR)/responder_common_tests-common_mock_resp_dp.Tpo ../../../src/tests/cmocka/$(DEPDIR)/responder_common_tests-common_mock_resp_dp.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/tests/cmocka/common_mock_resp_dp.c' object='../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.o `test -f '../../../src/tests/cmocka/common_mock_resp_dp.c' || echo '$(srcdir)/'`../../../src/tests/cmocka/common_mock_resp_dp.c + +../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.obj: ../../../src/tests/cmocka/common_mock_resp_dp.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.obj -MD -MP -MF ../../../src/tests/cmocka/$(DEPDIR)/responder_common_tests-common_mock_resp_dp.Tpo -c -o ../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.obj `if test -f '../../../src/tests/cmocka/common_mock_resp_dp.c'; then $(CYGPATH_W) '../../../src/tests/cmocka/common_mock_resp_dp.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/tests/cmocka/common_mock_resp_dp.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/tests/cmocka/$(DEPDIR)/responder_common_tests-common_mock_resp_dp.Tpo ../../../src/tests/cmocka/$(DEPDIR)/responder_common_tests-common_mock_resp_dp.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/tests/cmocka/common_mock_resp_dp.c' object='../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/tests/cmocka/responder_common_tests-common_mock_resp_dp.obj `if test -f '../../../src/tests/cmocka/common_mock_resp_dp.c'; then $(CYGPATH_W) '../../../src/tests/cmocka/common_mock_resp_dp.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/tests/cmocka/common_mock_resp_dp.c'; fi` + +../../../src/responder/common/cache_req/responder_common_tests-cache_req.o: ../../../src/responder/common/cache_req/cache_req.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/responder_common_tests-cache_req.o -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req.Tpo -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req.o `test -f '../../../src/responder/common/cache_req/cache_req.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/cache_req.c' object='../../../src/responder/common/cache_req/responder_common_tests-cache_req.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req.o `test -f '../../../src/responder/common/cache_req/cache_req.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req.c + +../../../src/responder/common/cache_req/responder_common_tests-cache_req.obj: ../../../src/responder/common/cache_req/cache_req.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/responder_common_tests-cache_req.obj -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req.Tpo -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req.obj `if test -f '../../../src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/cache_req.c' object='../../../src/responder/common/cache_req/responder_common_tests-cache_req.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req.obj `if test -f '../../../src/responder/common/cache_req/cache_req.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req.c'; fi` + +../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.o: ../../../src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.o -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_result.Tpo -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.o `test -f '../../../src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_result.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/cache_req_result.c' object='../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.o `test -f '../../../src/responder/common/cache_req/cache_req_result.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req_result.c + +../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.obj: ../../../src/responder/common/cache_req/cache_req_result.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.obj -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_result.Tpo -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.obj `if test -f '../../../src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req_result.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_result.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_result.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/cache_req_result.c' object='../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_result.obj `if test -f '../../../src/responder/common/cache_req/cache_req_result.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req_result.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req_result.c'; fi` + +../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.o: ../../../src/responder/common/cache_req/cache_req_search.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.o -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_search.Tpo -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.o `test -f '../../../src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req_search.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_search.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_search.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/cache_req_search.c' object='../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.o `test -f '../../../src/responder/common/cache_req/cache_req_search.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req_search.c + +../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.obj: ../../../src/responder/common/cache_req/cache_req_search.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.obj -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_search.Tpo -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.obj `if test -f '../../../src/responder/common/cache_req/cache_req_search.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req_search.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req_search.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_search.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_search.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/cache_req_search.c' object='../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_search.obj `if test -f '../../../src/responder/common/cache_req/cache_req_search.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req_search.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req_search.c'; fi` + +../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.o: ../../../src/responder/common/cache_req/cache_req_data.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.o -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_data.Tpo -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.o `test -f '../../../src/responder/common/cache_req/cache_req_data.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req_data.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_data.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_data.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/cache_req_data.c' object='../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.o `test -f '../../../src/responder/common/cache_req/cache_req_data.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/cache_req_data.c + +../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.obj: ../../../src/responder/common/cache_req/cache_req_data.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.obj -MD -MP -MF ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_data.Tpo -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.obj `if test -f '../../../src/responder/common/cache_req/cache_req_data.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req_data.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req_data.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_data.Tpo ../../../src/responder/common/cache_req/$(DEPDIR)/responder_common_tests-cache_req_data.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/cache_req_data.c' object='../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/responder_common_tests-cache_req_data.obj `if test -f '../../../src/responder/common/cache_req/cache_req_data.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/cache_req_data.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/cache_req_data.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.o: ../../../src/responder/common/cache_req/plugins/cache_req_common.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_common.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_common.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_common.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_common.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_common.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_common.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_common.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_common.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.obj: ../../../src/responder/common/cache_req/plugins/cache_req_common.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_common.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_common.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_common.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_common.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_common.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_common.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_common.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_common.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_common.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_common.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_common.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.o: ../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_users.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_users.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_users.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.obj: ../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_users.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_users.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_users.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_users.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_enum_users.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.o: ../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_groups.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_groups.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_groups.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.obj: ../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_groups.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_groups.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_groups.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_groups.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_enum_groups.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.o: ../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_svc.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_svc.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_svc.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.obj: ../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_svc.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_svc.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_enum_svc.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_enum_svc.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_enum_svc.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.o: ../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.obj: ../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_user_by_name.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.o: ../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_upn.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_upn.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_upn.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.obj: ../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_upn.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_upn.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_upn.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_upn.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_user_by_upn.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.o: ../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_id.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_id.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_id.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.obj: ../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_id.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_id.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_id.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_id.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_user_by_id.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.o: ../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_filter.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_filter.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_filter.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.obj: ../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_filter.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_filter.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_filter.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_filter.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_user_by_filter.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.o: ../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_cert.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_cert.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_cert.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.obj: ../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_cert.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_cert.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_user_by_cert.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_user_by_cert.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_user_by_cert.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.o: ../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.obj: ../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_group_by_name.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.o: ../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_id.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_id.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_id.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.obj: ../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_id.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_id.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_id.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_id.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_group_by_id.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.o: ../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_filter.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_filter.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_filter.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.obj: ../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_filter.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_filter.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_group_by_filter.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_group_by_filter.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_group_by_filter.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.o: ../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.obj: ../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_name.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.o: ../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_upn.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_upn.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_upn.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.obj: ../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_upn.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_upn.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_initgroups_by_upn.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_initgroups_by_upn.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_initgroups_by_upn.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.o: ../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_sid.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_sid.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_sid.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.obj: ../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_sid.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_sid.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_sid.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_sid.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_object_by_sid.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.o: ../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.obj: ../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_object_by_name.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.o: ../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_id.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_id.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_id.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.obj: ../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_id.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_id.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_object_by_id.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_object_by_id.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_object_by_id.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.o: ../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.obj: ../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_svc_by_name.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.o: ../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_port.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_port.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_port.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.obj: ../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_port.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_port.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_svc_by_port.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_svc_by_port.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_svc_by_port.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.o: ../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_netgroup_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_netgroup_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_netgroup_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.obj: ../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_netgroup_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_netgroup_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_netgroup_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_netgroup_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_netgroup_by_name.c'; fi` + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.o: ../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.o -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_host_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_host_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.o' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.o `test -f '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c' || echo '$(srcdir)/'`../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c + +../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.obj: ../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c +@am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -MT ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.obj -MD -MP -MF ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_host_by_name.Tpo -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_host_by_name.Tpo ../../../src/responder/common/cache_req/plugins/$(DEPDIR)/responder_common_tests-cache_req_host_by_name.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c' object='../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.obj' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(responder_common_tests_CFLAGS) $(CFLAGS) -c -o ../../../src/responder/common/cache_req/plugins/responder_common_tests-cache_req_host_by_name.obj `if test -f '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; then $(CYGPATH_W) '../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; else $(CYGPATH_W) '$(srcdir)/../../../src/responder/common/cache_req/plugins/cache_req_host_by_name.c'; fi` + server_tests-test_server.o: test_server.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(server_tests_CFLAGS) $(CFLAGS) -MT server_tests-test_server.o -MD -MP -MF $(DEPDIR)/server_tests-test_server.Tpo -c -o server_tests-test_server.o `test -f 'test_server.c' || echo '$(srcdir)/'`test_server.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/server_tests-test_server.Tpo $(DEPDIR)/server_tests-test_server.Po @@ -2331,6 +3047,10 @@ -rm -f ../../../src/responder/common/cache_req/plugins/$(am__dirstamp) -rm -f ../../../src/responder/common/data_provider/$(DEPDIR)/$(am__dirstamp) -rm -f ../../../src/responder/common/data_provider/$(am__dirstamp) + -rm -f ../../../src/responder/common/iface/$(DEPDIR)/$(am__dirstamp) + -rm -f ../../../src/responder/common/iface/$(am__dirstamp) + -rm -f ../../../src/tests/cmocka/$(DEPDIR)/$(am__dirstamp) + -rm -f ../../../src/tests/cmocka/$(am__dirstamp) -rm -f ../../../src/util/$(DEPDIR)/$(am__dirstamp) -rm -f ../../../src/util/$(am__dirstamp) @@ -2343,7 +3063,7 @@ mostlyclean-am distclean: distclean-am - -rm -rf ../../../src/monitor/$(DEPDIR) ../../../src/providers/$(DEPDIR) ../../../src/responder/common/$(DEPDIR) ../../../src/responder/common/cache_req/$(DEPDIR) ../../../src/responder/common/cache_req/plugins/$(DEPDIR) ../../../src/responder/common/data_provider/$(DEPDIR) ../../../src/util/$(DEPDIR) ./$(DEPDIR) + -rm -rf ../../../src/monitor/$(DEPDIR) ../../../src/providers/$(DEPDIR) ../../../src/responder/common/$(DEPDIR) ../../../src/responder/common/cache_req/$(DEPDIR) ../../../src/responder/common/cache_req/plugins/$(DEPDIR) ../../../src/responder/common/data_provider/$(DEPDIR) ../../../src/responder/common/iface/$(DEPDIR) ../../../src/tests/cmocka/$(DEPDIR) ../../../src/util/$(DEPDIR) ./$(DEPDIR) -rm -f Makefile distclean-am: clean-am distclean-compile distclean-generic \ distclean-tags @@ -2389,7 +3109,7 @@ installcheck-am: maintainer-clean: maintainer-clean-am - -rm -rf ../../../src/monitor/$(DEPDIR) ../../../src/providers/$(DEPDIR) ../../../src/responder/common/$(DEPDIR) ../../../src/responder/common/cache_req/$(DEPDIR) ../../../src/responder/common/cache_req/plugins/$(DEPDIR) ../../../src/responder/common/data_provider/$(DEPDIR) ../../../src/util/$(DEPDIR) ./$(DEPDIR) + -rm -rf ../../../src/monitor/$(DEPDIR) ../../../src/providers/$(DEPDIR) ../../../src/responder/common/$(DEPDIR) ../../../src/responder/common/cache_req/$(DEPDIR) ../../../src/responder/common/cache_req/plugins/$(DEPDIR) ../../../src/responder/common/data_provider/$(DEPDIR) ../../../src/responder/common/iface/$(DEPDIR) ../../../src/tests/cmocka/$(DEPDIR) ../../../src/util/$(DEPDIR) ./$(DEPDIR) -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic diff -Nru sssd-1.15.0/src/tests/dlopen-tests.c sssd-1.15.2/src/tests/dlopen-tests.c --- sssd-1.15.0/src/tests/dlopen-tests.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/dlopen-tests.c 2017-03-15 16:53:24.000000000 +0000 @@ -80,6 +80,8 @@ { "libsss_util.so", { LIBPFX"libsss_util.so", NULL } }, { "libsss_simple.so", { LIBPFX"libdlopen_test_providers.so", LIBPFX"libsss_simple.so", NULL } }, + { "libsss_files.so", { LIBPFX"libdlopen_test_providers.so", + LIBPFX"libsss_files.so", NULL } }, #ifdef BUILD_SAMBA { "libsss_ad.so", { LIBPFX"libdlopen_test_providers.so", LIBPFX"libsss_ad.so", NULL } }, diff -Nru sssd-1.15.0/src/tests/intg/config.py.m4 sssd-1.15.2/src/tests/intg/config.py.m4 --- sssd-1.15.0/src/tests/intg/config.py.m4 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/config.py.m4 2017-03-15 16:53:24.000000000 +0000 @@ -15,3 +15,4 @@ SECDB_PATH = "secdbpath" LIBEXEC_PATH = "libexecpath" RUNSTATEDIR = "runstatedir" +ABS_BUILDDIR = "abs_builddir" diff -Nru sssd-1.15.0/src/tests/intg/ent_test.py sssd-1.15.2/src/tests/intg/ent_test.py --- sssd-1.15.0/src/tests/intg/ent_test.py 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/ent_test.py 2017-03-15 16:53:24.000000000 +0000 @@ -19,25 +19,11 @@ import re import os import io -import shutil import pytest import ent from util import * -def backup_envvar_file(name): - path = os.environ[name] - backup_path = path + ".bak" - shutil.copyfile(path, backup_path) - return path - - -def restore_envvar_file(name): - path = os.environ[name] - backup_path = path + ".bak" - os.rename(backup_path, path) - - @pytest.fixture(scope="module") def passwd_path(request): name = "NSS_WRAPPER_PASSWD" diff -Nru sssd-1.15.0/src/tests/intg/files_ops.py sssd-1.15.2/src/tests/intg/files_ops.py --- sssd-1.15.0/src/tests/intg/files_ops.py 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/files_ops.py 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,159 @@ +# +# SSSD integration test - operations on UNIX user and group database +# +# Copyright (c) 2016 Red Hat, Inc. +# +# This is free software; you can redistribute it and/or modify it +# under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 only +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see . +# + +import os +import os.path +import tempfile +import pytest + +import ent +from util import backup_envvar_file, restore_envvar_file + + +@pytest.fixture +def passwd_ops_setup(request): + pwd_file = os.environ["NSS_WRAPPER_PASSWD"] + backup_envvar_file("NSS_WRAPPER_PASSWD") + request.addfinalizer(lambda: restore_envvar_file("NSS_WRAPPER_PASSWD")) + pwd_ops = PasswdOps(pwd_file) + return pwd_ops + + +@pytest.fixture +def group_ops_setup(request): + grp_file = os.environ["NSS_WRAPPER_GROUP"] + backup_envvar_file("NSS_WRAPPER_GROUP") + request.addfinalizer(lambda: restore_envvar_file("NSS_WRAPPER_GROUP")) + grp_ops = GroupOps(grp_file) + return grp_ops + + +@pytest.fixture +def group_db_setup(request): + group = request.param + grp_ops = group_ops_setup(request) + grp_ops.groupadd(**group) + ent.assert_group_by_name(group['name'], group) + return grp_ops + + +class FilesOps(object): + """ + A naive implementation of operations as a basis for user or group + operations. Uses rename to (hopefully) trigger the same fs-level + notifications as shadow-utils would. + """ + def __init__(self, file_name): + self.file_name = file_name + self.tmp_dir = os.path.dirname(self.file_name) + + @staticmethod + def _get_named_line(name, contents): + for num, line in enumerate(contents, 0): + pname = line.split(':')[0] + if name == pname: + return num + raise KeyError("%s not found" % name) + + def _read_contents(self): + with open(self.file_name, "r") as pfile: + contents = pfile.readlines() + return contents + + def _write_contents(self, contents): + tmp_file = tempfile.NamedTemporaryFile(mode='w', dir=self.tmp_dir, + delete=False) + tmp_file.writelines(contents) + tmp_file.flush() + + os.rename(tmp_file.name, self.file_name) + + def _append_line(self, new_line): + contents = self._read_contents() + contents.extend(new_line) + self._write_contents(contents) + + def _subst_line(self, key, line): + contents = self._read_contents() + kindex = self._get_named_line(key, contents) + contents[kindex] = line + self._write_contents(contents) + + def _del_line(self, key): + contents = self._read_contents() + kindex = self._get_named_line(key, contents) + contents.pop(kindex) + self._write_contents(contents) + + contents = self._read_contents() + + +class PasswdOps(FilesOps): + """ + A naive implementation of user operations + """ + def __init__(self, file_name): + super(PasswdOps, self).__init__(file_name) + + def _pwd2line(self, name, uid, gid, passwd, gecos, homedir, shell): + pwd_fmt = "{name}:{passwd}:{uid}:{gid}:{gecos}:{homedir}:{shell}\n" + return pwd_fmt.format(name=name, + passwd=passwd, + uid=uid, + gid=gid, + gecos=gecos, + homedir=homedir, + shell=shell) + + def useradd(self, name, uid, gid, passwd='', gecos='', dir='', shell=''): + pwd_line = self._pwd2line(name, uid, gid, passwd, gecos, dir, shell) + self._append_line(pwd_line) + + def usermod(self, name, uid, gid, passwd='', gecos='', dir='', shell=''): + pwd_line = self._pwd2line(name, uid, gid, passwd, gecos, dir, shell) + self._subst_line(name, pwd_line) + + def userdel(self, name): + self._del_line(name) + + +class GroupOps(FilesOps): + """ + A naive implementation of group operations + """ + def __init__(self, file_name): + super(GroupOps, self).__init__(file_name) + + def _grp2line(self, name, gid, mem, passwd): + member_list = ",".join(m for m in mem) + grp_fmt = "{name}:{passwd}:{gid}:{member_list}\n" + return grp_fmt.format(name=name, + passwd=passwd, + gid=gid, + member_list=member_list) + + def groupadd(self, name, gid, mem, passwd="*"): + grp_line = self._grp2line(name, gid, mem, passwd) + self._append_line(grp_line) + + def groupmod(self, old_name, name, gid, mem, passwd="*"): + grp_line = self._grp2line(name, gid, mem, passwd) + self._subst_line(old_name, grp_line) + + def groupdel(self, name): + self._del_line(name) diff -Nru sssd-1.15.0/src/tests/intg/Makefile.am sssd-1.15.2/src/tests/intg/Makefile.am --- sssd-1.15.0/src/tests/intg/Makefile.am 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/Makefile.am 2017-03-15 16:53:24.000000000 +0000 @@ -1,8 +1,12 @@ dist_noinst_DATA = \ config.py.m4 \ + util.py \ + sssd_nss.py \ sssd_id.py \ sssd_ldb.py \ sssd_netgroup.py \ + sssd_passwd.py \ + sssd_group.py \ ds.py \ ds_openldap.py \ ent.py \ @@ -19,6 +23,9 @@ secrets.py \ test_secrets.py \ test_sssctl.py \ + files_ops.py \ + test_files_ops.py \ + test_files_provider.py \ $(NULL) config.py: config.py.m4 @@ -31,6 +38,7 @@ -D "secdbpath=\`$(secdbpath)'" \ -D "libexecpath=\`$(libexecdir)'" \ -D "runstatedir=\`$(runstatedir)'" \ + -D "abs_builddir=\`$(abs_builddir)'" \ $< > $@ root: diff -Nru sssd-1.15.0/src/tests/intg/Makefile.in sssd-1.15.2/src/tests/intg/Makefile.in --- sssd-1.15.0/src/tests/intg/Makefile.in 2017-01-25 15:42:56.489156776 +0000 +++ sssd-1.15.2/src/tests/intg/Makefile.in 2017-03-15 16:57:42.276686788 +0000 @@ -137,6 +137,7 @@ $(top_srcdir)/src/external/intgcheck.m4 \ $(top_srcdir)/src/external/systemtap.m4 \ $(top_srcdir)/src/external/service.m4 \ + $(top_srcdir)/src/external/libcurl.m4 \ $(top_srcdir)/src/external/libhttp_parser.m4 \ $(top_srcdir)/src/external/libjansson.m4 \ $(top_srcdir)/src/external/libunistring.m4 \ @@ -196,6 +197,8 @@ CPPFLAGS = @CPPFLAGS@ CRYPTO_CFLAGS = @CRYPTO_CFLAGS@ CRYPTO_LIBS = @CRYPTO_LIBS@ +CURL_CFLAGS = @CURL_CFLAGS@ +CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ @@ -481,9 +484,13 @@ winbindpluginpath = @winbindpluginpath@ dist_noinst_DATA = \ config.py.m4 \ + util.py \ + sssd_nss.py \ sssd_id.py \ sssd_ldb.py \ sssd_netgroup.py \ + sssd_passwd.py \ + sssd_group.py \ ds.py \ ds_openldap.py \ ent.py \ @@ -500,6 +507,9 @@ secrets.py \ test_secrets.py \ test_sssctl.py \ + files_ops.py \ + test_files_ops.py \ + test_files_provider.py \ $(NULL) CLEANFILES = config.py config.pyc passwd group @@ -706,6 +716,7 @@ -D "secdbpath=\`$(secdbpath)'" \ -D "libexecpath=\`$(libexecdir)'" \ -D "runstatedir=\`$(runstatedir)'" \ + -D "abs_builddir=\`$(abs_builddir)'" \ $< > $@ root: diff -Nru sssd-1.15.0/src/tests/intg/sssd_group.py sssd-1.15.2/src/tests/intg/sssd_group.py --- sssd-1.15.0/src/tests/intg/sssd_group.py 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/sssd_group.py 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,90 @@ +# +# Module for simulation of utility "getent group -s sss" from coreutils +# +# Copyright (c) 2016 Red Hat, Inc. +# +# This is free software; you can redistribute it and/or modify it +# under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 only +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see . +# + +from ctypes import (c_int, c_char_p, c_ulong, POINTER, Structure, + create_string_buffer) +from sssd_nss import NssReturnCode, SssdNssError, nss_sss_ctypes_loader + +GROUP_BUFLEN = 1024 + + +class Group(Structure): + _fields_ = [("gr_name", c_char_p), + ("gr_passwd", c_char_p), + ("gr_gid", c_int), + ("gr_mem", POINTER(c_char_p))] + + +def getgrnam_r(name, result_p, buffer_p, buflen): + """ + ctypes wrapper for: + enum nss_status _nss_sss_getgrnam_r(const char *name, + struct group *result, + char *buffer, + size_t buflen, + int *errnop) + """ + func = nss_sss_ctypes_loader("_nss_sss_getgrnam_r") + func.restype = c_int + func.argtypes = [c_char_p, POINTER(Group), + c_char_p, c_ulong, POINTER(c_int)] + + errno = POINTER(c_int)(c_int(0)) + + name = name.encode('utf-8') + res = func(c_char_p(name), result_p, buffer_p, buflen, errno) + + return (int(res), int(errno[0]), result_p) + + +def set_group_dict(res, result_p): + if res != NssReturnCode.SUCCESS: + return dict() + + group_dict = dict() + group_dict['name'] = result_p[0].gr_name.decode('utf-8') + group_dict['gid'] = result_p[0].gr_gid + group_dict['mem'] = list() + + i = 0 + while result_p[0].gr_mem[i] != None: + grp_name = result_p[0].gr_mem[i].decode('utf-8') + group_dict['mem'].append(grp_name) + i = i+1 + + return group_dict + + +def call_sssd_getgrnam(name): + """ + A Python wrapper to retrieve a group. Returns: + (res, group_dict) + if res is NssReturnCode.SUCCESS, then group_dict contains the keys + corresponding to the C passwd structure fields. Otherwise, the dictionary + is empty and errno indicates the error code + """ + result = Group() + result_p = POINTER(Group)(result) + buff = create_string_buffer(GROUP_BUFLEN) + + res, errno, result_p = getgrnam_r(name, result_p, buff, GROUP_BUFLEN) + if errno != 0: + raise SssdNssError(errno, "getgrnam_r") + + group_dict = set_group_dict(res, result_p) + return res, group_dict diff -Nru sssd-1.15.0/src/tests/intg/sssd_id.py sssd-1.15.2/src/tests/intg/sssd_id.py --- sssd-1.15.0/src/tests/intg/sssd_id.py 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/sssd_id.py 2017-03-15 16:53:24.000000000 +0000 @@ -21,15 +21,7 @@ import grp from ctypes import (cdll, c_int, c_char, c_uint32, c_long, c_char_p, POINTER, pointer) - - -class NssReturnCode(object): - """ 'enum' class for name service switch return code """ - TRYAGAIN = -2, - UNAVAIL = -1 - NOTFOUND = 0 - SUCCESS = 1 - RETURN = 2 +from sssd_nss import NssReturnCode, nss_sss_ctypes_loader def call_sssd_initgroups(user, gid): @@ -45,10 +37,8 @@ gids should contain user group IDs if err is NssReturnCode.SUCCESS otherwise errno will contain non-zero value. """ - libnss_sss_path = config.NSS_MODULE_DIR + "/libnss_sss.so.2" - libnss_sss = cdll.LoadLibrary(libnss_sss_path) + func = nss_sss_ctypes_loader('_nss_sss_initgroups_dyn') - func = libnss_sss._nss_sss_initgroups_dyn func.restype = c_int func.argtypes = [POINTER(c_char), c_uint32, POINTER(c_long), POINTER(c_long), POINTER(POINTER(c_uint32)), c_long, diff -Nru sssd-1.15.0/src/tests/intg/sssd_ldb.py sssd-1.15.2/src/tests/intg/sssd_ldb.py --- sssd-1.15.0/src/tests/intg/sssd_ldb.py 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/sssd_ldb.py 2017-03-15 16:53:24.000000000 +0000 @@ -19,6 +19,7 @@ import os import ldb import config +import subprocess class CacheType(object): @@ -83,3 +84,13 @@ return None return res.msgs[0].get(attr).get(0) + + def invalidate_entry(self, name, entry_type, domain): + dbconn = self._get_dbconn(CacheType.timestamps) + + m = ldb.Message() + m.dn = ldb.Dn(dbconn, self._basedn(name, domain, entry_type)) + m["dataExpireTimestamp"] = ldb.MessageElement(str(1), + ldb.FLAG_MOD_REPLACE, + "dataExpireTimestamp") + dbconn.modify(m) diff -Nru sssd-1.15.0/src/tests/intg/sssd_netgroup.py sssd-1.15.2/src/tests/intg/sssd_netgroup.py --- sssd-1.15.0/src/tests/intg/sssd_netgroup.py 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/sssd_netgroup.py 2017-03-15 16:53:24.000000000 +0000 @@ -19,6 +19,7 @@ from ctypes import (cdll, c_int, c_char, c_char_p, c_size_t, c_void_p, c_ulong, POINTER, Structure, Union, create_string_buffer, get_errno) import config +from sssd_nss import NssReturnCode, nss_sss_ctypes_loader class NetgroupType(object): @@ -50,15 +51,6 @@ ("name", POINTER(c_char))] -class NssReturnCode(object): - """ 'enum' class for name service switch return code """ - TRYAGAIN = -2, - UNAVAIL = -1 - NOTFOUND = 0 - SUCCESS = 1 - RETURN = 2 - - class Netgrent(Structure): _fields_ = [("type", c_int), ("val", Val), @@ -92,10 +84,7 @@ result_p will contain POINTER(Netgrent) which can be used in _getnetgrent_r or _getnetgrent_r. """ - libnss_sss_path = config.NSS_MODULE_DIR + "/libnss_sss.so.2" - libnss_sss = cdll.LoadLibrary(libnss_sss_path) - - func = libnss_sss._nss_sss_setnetgrent + func = nss_sss_ctypes_loader('_nss_sss_setnetgrent') func.restype = c_int func.argtypes = [c_char_p, POINTER(Netgrent)] @@ -123,10 +112,7 @@ if err is NssReturnCode.SUCCESS netgroups will contain list of touples. Each touple will consist of 3 elemets either string or """ - libnss_sss_path = config.NSS_MODULE_DIR + "/libnss_sss.so.2" - libnss_sss = cdll.LoadLibrary(libnss_sss_path) - - func = libnss_sss._nss_sss_getnetgrent_r + func = nss_sss_ctypes_loader('_nss_sss_getnetgrent_r') func.restype = c_int func.argtypes = [POINTER(Netgrent), POINTER(c_char), c_size_t, POINTER(c_int)] @@ -148,10 +134,7 @@ @return int a constant from class NssReturnCode """ - libnss_sss_path = config.NSS_MODULE_DIR + "/libnss_sss.so.2" - libnss_sss = cdll.LoadLibrary(libnss_sss_path) - - func = libnss_sss._nss_sss_endnetgrent + func = nss_sss_ctypes_loader('_nss_sss_endnetgrent') func.restype = c_int func.argtypes = [POINTER(Netgrent)] diff -Nru sssd-1.15.0/src/tests/intg/sssd_nss.py sssd-1.15.2/src/tests/intg/sssd_nss.py --- sssd-1.15.0/src/tests/intg/sssd_nss.py 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/sssd_nss.py 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,46 @@ +# +# Shared module for integration tests that need to access the sssd_nss +# module directly +# +# Copyright (c) 2016 Red Hat, Inc. +# +# This is free software; you can redistribute it and/or modify it +# under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 only +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see . +# +import config +import ctypes + + +class NssReturnCode(object): + """ 'enum' class for name service switch return code """ + TRYAGAIN = -2, + UNAVAIL = -1 + NOTFOUND = 0 + SUCCESS = 1 + RETURN = 2 + + +class SssdNssError(Exception): + """ Raised when one of the NSS operations fail """ + def __init__(self, errno, nssop): + self.errno = errno + self.nssop = nssop + + def __str__(self): + return "NSS operation %s failed %d" % (nssop, errno) + + +def nss_sss_ctypes_loader(func_name): + libnss_sss_path = config.NSS_MODULE_DIR + "/libnss_sss.so.2" + libnss_sss = ctypes.cdll.LoadLibrary(libnss_sss_path) + func = getattr(libnss_sss, func_name) + return func diff -Nru sssd-1.15.0/src/tests/intg/sssd_passwd.py sssd-1.15.2/src/tests/intg/sssd_passwd.py --- sssd-1.15.0/src/tests/intg/sssd_passwd.py 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/sssd_passwd.py 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,168 @@ +# +# Module for simulation of utility "getent passwd -s sss" from coreutils +# +# Copyright (c) 2016 Red Hat, Inc. +# +# This is free software; you can redistribute it and/or modify it +# under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 only +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see . +# + +from ctypes import (c_int, c_char_p, c_ulong, POINTER, + Structure, create_string_buffer, get_errno) +from sssd_nss import NssReturnCode, SssdNssError, nss_sss_ctypes_loader + +PASSWD_BUFLEN = 1024 + + +class Passwd(Structure): + _fields_ = [("pw_name", c_char_p), + ("pw_passwd", c_char_p), + ("pw_uid", c_int), + ("pw_gid", c_int), + ("pw_gecos", c_char_p), + ("pw_dir", c_char_p), + ("pw_shell", c_char_p)] + + +def set_user_dict(res, result_p): + if res != NssReturnCode.SUCCESS: + return dict() + + user_dict = dict() + user_dict['name'] = result_p[0].pw_name.decode('utf-8') + user_dict['passwd'] = result_p[0].pw_passwd.decode('utf-8') + user_dict['uid'] = result_p[0].pw_uid + user_dict['gid'] = result_p[0].pw_gid + user_dict['gecos'] = result_p[0].pw_gecos.decode('utf-8') + user_dict['dir'] = result_p[0].pw_dir.decode('utf-8') + user_dict['shell'] = result_p[0].pw_shell.decode('utf-8') + return user_dict + + +def getpwnam_r(name, result_p, buffer_p, buflen): + """ + ctypes wrapper for: + enum nss_status _nss_sss_getpwnam_r(const char *name, + struct passwd *result, + char *buffer, + size_t buflen, + int *errnop) + """ + func = nss_sss_ctypes_loader("_nss_sss_getpwnam_r") + func.restype = c_int + func.argtypes = [c_char_p, POINTER(Passwd), + c_char_p, c_ulong, POINTER(c_int)] + + errno = POINTER(c_int)(c_int(0)) + + name = name.encode('utf-8') + res = func(c_char_p(name), result_p, buffer_p, buflen, errno) + + return (int(res), int(errno[0]), result_p) + + +def setpwent(): + """ + ctypes wrapper for: + void setpwent(void) + """ + func = nss_sss_ctypes_loader("_nss_sss_setpwent") + func.argtypes = [] + + res = func() + assert res == NssReturnCode.SUCCESS + + errno = get_errno() + if errno != 0: + raise SssdNssError(errno, "setpwent") + + +def endpwent(): + """ + ctypes wrapper for: + void endpwent(void) + """ + func = nss_sss_ctypes_loader("_nss_sss_endpwent") + func.argtypes = [] + + res = func() + assert res == NssReturnCode.SUCCESS + + errno = get_errno() + if errno != 0: + raise SssdNssError(errno, "endpwent") + + +def getpwent_r(result_p, buffer_p, buflen): + """ + ctypes wrapper for: + enum nss_status _nss_sss_getpwent_r(struct passwd *result, + char *buffer, size_t buflen, + int *errnop) + """ + func = nss_sss_ctypes_loader("_nss_sss_getpwent_r") + func.restype = c_int + func.argtypes = [POINTER(Passwd), c_char_p, c_ulong, POINTER(c_int)] + + errno = POINTER(c_int)(c_int(0)) + + res = func(result_p, buffer_p, buflen, errno) + return (int(res), int(errno[0]), result_p) + + +def getpwent(): + result = Passwd() + result_p = POINTER(Passwd)(result) + buff = create_string_buffer(PASSWD_BUFLEN) + + res, errno, result_p = getpwent_r(result_p, buff, PASSWD_BUFLEN) + if errno != 0: + raise SssdNssError(errno, "getpwent_r") + + user_dict = set_user_dict(res, result_p) + return res, user_dict + + +def call_sssd_getpwnam(name): + """ + A Python wrapper to retrieve a user. Returns: + (res, user_dict) + if res is NssReturnCode.SUCCESS, then user_dict contains the keys + corresponding to the C passwd structure fields. Otherwise, the dictionary + is empty and errno indicates the error code + """ + result = Passwd() + result_p = POINTER(Passwd)(result) + buff = create_string_buffer(PASSWD_BUFLEN) + + res, errno, result_p = getpwnam_r(name, result_p, buff, PASSWD_BUFLEN) + if errno != 0: + raise SssdNssError(errno, "getpwnam_r") + + user_dict = set_user_dict(res, result_p) + return res, user_dict + + +def call_sssd_enumeration(): + """ + enumerate users from sssd module only + """ + setpwent() + user_list = [] + + res, user = getpwent() + while res == NssReturnCode.SUCCESS: + user_list.append(user) + res, user = getpwent() + + endpwent() + return user_list diff -Nru sssd-1.15.0/src/tests/intg/test_enumeration.py sssd-1.15.2/src/tests/intg/test_enumeration.py --- sssd-1.15.0/src/tests/intg/test_enumeration.py 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/test_enumeration.py 2017-03-15 16:53:24.000000000 +0000 @@ -98,7 +98,12 @@ def format_basic_conf(ldap_conn, schema): - """Format a basic SSSD configuration""" + """ + Format a basic SSSD configuration + + The files domain is defined but not enabled in order to avoid enumerating + users from the files domain that would otherwise by implicitly enabled + """ schema_conf = "ldap_schema = " + schema + "\n" if schema == SCHEMA_RFC2307_BIS: schema_conf += "ldap_group_object_class = groupOfNames\n" @@ -115,6 +120,9 @@ [pam] debug_level = 0xffff + [domain/files] + id_provider = files + [domain/LDAP] ldap_auth_disable_tls_never_use_in_production = true debug_level = 0xffff diff -Nru sssd-1.15.0/src/tests/intg/test_files_ops.py sssd-1.15.2/src/tests/intg/test_files_ops.py --- sssd-1.15.0/src/tests/intg/test_files_ops.py 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/test_files_ops.py 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,84 @@ +# +# SSSD integration test - operations on UNIX user and group database +# +# Copyright (c) 2016 Red Hat, Inc. +# +# This is free software; you can redistribute it and/or modify it +# under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 only +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see . +# +import pwd +import grp +import pytest + +import ent +from files_ops import passwd_ops_setup, group_ops_setup + +USER1 = dict(name='user1', passwd='*', uid=10001, gid=20001, + gecos='User for tests', + dir='/home/user1', + shell='/bin/bash') + +GROUP1 = dict(name='group1', + gid=30001, + mem=['user1']) + + +def test_useradd(passwd_ops_setup): + with pytest.raises(KeyError): + pwd.getpwnam("user1") + passwd_ops_setup.useradd(**USER1) + ent.assert_passwd_by_name("user1", USER1) + + +def test_usermod(passwd_ops_setup): + passwd_ops_setup.useradd(**USER1) + ent.assert_passwd_by_name("user1", USER1) + + USER1['shell'] = '/bin/zsh' + passwd_ops_setup.usermod(**USER1) + ent.assert_passwd_by_name("user1", USER1) + + +def test_userdel(passwd_ops_setup): + passwd_ops_setup.useradd(**USER1) + ent.assert_passwd_by_name("user1", USER1) + + passwd_ops_setup.userdel("user1") + with pytest.raises(KeyError): + pwd.getpwnam("user1") + + +def test_groupadd(group_ops_setup): + with pytest.raises(KeyError): + grp.getgrnam("group1") + group_ops_setup.groupadd(**GROUP1) + ent.assert_group_by_name("group1", GROUP1) + + +def test_groupmod(group_ops_setup): + group_ops_setup.groupadd(**GROUP1) + ent.assert_group_by_name("group1", GROUP1) + + modgroup = dict(GROUP1) + modgroup['mem'] = [] + + group_ops_setup.groupmod(old_name=GROUP1["name"], **modgroup) + ent.assert_group_by_name("group1", modgroup) + + +def test_groupdel(group_ops_setup): + group_ops_setup.groupadd(**GROUP1) + ent.assert_group_by_name("group1", GROUP1) + + group_ops_setup.groupdel("group1") + with pytest.raises(KeyError): + grp.getgrnam("group1") diff -Nru sssd-1.15.0/src/tests/intg/test_files_provider.py sssd-1.15.2/src/tests/intg/test_files_provider.py --- sssd-1.15.0/src/tests/intg/test_files_provider.py 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/test_files_provider.py 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,850 @@ +# +# SSSD files domain tests +# +# Copyright (c) 2016 Red Hat, Inc. +# +# This is free software; you can redistribute it and/or modify it +# under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 only +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see . +# + +import os +import stat +import time +import config +import signal +import subprocess +import pwd +import grp +import pytest + +import ent +import sssd_id +from sssd_nss import NssReturnCode +from sssd_passwd import call_sssd_getpwnam, call_sssd_enumeration +from sssd_group import call_sssd_getgrnam +from files_ops import passwd_ops_setup, group_ops_setup +from util import unindent + +# Sync this with files_ops.c +FILES_REALLOC_CHUNK = 64 + +CANARY = dict(name='canary', passwd='x', uid=100001, gid=200001, + gecos='Used to check if passwd is resolvable', + dir='/home/canary', + shell='/bin/bash') + +USER1 = dict(name='user1', passwd='x', uid=10001, gid=20001, + gecos='User for tests', + dir='/home/user1', + shell='/bin/bash') + +USER2 = dict(name='user2', passwd='x', uid=10002, gid=20001, + gecos='User2 for tests', + dir='/home/user2', + shell='/bin/bash') + +CANARY_GR = dict(name='canary', + gid=300001, + mem=[]) + +GROUP1 = dict(name='group1', + gid=30001, + mem=['user1']) + +GROUP12 = dict(name='group12', + gid=30012, + mem=['user1', 'user2']) + +GROUP_NOMEM = dict(name='group_nomem', + gid=40000, + mem=[]) + + +def stop_sssd(): + pid_file = open(config.PIDFILE_PATH, "r") + pid = int(pid_file.read()) + os.kill(pid, signal.SIGTERM) + while True: + try: + os.kill(pid, signal.SIGCONT) + except: + break + time.sleep(1) + + +def create_conf_fixture(request, contents): + """Generate sssd.conf and add teardown for removing it""" + conf = open(config.CONF_PATH, "w") + conf.write(contents) + conf.close() + os.chmod(config.CONF_PATH, stat.S_IRUSR | stat.S_IWUSR) + request.addfinalizer(lambda: os.unlink(config.CONF_PATH)) + + +def create_sssd_fixture(request): + """Start sssd and add teardown for stopping it and removing state""" + os.environ["SSS_FILES_PASSWD"] = os.environ["NSS_WRAPPER_PASSWD"] + os.environ["SSS_FILES_GROUP"] = os.environ["NSS_WRAPPER_GROUP"] + if subprocess.call(["sssd", "-D", "-f"]) != 0: + raise Exception("sssd start failed") + + def teardown(): + try: + stop_sssd() + except: + pass + for path in os.listdir(config.DB_PATH): + os.unlink(config.DB_PATH + "/" + path) + for path in os.listdir(config.MCACHE_PATH): + os.unlink(config.MCACHE_PATH + "/" + path) + request.addfinalizer(teardown) + + +# Fixtures +@pytest.fixture +def files_domain_only(request): + conf = unindent("""\ + [sssd] + domains = files + services = nss + + [domain/files] + id_provider = files + """).format(**locals()) + create_conf_fixture(request, conf) + create_sssd_fixture(request) + return None + + +@pytest.fixture +def no_sssd_domain(request): + conf = unindent("""\ + [sssd] + services = nss + """).format(**locals()) + create_conf_fixture(request, conf) + create_sssd_fixture(request) + return None + + +@pytest.fixture +def no_files_domain(request): + conf = unindent("""\ + [sssd] + domains = local + services = nss + + [domain/local] + id_provider = local + """).format(**locals()) + create_conf_fixture(request, conf) + create_sssd_fixture(request) + return None + + +@pytest.fixture +def disabled_files_domain(request): + conf = unindent("""\ + [sssd] + domains = local + services = nss + enable_files_domain = false + + [domain/local] + id_provider = local + """).format(**locals()) + create_conf_fixture(request, conf) + create_sssd_fixture(request) + return None + + +@pytest.fixture +def no_sssd_conf(request): + create_sssd_fixture(request) + return None + + +def setup_pw_with_list(request, user_list): + pwd_ops = passwd_ops_setup(request) + for user in user_list: + pwd_ops.useradd(**user) + ent.assert_passwd_by_name(CANARY['name'], CANARY) + return pwd_ops + + +@pytest.fixture +def add_user_with_canary(request): + return setup_pw_with_list(request, [CANARY, USER1]) + + +@pytest.fixture +def setup_pw_with_canary(request): + return setup_pw_with_list(request, [CANARY]) + + +def setup_gr_with_list(request, group_list): + grp_ops = group_ops_setup(request) + for group in group_list: + grp_ops.groupadd(**group) + ent.assert_group_by_name(CANARY_GR['name'], CANARY_GR) + return grp_ops + + +@pytest.fixture +def add_group_with_canary(request): + return setup_gr_with_list(request, [GROUP1, CANARY_GR]) + + +@pytest.fixture +def setup_gr_with_canary(request): + return setup_gr_with_list(request, [CANARY_GR]) + + +def poll_canary(fn, name, threshold=20): + """ + If we query SSSD while it's updating its cache, it would return NOTFOUND + rather than a result from potentially outdated or incomplete cache. In + reality this doesn't hurt because the order of the modules is normally + "sss files" so the user lookup would fall back to files. But in tests + we use this loop to wait until the canary user who is always there is + resolved. + """ + for _ in range(0, threshold): + res, _ = fn(name) + if res == NssReturnCode.SUCCESS: + return True + elif res == NssReturnCode.NOTFOUND: + time.sleep(0.1) + continue + else: + return False + return False + + +def sssd_getpwnam_sync(name): + ret = poll_canary(call_sssd_getpwnam, CANARY["name"]) + if ret is False: + return NssReturnCode.NOTFOUND, None + + return call_sssd_getpwnam(name) + + +def sssd_getgrnam_sync(name): + ret = poll_canary(call_sssd_getgrnam, CANARY_GR["name"]) + if ret is False: + return NssReturnCode.NOTFOUND, None + + return call_sssd_getgrnam(name) + + +def sssd_id_sync(name): + sssd_getpwnam_sync(CANARY["name"]) + res, _, groups = sssd_id.get_user_groups(name) + return res, groups + + +# Helper functions +def user_generator(seqnum): + return dict(name='user%d' % seqnum, + passwd='x', + uid=10000 + seqnum, + gid=20000 + seqnum, + gecos='User for tests', + dir='/home/user%d' % seqnum, + shell='/bin/bash') + + +def check_user(exp_user, delay=1.0): + if delay > 0: + time.sleep(delay) + + res, found_user = sssd_getpwnam_sync(exp_user["name"]) + assert res == NssReturnCode.SUCCESS + assert found_user == exp_user + + +def group_generator(seqnum): + return dict(name='group%d' % seqnum, + gid=30000 + seqnum, + mem=[]) + + +def check_group(exp_group, delay=1.0): + if delay > 0: + time.sleep(delay) + + res, found_group = sssd_getgrnam_sync(exp_group["name"]) + assert res == NssReturnCode.SUCCESS + assert found_group == exp_group + + +def check_group_list(exp_groups_list): + for exp_group in exp_groups_list: + check_group(exp_group) + + +# User tests +def test_getpwnam_after_start(add_user_with_canary, files_domain_only): + """ + Test that after startup without any additional operations, a user + can be resolved through sssd + """ + res, user = sssd_getpwnam_sync(USER1["name"]) + assert res == NssReturnCode.SUCCESS + assert user == USER1 + + +def test_getpwnam_neg(files_domain_only): + """ + Test that a nonexistant user cannot be resolved + """ + res, _ = call_sssd_getpwnam("nosuchuser") + assert res == NssReturnCode.NOTFOUND + + +def test_root_does_not_resolve(files_domain_only): + """ + SSSD currently does not resolve the root user even though it can + be resolved through the NSS interface + """ + nss_root = pwd.getpwnam("root") + assert nss_root is not None + + res, _ = call_sssd_getpwnam("root") + assert res == NssReturnCode.NOTFOUND + + +def test_add_remove_add_file_user(setup_pw_with_canary, files_domain_only): + """ + Test that removing a user is detected and the user + is removed from the sssd database. Similarly, an add + should be detected. Do this several times to test retaining + the inotify watch for moved and unlinked files. + """ + res, _ = call_sssd_getpwnam(USER1["name"]) + assert res == NssReturnCode.NOTFOUND + + setup_pw_with_canary.useradd(**USER1) + check_user(USER1) + + setup_pw_with_canary.userdel(USER1["name"]) + time.sleep(1.0) + res, _ = sssd_getpwnam_sync(USER1["name"]) + assert res == NssReturnCode.NOTFOUND + + setup_pw_with_canary.useradd(**USER1) + check_user(USER1) + + +def test_mod_user_shell(add_user_with_canary, files_domain_only): + """ + Test that modifying a user shell is detected and the user + is modified in the sssd database + """ + res, user = sssd_getpwnam_sync(USER1["name"]) + assert res == NssReturnCode.SUCCESS + assert user == USER1 + + moduser = dict(USER1) + moduser['shell'] = '/bin/zsh' + add_user_with_canary.usermod(**moduser) + + check_user(moduser) + + +def test_enum_users(setup_pw_with_canary, files_domain_only): + """ + Test that enumerating all users works with the default configuration. Also + test that removing all entries and then enumerating again returns an empty + set + """ + num_users = 10 + for i in range(1, num_users+1): + user = user_generator(i) + setup_pw_with_canary.useradd(**user) + + sssd_getpwnam_sync(CANARY["name"]) + user_list = call_sssd_enumeration() + # +1 because the canary is added + assert len(user_list) == num_users+1 + + +def incomplete_user_setup(pwd_ops, del_field, exp_field): + adduser = dict(USER1) + del adduser[del_field] + exp_user = dict(USER1) + exp_user[del_field] = exp_field + + pwd_ops.useradd(**adduser) + + return exp_user + + +def test_user_no_shell(setup_pw_with_canary, files_domain_only): + """ + Test that resolving a user without a shell defined works and returns + a fallback value + """ + check_user(incomplete_user_setup(setup_pw_with_canary, 'shell', '')) + + +def test_user_no_dir(setup_pw_with_canary, files_domain_only): + """ + Test that resolving a user without a homedir defined works and returns + a fallback value + """ + check_user(incomplete_user_setup(setup_pw_with_canary, 'dir', '/')) + + +def test_user_no_gecos(setup_pw_with_canary, files_domain_only): + """ + Test that resolving a user without a gecos defined works and returns + a fallback value + """ + check_user(incomplete_user_setup(setup_pw_with_canary, 'gecos', '')) + + +def test_user_no_passwd(setup_pw_with_canary, files_domain_only): + """ + Test that resolving a user without a password defined works and returns + a fallback value + """ + check_user(incomplete_user_setup(setup_pw_with_canary, 'passwd', 'x')) + + +def bad_incomplete_user_setup(pwd_ops, del_field): + adduser = dict(USER1) + adduser[del_field] = '' + + pwd_ops.useradd(**adduser) + + +def test_incomplete_user_fail(setup_pw_with_canary, files_domain_only): + """ + Test resolving an incomplete user where the missing field is required + to be present in the user record and thus the user shouldn't resolve. + + We cannot test uid and gid missing because nss_wrapper doesn't even + load the malformed passwd file, then. + """ + bad_incomplete_user_setup(setup_pw_with_canary, 'name') + res, user = sssd_getpwnam_sync(USER1["name"]) + assert res == NssReturnCode.NOTFOUND + + +def test_getgrnam_after_start(add_group_with_canary, files_domain_only): + """ + Test that after startup without any additional operations, a group + can be resolved through sssd + """ + check_group(GROUP1) + + +def test_getgrnam_neg(files_domain_only): + """ + Test that a nonexistant group cannot be resolved + """ + res, user = sssd_getgrnam_sync("nosuchgroup") + assert res == NssReturnCode.NOTFOUND + + +def test_root_group_does_not_resolve(files_domain_only): + """ + SSSD currently does not resolve the root group even though it can + be resolved through the NSS interface + """ + nss_root = grp.getgrnam("root") + assert nss_root is not None + + res, user = call_sssd_getgrnam("root") + assert res == NssReturnCode.NOTFOUND + + +def test_add_remove_add_file_group(setup_gr_with_canary, files_domain_only): + """ + Test that removing a group is detected and the group + is removed from the sssd database. Similarly, an add + should be detected. Do this several times to test retaining + the inotify watch for moved and unlinked files. + """ + res, group = call_sssd_getgrnam(GROUP1["name"]) + assert res == NssReturnCode.NOTFOUND + + setup_gr_with_canary.groupadd(**GROUP1) + check_group(GROUP1) + + setup_gr_with_canary.groupdel(GROUP1["name"]) + time.sleep(1) + res, group = call_sssd_getgrnam(GROUP1["name"]) + assert res == NssReturnCode.NOTFOUND + + setup_gr_with_canary.groupadd(**GROUP1) + check_group(GROUP1) + + +def test_mod_group_name(add_group_with_canary, files_domain_only): + """ + Test that modifying a group name is detected and the group + is modified in the sssd database + """ + check_group(GROUP1) + + modgroup = dict(GROUP1) + modgroup['name'] = 'group1_mod' + add_group_with_canary.groupmod(old_name=GROUP1["name"], **modgroup) + + check_group(modgroup) + + +def test_mod_group_gid(add_group_with_canary, files_domain_only): + """ + Test that modifying a group name is detected and the group + is modified in the sssd database + """ + check_group(GROUP1) + + modgroup = dict(GROUP1) + modgroup['gid'] = 30002 + add_group_with_canary.groupmod(old_name=GROUP1["name"], **modgroup) + + check_group(modgroup) + + +@pytest.fixture +def add_group_nomem_with_canary(request): + return setup_gr_with_list(request, [GROUP_NOMEM, CANARY_GR]) + + +def test_getgrnam_no_members(add_group_nomem_with_canary, files_domain_only): + """ + Test that after startup without any additional operations, a group + can be resolved through sssd + """ + check_group(GROUP_NOMEM) + + +def groupadd_list(grp_ops, groups): + for grp in groups: + grp_ops.groupadd(**grp) + + +def useradd_list(pwd_ops, users): + for usr in users: + pwd_ops.useradd(**usr) + + +def user_and_group_setup(pwd_ops, grp_ops, users, groups, reverse): + """ + The reverse is added so that we test cases where a group is added first, + then a user for this group is created -- in that case, we need to properly + link the group after the user is added. + """ + if reverse is False: + useradd_list(pwd_ops, users) + groupadd_list(grp_ops, groups) + else: + groupadd_list(grp_ops, groups) + useradd_list(pwd_ops, users) + + +def members_check(added_groups): + # Test that users are members as per getgrnam + check_group_list(added_groups) + + # Test that users are members as per initgroups + for group in added_groups: + for member in group['mem']: + res, groups = sssd_id_sync(member) + assert res == sssd_id.NssReturnCode.SUCCESS + assert group['name'] in groups + + +def test_getgrnam_members_users_first(setup_pw_with_canary, + setup_gr_with_canary, + files_domain_only): + """ + A user is linked with a group + """ + user_and_group_setup(setup_pw_with_canary, + setup_gr_with_canary, + [USER1], + [GROUP1], + False) + members_check([GROUP1]) + + +def test_getgrnam_members_users_multiple(setup_pw_with_canary, + setup_gr_with_canary, + files_domain_only): + """ + Multiple users are linked with a group + """ + user_and_group_setup(setup_pw_with_canary, + setup_gr_with_canary, + [USER1, USER2], + [GROUP12], + False) + members_check([GROUP12]) + + +def test_getgrnam_members_groups_first(setup_pw_with_canary, + setup_gr_with_canary, + files_domain_only): + """ + A group is linked with a user + """ + user_and_group_setup(setup_pw_with_canary, + setup_gr_with_canary, + [USER1], + [GROUP1], + True) + members_check([GROUP1]) + + +def test_getgrnam_ghost(setup_pw_with_canary, + setup_gr_with_canary, + files_domain_only): + """ + Test that a group with members while the members are not present + are added as ghosts. This is also what nss_files does, getgrnam would + return group members that do not exist as well. + """ + user_and_group_setup(setup_pw_with_canary, + setup_gr_with_canary, + [], + [GROUP12], + False) + check_group(GROUP12) + for member in GROUP12['mem']: + res, _ = call_sssd_getpwnam(member) + assert res == NssReturnCode.NOTFOUND + + +def ghost_and_member_test(pw_ops, grp_ops, reverse): + user_and_group_setup(pw_ops, + grp_ops, + [USER1], + [GROUP12], + reverse) + check_group(GROUP12) + + # We checked that the group added has the same members as group12, + # so both user1 and user2. Now check that user1 is a member of + # group12 and its own primary GID but user2 doesn't exist, it's + # just a ghost entry + res, groups = sssd_id_sync('user1') + assert res == sssd_id.NssReturnCode.SUCCESS + assert len(groups) == 2 + assert 'group12' in groups + + res, _ = call_sssd_getpwnam('user2') + assert res == NssReturnCode.NOTFOUND + + +def test_getgrnam_user_ghost_and_member(setup_pw_with_canary, + setup_gr_with_canary, + files_domain_only): + """ + Test that a group with one member and one ghost. + """ + ghost_and_member_test(setup_pw_with_canary, + setup_gr_with_canary, + False) + + +def test_getgrnam_user_member_and_ghost(setup_pw_with_canary, + setup_gr_with_canary, + files_domain_only): + """ + Test that a group with one member and one ghost, adding the group + first and then linking the member + """ + ghost_and_member_test(setup_pw_with_canary, + setup_gr_with_canary, + True) + + +def test_getgrnam_add_remove_members(setup_pw_with_canary, + add_group_nomem_with_canary, + files_domain_only): + """ + Test that a user is linked with a group + """ + pwd_ops = setup_pw_with_canary + + check_group(GROUP_NOMEM) + + for usr in [USER1, USER2]: + pwd_ops.useradd(**usr) + + modgroup = dict(GROUP_NOMEM) + modgroup['mem'] = ['user1', 'user2'] + add_group_nomem_with_canary.groupmod(old_name=modgroup['name'], **modgroup) + check_group(modgroup) + + res, groups = sssd_id_sync('user1') + assert res == sssd_id.NssReturnCode.SUCCESS + assert len(groups) == 2 + assert 'group_nomem' in groups + + res, groups = sssd_id_sync('user2') + assert res == sssd_id.NssReturnCode.SUCCESS + assert 'group_nomem' in groups + + modgroup['mem'] = ['user2'] + add_group_nomem_with_canary.groupmod(old_name=modgroup['name'], **modgroup) + check_group(modgroup) + + # User1 exists, but is not a member of any supplementary group anymore + res, _ = call_sssd_getpwnam('user1') + assert res == sssd_id.NssReturnCode.SUCCESS + res, groups = sssd_id_sync('user1') + assert res == sssd_id.NssReturnCode.NOTFOUND + + # user2 still is + res, groups = sssd_id_sync('user2') + assert res == sssd_id.NssReturnCode.SUCCESS + assert len(groups) == 2 + assert 'group_nomem' in groups + + +def test_getgrnam_add_remove_ghosts(setup_pw_with_canary, + add_group_nomem_with_canary, + files_domain_only): + """ + Test that a user is linked with a group + """ + pwd_ops = setup_pw_with_canary + + check_group(GROUP_NOMEM) + + modgroup = dict(GROUP_NOMEM) + modgroup['mem'] = ['user1', 'user2'] + add_group_nomem_with_canary.groupmod(old_name=modgroup['name'], **modgroup) + check_group(modgroup) + + modgroup['mem'] = ['user2'] + add_group_nomem_with_canary.groupmod(old_name=modgroup['name'], **modgroup) + check_group(modgroup) + + res, _ = call_sssd_getpwnam('user1') + assert res == NssReturnCode.NOTFOUND + res, _ = call_sssd_getpwnam('user2') + assert res == NssReturnCode.NOTFOUND + + # Add this user and verify it's been added as a member + pwd_ops.useradd(**USER2) + res, groups = sssd_id_sync('user2') + assert res == sssd_id.NssReturnCode.SUCCESS + assert len(groups) == 2 + assert 'group_nomem' in groups + + +def realloc_users(pwd_ops, num): + # Intentionally not including the the last one because + # canary is added first + for i in range(1, num): + user = user_generator(i) + pwd_ops.useradd(**user) + + user = user_generator(num-1) + check_user(user) + + +def test_realloc_users_exact(setup_pw_with_canary, files_domain_only): + """ + Test that returning exactly FILES_REALLOC_CHUNK users (see files_ops.c) + works fine to test reallocation logic. Test exact number of users to + check for off-by-one errors. + """ + realloc_users(setup_pw_with_canary, FILES_REALLOC_CHUNK) + + +def test_realloc_users(setup_pw_with_canary, files_domain_only): + """ + Test that returning exactly FILES_REALLOC_CHUNK users (see files_ops.c) + works fine to test reallocation logic. + """ + realloc_users(setup_pw_with_canary, FILES_REALLOC_CHUNK*3) + + +def realloc_groups(grp_ops, num): + for i in range(1, num): + group = group_generator(i) + grp_ops.groupadd(**group) + + group = group_generator(num-1) + check_group(group) + + +def test_realloc_groups_exact(setup_gr_with_canary, files_domain_only): + """ + Test that returning exactly FILES_REALLOC_CHUNK groups (see files_ops.c) + works fine to test reallocation logic. Test exact number of groups to + check for off-by-one errors. + """ + realloc_groups(setup_gr_with_canary, FILES_REALLOC_CHUNK*3) + + +def test_realloc_groups(setup_gr_with_canary, files_domain_only): + """ + Test that returning exactly FILES_REALLOC_CHUNK groups (see files_ops.c) + works fine to test reallocation logic. Test exact number of groups to + check for off-by-one errors. + """ + realloc_groups(setup_gr_with_canary, FILES_REALLOC_CHUNK*3) + + +# Files domain autoconfiguration tests +def test_no_sssd_domain(add_user_with_canary, no_sssd_domain): + """ + Test that if no sssd domain is configured, sssd will add the implicit one + """ + res, user = sssd_getpwnam_sync(USER1["name"]) + assert res == NssReturnCode.SUCCESS + assert user == USER1 + + +def test_no_files_domain(add_user_with_canary, no_files_domain): + """ + Test that if no files domain is configured, sssd will add the implicit one + before any explicitly configured domains + """ + # Add a user with a different UID than the one in files + subprocess.check_call( + ["sss_useradd", "-u", "10009", "-M", USER1["name"]]) + + # Even though the local domain is the only one configured, + # files will be resolved first + res, user = sssd_getpwnam_sync(USER1["name"]) + assert res == NssReturnCode.SUCCESS + assert user == USER1 + + +def test_disable_files_domain(add_user_with_canary, disabled_files_domain): + """ + Test that if no files domain is configured, sssd will add the implicit one + before any explicitly configured domains + """ + # The local user will not be resolvable through nss_sss now + res, user = sssd_getpwnam_sync(USER1["name"]) + assert res != NssReturnCode.SUCCESS + + +def test_no_sssd_conf(add_user_with_canary, no_sssd_conf): + """ + Test that running without sssd.conf implicitly configures one with + id_provider=files + """ + res, user = sssd_getpwnam_sync(USER1["name"]) + assert res == NssReturnCode.SUCCESS + assert user == USER1 diff -Nru sssd-1.15.0/src/tests/intg/test_secrets.py sssd-1.15.2/src/tests/intg/test_secrets.py --- sssd-1.15.0/src/tests/intg/test_secrets.py 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/test_secrets.py 2017-03-15 16:53:24.000000000 +0000 @@ -16,8 +16,10 @@ # along with this program. If not, see . # +from __future__ import print_function import os import stat +import sys import config import signal import subprocess @@ -46,20 +48,25 @@ resp_path = os.path.join(config.LIBEXEC_PATH, "sssd", "sssd_secrets") secpid = os.fork() + assert secpid >= 0 + if secpid == 0: if subprocess.call([resp_path, "--uid=0", "--gid=0"]) != 0: - raise Exception("sssd_secrets failed to start") + print("sssd_secrets failed to start") + sys.exit(99) + else: + sock_path = os.path.join(config.RUNSTATEDIR, "secrets.socket") + sck = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM) + for _ in range(1, 10): + try: + sck.connect(sock_path) + except: + time.sleep(0.1) + else: + break + sck.close() - sock_path = os.path.join(config.RUNSTATEDIR, "secrets.socket") - sck = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM) - for _ in range(1, 10): - try: - sck.connect(sock_path) - except: - time.sleep(0.1) - else: - break - sck.close() + assert os.path.exists(sock_path) def sec_teardown(): if secpid == 0: @@ -69,6 +76,7 @@ for secdb_file in os.listdir(config.SECDB_PATH): os.unlink(config.SECDB_PATH + "/" + secdb_file) request.addfinalizer(sec_teardown) + return secpid @pytest.fixture @@ -95,13 +103,27 @@ return None +def get_secrets_socket(): + return os.path.join(config.RUNSTATEDIR, "secrets.socket") + + @pytest.fixture def secrets_cli(request): - sock_path = os.path.join(config.RUNSTATEDIR, "secrets.socket") + sock_path = get_secrets_socket() cli = SecretsLocalClient(sock_path=sock_path) return cli +@pytest.fixture +def curlwrap_tool(request): + curlwrap_path = os.path.join(config.ABS_BUILDDIR, + "..", "..", "..", "tcurl-test-tool") + if os.access(curlwrap_path, os.X_OK): + return curlwrap_path + + return None + + def test_crd_ops(setup_for_secrets, secrets_cli): """ Test that the basic Create, Retrieve, Delete operations work @@ -171,6 +193,132 @@ assert str(err413.value).startswith("413") +def run_curlwrap_tool(args, exp_http_code): + cmd = subprocess.Popen(args, + stdin=subprocess.PIPE, + stdout=subprocess.PIPE, + stderr=subprocess.PIPE) + out, _ = cmd.communicate() + + assert cmd.returncode == 0 + + out = out.decode('utf-8') + exp_http_code_str = "Request HTTP code: %d" % exp_http_code + assert exp_http_code_str in out + + return out + + +def test_curlwrap_crd_ops(setup_for_secrets, + curlwrap_tool): + """ + Test that the basic Create, Retrieve, Delete operations work using our + tevent libcurl code + """ + if not curlwrap_tool: + pytest.skip("The tcurl tool is not available, skipping test") + sock_path = get_secrets_socket() + + # listing an empty DB yields a 404 + run_curlwrap_tool([curlwrap_tool, + '-v', '-s', sock_path, + 'http://localhost/secrets/'], + 404) + + # listing a non-existent secret yields a 404 + run_curlwrap_tool([curlwrap_tool, + '-v', '-s', sock_path, + 'http://localhost/secrets/foo'], + 404) + + # set a secret foo:bar + run_curlwrap_tool([curlwrap_tool, '-p', + '-v', '-s', sock_path, + 'http://localhost/secrets/foo', + 'bar'], + 200) + + # list secrets + output = run_curlwrap_tool([curlwrap_tool, + '-v', '-s', sock_path, + 'http://localhost/secrets/'], + 200) + assert "foo" in output + + # get the foo secret + output = run_curlwrap_tool([curlwrap_tool, + '-v', '-s', sock_path, + 'http://localhost/secrets/foo'], + 200) + assert "bar" in output + + # Overwriting a secret is an error + run_curlwrap_tool([curlwrap_tool, '-p', + '-v', '-s', sock_path, + 'http://localhost/secrets/foo', + 'baz'], + 409) + + # Delete a secret + run_curlwrap_tool([curlwrap_tool, '-d', + '-v', '-s', sock_path, + 'http://localhost/secrets/foo'], + 200) + + # Delete a non-existent secret must yield a 404 + run_curlwrap_tool([curlwrap_tool, '-d', + '-v', '-s', sock_path, + 'http://localhost/secrets/foo'], + 404) + + +def test_curlwrap_parallel(setup_for_secrets, + curlwrap_tool): + """ + The tevent libcurl wrapper is meant to be non-blocking. Test + its operation in parallel. + """ + if not curlwrap_tool: + pytest.skip("The tcurl tool is not available, skipping test") + sock_path = get_secrets_socket() + + secrets = dict() + nsecrets = 10 + + for i in range(0, nsecrets): + secrets["key" + str(i)] = "value" + str(i) + + args = [curlwrap_tool, '-p', '-v', '-s', sock_path] + for skey, svalue in secrets.items(): + args.extend(['http://localhost/secrets/%s' % skey, svalue]) + run_curlwrap_tool(args, 200) + + output = run_curlwrap_tool([curlwrap_tool, + '-v', '-s', sock_path, + 'http://localhost/secrets/'], + 200) + for skey in secrets: + assert skey in output + + args = [curlwrap_tool, '-g', '-v', '-s', sock_path] + for skey in secrets: + args.extend(['http://localhost/secrets/%s' % skey]) + output = run_curlwrap_tool(args, 200) + + for svalue in secrets.values(): + assert svalue in output + + args = [curlwrap_tool, '-d', '-v', '-s', sock_path] + for skey in secrets: + args.extend(['http://localhost/secrets/%s' % skey]) + output = run_curlwrap_tool(args, 200) + + run_curlwrap_tool([curlwrap_tool, + '-v', '-s', sock_path, + 'http://localhost/secrets/'], + 404) + + def test_containers(setup_for_secrets, secrets_cli): """ Test that storing secrets inside containers works diff -Nru sssd-1.15.0/src/tests/intg/test_ts_cache.py sssd-1.15.2/src/tests/intg/test_ts_cache.py --- sssd-1.15.0/src/tests/intg/test_ts_cache.py 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/test_ts_cache.py 2017-03-15 16:53:24.000000000 +0000 @@ -33,7 +33,6 @@ import sssd_ldb import sssd_id from util import unindent -from util import run_shell LDAP_BASE_DN = "dc=example,dc=com" SSSD_DOMAIN = "LDAP" @@ -200,13 +199,11 @@ return ldb_conn -def invalidate_group(name): - subprocess.call(["sss_cache", "-g", name]) - - -def invalidate_user(name): - subprocess.call(["sss_cache", "-u", name]) +def invalidate_group(ldb_conn, name): + ldb_conn.invalidate_entry(name, sssd_ldb.TsCacheEntry.group, SSSD_DOMAIN) +def invalidate_user(ldb_conn, name): + ldb_conn.invalidate_entry(name, sssd_ldb.TsCacheEntry.user, SSSD_DOMAIN) def get_attrs(ldb_conn, type, name, domain, attr_list): sysdb_attrs = dict() @@ -253,7 +250,7 @@ # just to force different stamps and make sure memcache is gone time.sleep(1) - invalidate_group(name) + invalidate_group(ldb_conn, name) return sysdb_attrs, ts_attrs @@ -272,7 +269,7 @@ # just to force different stamps and make sure memcache is gone time.sleep(1) - invalidate_user(name) + invalidate_user(ldb_conn, name) return sysdb_attrs, ts_attrs @@ -616,3 +613,59 @@ assert sysdb_attrs.get("originalModifyTimestamp") is None assert ts_attrs.get("dataExpireTimestamp") is None assert ts_attrs.get("originalModifyTimestamp") is None + + +def test_sss_cache_invalidate_user(ldap_conn, + ldb_examine, + setup_rfc2307bis ): + """ + Test that sss_cache invalidate user in both caches + """ + + ldb_conn = ldb_examine + old_sysdb_attrs, old_ts_attrs = prime_cache_user(ldb_conn, "user1", 2001) + + subprocess.call(["sss_cache", "-u", "user1"]) + + sysdb_attrs, ts_attrs = get_user_attrs(ldb_conn, "user1", + SSSD_DOMAIN, TS_ATTRLIST) + + assert sysdb_attrs.get("dataExpireTimestamp") == '1' + assert ts_attrs.get("dataExpireTimestamp") == '1' + + time.sleep(1) + pwd.getpwnam("user1") + sysdb_attrs, ts_attrs = get_user_attrs(ldb_conn, "user1", + SSSD_DOMAIN, TS_ATTRLIST) + + assert sysdb_attrs.get("dataExpireTimestamp") == '1' + assert_diff_attrval(ts_attrs, sysdb_attrs, "dataExpireTimestamp") + + +def test_sss_cache_invalidate_group(ldap_conn, + ldb_examine, + setup_rfc2307bis ): + """ + Test that sss_cache invalidate group in both caches + """ + + ldb_conn = ldb_examine + old_sysdb_attrs, old_ts_attrs = prime_cache_group( + ldb_conn, "group1", + ("user1", "user11", "user21")) + + subprocess.call(["sss_cache", "-g", "group1"]) + + sysdb_attrs, ts_attrs = get_group_attrs(ldb_conn, "group1", + SSSD_DOMAIN, TS_ATTRLIST) + + assert sysdb_attrs.get("dataExpireTimestamp") == '1' + assert ts_attrs.get("dataExpireTimestamp") == '1' + + time.sleep(1) + grp.getgrnam("group1") + sysdb_attrs, ts_attrs = get_group_attrs(ldb_conn, "group1", + SSSD_DOMAIN, TS_ATTRLIST) + + assert sysdb_attrs.get("dataExpireTimestamp") == '1' + assert_diff_attrval(ts_attrs, sysdb_attrs, "dataExpireTimestamp") diff -Nru sssd-1.15.0/src/tests/intg/util.py sssd-1.15.2/src/tests/intg/util.py --- sssd-1.15.0/src/tests/intg/util.py 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/intg/util.py 2017-03-15 16:53:24.000000000 +0000 @@ -21,6 +21,7 @@ import os import subprocess import config +import shutil UNINDENT_RE = re.compile("^ +", re.MULTILINE) @@ -64,3 +65,16 @@ for arg in args: if os.path.isdir(arg): return arg + + +def backup_envvar_file(name): + path = os.environ[name] + backup_path = path + ".bak" + shutil.copyfile(path, backup_path) + return path + + +def restore_envvar_file(name): + path = os.environ[name] + backup_path = path + ".bak" + os.rename(backup_path, path) diff -Nru sssd-1.15.0/src/tests/ipa_ldap_opt-tests.c sssd-1.15.2/src/tests/ipa_ldap_opt-tests.c --- sssd-1.15.0/src/tests/ipa_ldap_opt-tests.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/ipa_ldap_opt-tests.c 2017-03-15 16:53:24.000000000 +0000 @@ -467,6 +467,37 @@ extra_attrs, &out_map, &new_size); fail_unless(ret == ERR_DUP_EXTRA_ATTR, "[%s]", sss_strerror(ret)); + + talloc_free(out_map); +} +END_TEST + +START_TEST(test_extra_opts_empty_name) +{ + errno_t ret; + char *extra_attrs[] = { discard_const(SYSDB_UUID":bar"), + NULL }; + struct sdap_attr_map *in_map; + struct sdap_attr_map *out_map; + size_t new_size; + + ret = sdap_copy_map(global_talloc_context, rfc2307_user_map, + SDAP_OPTS_USER, &in_map); + fail_unless(ret == EOK, "[%s]", strerror(ret)); + + /* Make sure the name if really NULL */ + fail_unless(rfc2307_user_map[SDAP_AT_USER_UUID].name == NULL, + "The reference name is not NULL anymore, " + "please choose a different attribute."); + + ret = sdap_extend_map(global_talloc_context, + in_map, + SDAP_OPTS_USER, + extra_attrs, + &out_map, &new_size); + fail_unless(ret == ERR_DUP_EXTRA_ATTR, "[%s]", sss_strerror(ret)); + + talloc_free(out_map); } END_TEST @@ -500,6 +531,7 @@ tcase_add_test (tc_extra_opts, test_no_extra_opts); tcase_add_test (tc_extra_opts, test_extra_opts_neg); tcase_add_test (tc_extra_opts, test_extra_opts_dup); + tcase_add_test (tc_extra_opts, test_extra_opts_empty_name); suite_add_tcase (s, tc_extra_opts); return s; diff -Nru sssd-1.15.0/src/tests/sysdb-tests.c sssd-1.15.2/src/tests/sysdb-tests.c --- sssd-1.15.0/src/tests/sysdb-tests.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/sysdb-tests.c 2017-03-15 16:53:24.000000000 +0000 @@ -1395,7 +1395,7 @@ /* Create subdomain */ subdomain = new_subdomain(test_ctx, test_ctx->domain, "test.sub", "TEST.SUB", "test", "S-3", - false, false, NULL, 0); + false, false, NULL, NULL, 0); fail_if(subdomain == NULL, "Failed to create new subdomain."); ret = sss_names_init_from_args(test_ctx, @@ -5621,6 +5621,9 @@ struct ldb_result *res; struct ldb_val val; struct test_data *data; + struct test_data *data2; + const char *name; + const char *name2; /* Setup */ ret = setup_sysdb_tests(&test_ctx); @@ -5656,6 +5659,36 @@ data->username) == 0, "Unexpected object found, " \ "expected [%s], got [%s].", data->username, ldb_msg_find_attr_as_string(res->msgs[0],SYSDB_NAME, "")); + + /* Add a second user with the same certificate */ + data2 = test_data_new_user(test_ctx, 2345671); + fail_if(data2 == NULL); + + ret = sysdb_attrs_add_val(data2->attrs, SYSDB_USER_CERT, &val); + fail_unless(ret == EOK, "sysdb_attrs_add_val failed with [%d][%s].", + ret, strerror(ret)); + + ret = test_add_user(data2); + fail_unless(ret == EOK, "sysdb_add_user failed with [%d][%s].", + ret, strerror(ret)); + + ret = sysdb_search_user_by_cert(test_ctx, test_ctx->domain, + TEST_USER_CERT_DERB64, &res); + fail_unless(ret == EOK, "sysdb_search_user_by_cert failed with [%d][%s].", + ret, strerror(ret)); + fail_unless(res->count == 2, "Unexpected number of results, " + "expected [%u], get [%u].", 2, res->count); + name = ldb_msg_find_attr_as_string(res->msgs[0], SYSDB_NAME, ""); + fail_unless(name != NULL); + name2 = ldb_msg_find_attr_as_string(res->msgs[1], SYSDB_NAME, ""); + fail_unless(name2 != NULL); + fail_unless(((strcmp(name, data->username) == 0 + && strcmp(name2, data2->username) == 0) + || (strcmp(name, data2->username) == 0 + && strcmp(name2, data->username) == 0)), + "Unexpected names found, expected [%s,%s], got [%s,%s].", + data->username, data2->username, name, name2); + talloc_free(test_ctx); } END_TEST @@ -5702,7 +5735,7 @@ subdomain = new_subdomain(test_ctx, test_ctx->domain, testdom[0], testdom[1], testdom[2], testdom[3], - false, false, NULL, 0); + false, false, NULL, NULL, 0); fail_unless(subdomain != NULL, "Failed to create new subdomin."); ret = sysdb_subdomain_store(test_ctx->sysdb, testdom[0], testdom[1], testdom[2], testdom[3], @@ -5781,7 +5814,7 @@ subdomain = new_subdomain(test_ctx, test_ctx->domain, testdom[0], testdom[1], testdom[2], testdom[3], - false, false, NULL, 0); + false, false, NULL, NULL, 0); fail_unless(subdomain != NULL, "Failed to create new subdomin."); ret = sysdb_subdomain_store(test_ctx->sysdb, testdom[0], testdom[1], testdom[2], testdom[3], @@ -5854,7 +5887,7 @@ subdomain = new_subdomain(test_ctx, test_ctx->domain, testdom[0], testdom[1], testdom[2], testdom[3], - false, false, NULL, 0); + false, false, NULL, NULL, 0); fail_unless(subdomain != NULL, "Failed to create new subdomin."); ret = sysdb_subdomain_store(test_ctx->sysdb, testdom[0], testdom[1], testdom[2], testdom[3], @@ -6253,12 +6286,12 @@ attrs, NULL, -1, 0); fail_unless(ret == EOK, "Could not store user."); - ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, + ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, false, "abc@def.ghi", NULL, &msg); fail_unless(ret == ENOENT, "sysdb_search_user_by_upn failed with non-existing UPN."); - ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, + ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, false, UPN_PRINC, NULL, &msg); fail_unless(ret == EOK, "sysdb_search_user_by_upn failed."); @@ -6290,7 +6323,7 @@ return; } - ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, + ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, false, UPN_PRINC_WRONG_CASE, NULL, &msg); fail_unless(ret == EOK, "sysdb_search_user_by_upn failed."); @@ -6322,7 +6355,7 @@ return; } - ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, + ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, false, UPN_CANON_PRINC, NULL, &msg); fail_unless(ret == EOK, "sysdb_search_user_by_upn failed."); @@ -6359,7 +6392,7 @@ return; } - ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, + ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, false, UPN_CANON_PRINC_WRONG_CASE, NULL, &msg); fail_unless(ret == EOK, "sysdb_search_user_by_upn failed."); @@ -6410,12 +6443,12 @@ attrs, NULL, -1, 0); fail_unless(ret == EOK, "Could not store user."); - ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, + ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, false, UPN_CANON_PRINC, NULL, &msg); fail_unless(ret == EINVAL, "sysdb_search_user_by_upn failed for duplicated UPN."); - ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, + ret = sysdb_search_user_by_upn(test_ctx, test_ctx->domain, false, UPN_PRINC, NULL, &msg); fail_unless(ret == EOK, "sysdb_search_user_by_upn failed."); diff -Nru sssd-1.15.0/src/tests/tcurl_test_tool.c sssd-1.15.2/src/tests/tcurl_test_tool.c --- sssd-1.15.0/src/tests/tcurl_test_tool.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tests/tcurl_test_tool.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,230 @@ +/* + SSSD + + libcurl tevent integration test tool + + Copyright (C) Red Hat, 2016 + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include + +#include "util/util.h" +#include "util/tev_curl.h" + +#define MAXREQ 64 + +struct tool_ctx { + bool verbose; + + errno_t error; + bool done; + + size_t nreqs; +}; + +static void request_done(struct tevent_req *req) +{ + int http_code; + struct sss_iobuf *outbuf; + struct tool_ctx *tool_ctx = tevent_req_callback_data(req, + struct tool_ctx); + + tool_ctx->error = tcurl_http_recv(tool_ctx, req, + &http_code, + &outbuf); + talloc_zfree(req); + + if (tool_ctx->error != EOK) { + DEBUG(SSSDBG_FATAL_FAILURE, "HTTP request failed: %d\n", tool_ctx->error); + tool_ctx->done = true; + return; + } else if (tool_ctx->verbose) { + printf("Request HTTP code: %d\n", http_code); + printf("Request HTTP body: \n%s\n", + (const char *) sss_iobuf_get_data(outbuf)); + talloc_zfree(outbuf); + } + + tool_ctx->nreqs--; + if (tool_ctx->nreqs == 0) { + tool_ctx->done = true; + } +} + +int main(int argc, const char *argv[]) +{ + int opt; + poptContext pc; + + int pc_debug = 0; + int pc_verbose = 0; + const char *socket_path = NULL; + const char *extra_arg_ptr; + + static const char *headers[] = { + "Content-type: application/octet-stream", + NULL, + }; + + struct poptOption long_options[] = { + POPT_AUTOHELP + { "debug", '\0', POPT_ARG_INT, &pc_debug, 0, + "The debug level to run with", NULL }, + { "socket-path", 's', POPT_ARG_STRING, &socket_path, 0, + "The path to the HTTP server socket", NULL }, + { "get", 'g', POPT_ARG_NONE, NULL, 'g', "Perform a HTTP GET (default)", NULL }, + { "put", 'p', POPT_ARG_NONE, NULL, 'p', "Perform a HTTP PUT", NULL }, + { "del", 'd', POPT_ARG_NONE, NULL, 'd', "Perform a HTTP DELETE", NULL }, + { "verbose", 'v', POPT_ARG_NONE, NULL, 'v', "Print response code and body", NULL }, + POPT_TABLEEND + }; + + struct tevent_req *req; + struct tevent_context *ev; + enum tcurl_http_request req_type = TCURL_HTTP_GET; + struct tcurl_ctx *ctx; + struct tool_ctx *tool_ctx; + + const char *urls[MAXREQ] = { 0 }; + struct sss_iobuf **inbufs; + + size_t n_reqs = 0; + + debug_prg_name = argv[0]; + pc = poptGetContext(NULL, argc, argv, long_options, 0); + poptSetOtherOptionHelp(pc, "HTTPDATA"); + + while ((opt = poptGetNextOpt(pc)) > 0) { + switch (opt) { + case 'g': + req_type = TCURL_HTTP_GET; + break; + case 'p': + req_type = TCURL_HTTP_PUT; + break; + case 'd': + req_type = TCURL_HTTP_DELETE; + break; + case 'v': + pc_verbose = 1; + break; + default: + DEBUG(SSSDBG_FATAL_FAILURE, "Unexpected option\n"); + return 1; + } + } + + DEBUG_CLI_INIT(pc_debug); + + tool_ctx = talloc_zero(NULL, struct tool_ctx); + if (tool_ctx == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Could not init tool context\n"); + return 1; + } + + inbufs = talloc_zero_array(tool_ctx, struct sss_iobuf *, MAXREQ); + if (inbufs == NULL) { + talloc_zfree(tool_ctx); + return 1; + } + + while ((extra_arg_ptr = poptGetArg(pc)) != NULL) { + switch (req_type) { + case TCURL_HTTP_GET: + case TCURL_HTTP_DELETE: + urls[n_reqs++] = extra_arg_ptr; + break; + case TCURL_HTTP_PUT: + if (urls[n_reqs] == NULL) { + urls[n_reqs] = extra_arg_ptr; + } else { + inbufs[n_reqs] = sss_iobuf_init_readonly( + inbufs, + (uint8_t *) discard_const(extra_arg_ptr), + strlen(extra_arg_ptr)); + if (inbufs[n_reqs] == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Could not init input buffer\n"); + talloc_zfree(tool_ctx); + return 1; + } + n_reqs++; + } + break; + } + } + + if (opt != -1) { + poptPrintUsage(pc, stderr, 0); + fprintf(stderr, "%s", poptStrerror(opt)); + talloc_zfree(tool_ctx); + return 1; + } + + if (!socket_path) { + DEBUG(SSSDBG_FATAL_FAILURE, "Please specify the socket path\n"); + poptPrintUsage(pc, stderr, 0); + talloc_zfree(tool_ctx); + return 1; + } + + tool_ctx->nreqs = n_reqs; + tool_ctx->verbose = !!pc_verbose; + + ev = tevent_context_init(tool_ctx); + if (ev == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Could not init tevent context\n"); + talloc_zfree(tool_ctx); + return 1; + } + + ctx = tcurl_init(tool_ctx, ev); + if (ctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Could not init tcurl context\n"); + talloc_zfree(tool_ctx); + return 1; + } + + for (size_t i = 0; i < n_reqs; i++) { + req = tcurl_http_send(tool_ctx, ev, ctx, + req_type, + socket_path, + urls[i], + headers, + inbufs[i], + 10); + if (ctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Could not create request\n"); + talloc_zfree(tool_ctx); + return 1; + } + tevent_req_set_callback(req, request_done, tool_ctx); + } + + while (tool_ctx->done == false) { + tevent_loop_once(ev); + } + + if (tool_ctx->nreqs > 0) { + DEBUG(SSSDBG_FATAL_FAILURE, + "The tool finished with some pending requests, fail!\n"); + talloc_zfree(tool_ctx); + return 1; + } + + talloc_free(tool_ctx); + poptFreeContext(pc); + return 0; +} diff -Nru sssd-1.15.0/src/tests/util-tests.c sssd-1.15.2/src/tests/util-tests.c --- sssd-1.15.0/src/tests/util-tests.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tests/util-tests.c 2017-03-15 16:53:24.000000000 +0000 @@ -415,6 +415,24 @@ "Expected [%s], got [%s]", has_all_expected, sanitized); + const char has_new_line[] = "user\nname"; + const char has_new_line_expected[] = "user\\0aname"; + ret = sss_filter_sanitize(test_ctx, has_new_line, &sanitized); + fail_unless(ret == EOK, "has_new_line error [%d][%s]", + ret, strerror(ret)); + fail_unless(strcmp(has_new_line_expected, sanitized) == 0, + "Expected [%s], got [%s]", + has_new_line_expected, sanitized); + + const char has_carriage_ret[] = "user\rname"; + const char has_carriage_ret_expected[] = "user\\0dname"; + ret = sss_filter_sanitize(test_ctx, has_carriage_ret, &sanitized); + fail_unless(ret == EOK, "has_carriage_ret error [%d][%s]", + ret, strerror(ret)); + fail_unless(strcmp(has_carriage_ret_expected, sanitized) == 0, + "Expected [%s], got [%s]", + has_carriage_ret_expected, sanitized); + talloc_free(test_ctx); } END_TEST diff -Nru sssd-1.15.0/src/tools/sss_cache.c sssd-1.15.2/src/tools/sss_cache.c --- sssd-1.15.0/src/tools/sss_cache.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tools/sss_cache.c 2017-03-15 16:53:24.000000000 +0000 @@ -134,6 +134,10 @@ const char *filter, const char *name); static errno_t update_all_filters(struct cache_tool_ctx *tctx, struct sss_domain_info *dinfo); +static int sysdb_invalidate_user_cache_entry(struct sss_domain_info *domain, + const char *name); +static int sysdb_invalidate_group_cache_entry(struct sss_domain_info *domain, + const char *name); int main(int argc, const char *argv[]) { @@ -533,10 +537,18 @@ ret = sysdb_set_user_attr(domain, name, sys_attrs, SYSDB_MOD_REP); + if (ret != EOK) break; + + /* WARNING: Direct writing to persistent cache!! */ + ret = sysdb_invalidate_user_cache_entry(domain, name); break; case TYPE_GROUP: ret = sysdb_set_group_attr(domain, name, sys_attrs, SYSDB_MOD_REP); + if (ret != EOK) break; + + /* WARNING: Direct writing to persistent cache!! */ + ret = sysdb_invalidate_group_cache_entry(domain, name); break; case TYPE_NETGROUP: ret = sysdb_set_netgroup_attr(domain, name, sys_attrs, @@ -934,3 +946,17 @@ return ENOSYS; #endif /* BUILD_AUTOFS */ } + +/* WARNING: Direct writing to persistent cache!! */ +static int sysdb_invalidate_user_cache_entry(struct sss_domain_info *domain, + const char *name) +{ + return sysdb_invalidate_cache_entry(domain, name, true); +} + +/* WARNING: Direct writing to persistent cache!! */ +static int sysdb_invalidate_group_cache_entry(struct sss_domain_info *domain, + const char *name) +{ + return sysdb_invalidate_cache_entry(domain, name, false); +} diff -Nru sssd-1.15.0/src/tools/sssctl/sssctl_cache.c sssd-1.15.2/src/tools/sssctl/sssctl_cache.c --- sssd-1.15.0/src/tools/sssctl/sssctl_cache.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tools/sssctl/sssctl_cache.c 2017-03-15 16:53:24.000000000 +0000 @@ -434,8 +434,8 @@ struct sss_domain_info **_dom) { TALLOC_CTX *tmp_ctx; - struct sysdb_attrs *entry; - struct sss_domain_info *dom; + struct sysdb_attrs *entry = NULL; + struct sss_domain_info *dom = NULL; const char **attrs; char *sanitized; errno_t ret; diff -Nru sssd-1.15.0/src/tools/sssd_check_socket_activated_responders.c sssd-1.15.2/src/tools/sssd_check_socket_activated_responders.c --- sssd-1.15.0/src/tools/sssd_check_socket_activated_responders.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/tools/sssd_check_socket_activated_responders.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,197 @@ +/* + Authors: + Fabiano Fidêncio + + Copyright (C) 2017 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include "config.h" + +#include +#include +#include + +#include "util/util.h" +#include "confdb/confdb.h" + +static errno_t check_socket_activated_responder(const char *responder) +{ + errno_t ret; + struct ini_cfgfile *file_ctx = NULL; + struct ini_cfgobj *ini_config = NULL; + struct ini_cfgobj *modified_ini_config = NULL; + struct value_obj *vobj = NULL; + struct access_check snip_check; + const char *services; + const char *patterns[] = { "^[^\\.].*\\.conf$", NULL }; + const char *sections[] = { "sssd", NULL }; + const char *str; + TALLOC_CTX *tmp_ctx; + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + return ENOMEM; + } + + ret = ini_config_create(&ini_config); + if (ret != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, "ini_config_create() failed [%d][%s]\n", + ret, sss_strerror(ret)); + goto done; + } + + ret = ini_config_file_open(SSSD_CONFIG_FILE, 0, &file_ctx); + if (ret != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, "ini_config_file_open() failed [%d][%s]\n", + ret, sss_strerror(ret)); + goto done; + } + + /* Using the same flags used by sss_ini_get_config(), which is used to + * load the config file ... */ + ret = ini_config_parse(file_ctx, + INI_STOP_ON_ANY, + INI_MV1S_OVERWRITE, + INI_PARSE_NOWRAP, + ini_config); + if (ret != 0) { + DEBUG(SSSDBG_CRIT_FAILURE, "ini_config_parse() failed [%d][%s]\n", + ret, sss_strerror(ret)); + goto done; + } + + /* And also check the snippets ... */ + snip_check.flags = INI_ACCESS_CHECK_MODE | + INI_ACCESS_CHECK_UID | + INI_ACCESS_CHECK_GID; + snip_check.uid = 0; /* owned by root */ + snip_check.gid = 0; /* owned by root */ + snip_check.mode = S_IRUSR; /* r**------ */ + snip_check.mask = ALLPERMS & ~(S_IWUSR | S_IXUSR); + + ret = ini_config_augment(ini_config, + CONFDB_DEFAULT_CONFIG_DIR, + patterns, + sections, + &snip_check, + INI_STOP_ON_ANY, + INI_MV1S_OVERWRITE, + INI_PARSE_NOWRAP, + INI_MV2S_OVERWRITE, + &modified_ini_config, + NULL, + NULL); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "ini_config_augment failed [%d][%s]\n", + ret, sss_strerror(ret)); + goto done; + } + + if (modified_ini_config != NULL) { + ini_config_destroy(ini_config); + ini_config = modified_ini_config; + } + + ret = ini_get_config_valueobj("sssd", "services", ini_config, + INI_GET_FIRST_VALUE, &vobj); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "ini_get_config_valueobj() failed [%d][%s]\n", + ret, sss_strerror(ret)); + goto done; + } + + /* In case there's no services' line at all, just return EOK. */ + if (vobj == NULL) { + ret = EOK; + goto done; + } + + services = ini_get_string_config_value(vobj, &ret); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "ini_get_string_config_value() failed [%d][%s]\n", + ret, sss_strerror(ret)); + goto done; + } + + str = strstr(services, responder); + if (str != NULL) { + ret = EEXIST; + goto done; + } + + ret = EOK; + +done: + ini_config_file_destroy(file_ctx); + ini_config_destroy(ini_config); + talloc_free(tmp_ctx); + + return ret; +} + +int main(int argc, const char *argv[]) +{ + int ret; + int opt; + poptContext pc; + char *responder = NULL; + + struct poptOption long_options[] = { + POPT_AUTOHELP + {"responders", 'r', POPT_ARG_STRING, &responder, 0, + _("The name of the responder to be checked"), NULL}, + POPT_TABLEEND + }; + + pc = poptGetContext(argv[0], argc, argv, long_options, 0); + while ((opt = poptGetNextOpt(pc)) != -1) { + switch (opt) { + default: + fprintf(stderr, "\nInvalid option %s: %s\n\n", + poptBadOption(pc, 0), poptStrerror(opt)); + poptPrintUsage(pc, stderr, 0); + ret = 1; + goto done; + } + } + + if (responder == NULL) { + poptPrintUsage(pc, stderr, 0); + ret = 1; + goto done; + } + + ret = check_socket_activated_responder(responder); + if (ret != EOK) { + DEBUG(SSSDBG_DEFAULT, + "Misconfiguration found for the %s responder.\n" + "The %s responder has been configured to be socket-activated " + "but it's still mentioned in the services' line in %s.\n" + "Please, consider either adjusting your services' line in %s " + "or disabling the %s's socket by calling:\n" + "\"systemctl disable sssd-%s.socket\"", + responder, responder, SSSD_CONFIG_FILE, SSSD_CONFIG_FILE, + responder, responder); + goto done; + } + + ret = EOK; +done: + poptFreeContext(pc); + return ret; +} diff -Nru sssd-1.15.0/src/tools/sss_groupshow.c sssd-1.15.2/src/tools/sss_groupshow.c --- sssd-1.15.0/src/tools/sss_groupshow.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/tools/sss_groupshow.c 2017-03-15 16:53:24.000000000 +0000 @@ -603,7 +603,7 @@ /*==================The main program=================================== */ -static void print_group_info(struct group_info *g, int level) +static void print_group_info(struct group_info *g, unsigned level) { int i; char padding[512]; @@ -634,7 +634,7 @@ printf(_("\n%1$sMember groups: "), padding); } -static void print_recursive(struct group_info **group_members, int level) +static void print_recursive(struct group_info **group_members, unsigned level) { int i; diff -Nru sssd-1.15.0/src/util/authtok.c sssd-1.15.2/src/util/authtok.c --- sssd-1.15.0/src/util/authtok.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/authtok.c 2017-03-15 16:53:24.000000000 +0000 @@ -196,10 +196,9 @@ case SSS_AUTHTOK_TYPE_2FA: return sss_authtok_set_2fa_from_blob(tok, data, len); case SSS_AUTHTOK_TYPE_SC_PIN: - return sss_authtok_set_sc_pin(tok, (const char*)data, len); + return sss_authtok_set_sc_from_blob(tok, data, len); case SSS_AUTHTOK_TYPE_SC_KEYPAD: - sss_authtok_set_sc_keypad(tok); - return EOK; + return sss_authtok_set_sc_from_blob(tok, data, len); case SSS_AUTHTOK_TYPE_EMPTY: sss_authtok_set_empty(tok); return EOK; @@ -425,6 +424,104 @@ return EOK; } +errno_t sss_authtok_set_sc(struct sss_auth_token *tok, + enum sss_authtok_type type, + const char *pin, size_t pin_len, + const char *token_name, size_t token_name_len, + const char *module_name, size_t module_name_len, + const char *key_id, size_t key_id_len) +{ + int ret; + size_t needed_size; + + if (type != SSS_AUTHTOK_TYPE_SC_PIN + && type != SSS_AUTHTOK_TYPE_SC_KEYPAD) { + DEBUG(SSSDBG_CRIT_FAILURE, "Invalid type [%d].\n", type); + return EINVAL; + } + + sss_authtok_set_empty(tok); + + ret = sss_auth_pack_sc_blob(pin, pin_len, token_name, token_name_len, + module_name, module_name_len, + key_id, key_id_len, NULL, 0, + &needed_size); + if (ret != EAGAIN) { + DEBUG(SSSDBG_OP_FAILURE, "sss_auth_pack_sc_blob failed.\n"); + return ret; + } + + tok->data = talloc_size(tok, needed_size); + if (tok->data == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_size failed.\n"); + return ENOMEM; + } + + ret = sss_auth_pack_sc_blob(pin, pin_len, token_name, token_name_len, + module_name, module_name_len, + key_id, key_id_len, tok->data, + needed_size, &needed_size); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "sss_auth_pack_sc_blob failed.\n"); + talloc_free(tok->data); + return ret; + } + + tok->length = needed_size; + tok->type = type; + + return EOK; +} + +errno_t sss_authtok_set_sc_from_blob(struct sss_auth_token *tok, + const uint8_t *data, + size_t len) +{ + int ret; + char *pin = NULL; + size_t pin_len; + char *token_name = NULL; + size_t token_name_len; + char *module_name = NULL; + size_t module_name_len; + char *key_id = NULL; + size_t key_id_len; + TALLOC_CTX *tmp_ctx; + + if (tok == NULL) { + return EFAULT; + } + if (data == NULL || len == 0) { + return EINVAL; + } + + tmp_ctx = talloc_new(NULL); + if (tmp_ctx == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_new failed.\n"); + ret = ENOMEM; + goto done; + } + + ret = sss_auth_unpack_sc_blob(tmp_ctx, data, len, &pin, &pin_len, + &token_name, &token_name_len, + &module_name, &module_name_len, + &key_id, &key_id_len); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "sss_auth_unpack_sc_blob failed.\n"); + goto done; + } + + ret = sss_authtok_set_sc(tok, SSS_AUTHTOK_TYPE_SC_PIN, pin, pin_len, + token_name, token_name_len, + module_name, module_name_len, + key_id, key_id_len); + +done: + talloc_free(tmp_ctx); + + return ret; +} + errno_t sss_authtok_set_sc_pin(struct sss_auth_token *tok, const char *pin, size_t len) { @@ -435,15 +532,17 @@ return EINVAL; } - sss_authtok_set_empty(tok); - - return sss_authtok_set_string(tok, SSS_AUTHTOK_TYPE_SC_PIN, - "sc_pin", pin, len); + return sss_authtok_set_sc(tok, SSS_AUTHTOK_TYPE_SC_PIN, pin, len, + NULL, 0, NULL, 0, NULL, 0); } -errno_t sss_authtok_get_sc_pin(struct sss_auth_token *tok, const char **pin, +errno_t sss_authtok_get_sc_pin(struct sss_auth_token *tok, const char **_pin, size_t *len) { + int ret; + const char *pin = NULL; + size_t pin_len; + if (!tok) { return EFAULT; } @@ -451,9 +550,16 @@ case SSS_AUTHTOK_TYPE_EMPTY: return ENOENT; case SSS_AUTHTOK_TYPE_SC_PIN: - *pin = (const char *)tok->data; + ret = sss_authtok_get_sc(tok, &pin, &pin_len, + NULL, NULL, NULL, NULL, NULL, NULL); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, "sss_authtok_get_sc failed.\n"); + return ret; + } + + *_pin = pin; if (len) { - *len = tok->length - 1; + *len = pin_len; } return EOK; case SSS_AUTHTOK_TYPE_PASSWORD: @@ -468,10 +574,202 @@ void sss_authtok_set_sc_keypad(struct sss_auth_token *tok) { - if (!tok) { + if (tok == NULL) { return; } + sss_authtok_set_empty(tok); tok->type = SSS_AUTHTOK_TYPE_SC_KEYPAD; } + +errno_t sss_auth_unpack_sc_blob(TALLOC_CTX *mem_ctx, + const uint8_t *blob, size_t blob_len, + char **pin, size_t *_pin_len, + char **token_name, size_t *_token_name_len, + char **module_name, size_t *_module_name_len, + char **key_id, size_t *_key_id_len) +{ + size_t c; + uint32_t pin_len; + uint32_t token_name_len; + uint32_t module_name_len; + uint32_t key_id_len; + + c = 0; + + if (blob == NULL || blob_len == 0) { + pin_len = 0; + token_name_len = 0; + module_name_len = 0; + key_id_len = 0; + } else if (blob_len > 0 + && strnlen((const char *) blob, blob_len) == blob_len - 1) { + pin_len = blob_len; + token_name_len = 0; + module_name_len = 0; + key_id_len = 0; + } else { + if (blob_len < 4 * sizeof(uint32_t)) { + DEBUG(SSSDBG_CRIT_FAILURE, "Blob too small.\n"); + return EINVAL; + } + + SAFEALIGN_COPY_UINT32(&pin_len, blob, &c); + SAFEALIGN_COPY_UINT32(&token_name_len, blob + c, &c); + SAFEALIGN_COPY_UINT32(&module_name_len, blob + c, &c); + SAFEALIGN_COPY_UINT32(&key_id_len, blob + c, &c); + + if (blob_len != 4 * sizeof(uint32_t) + pin_len + token_name_len + + module_name_len + key_id_len) { + DEBUG(SSSDBG_CRIT_FAILURE, "Blob size mismatch.\n"); + return EINVAL; + } + } + + if (pin_len != 0) { + *pin = talloc_strndup(mem_ctx, (const char *) blob + c, pin_len); + if (*pin == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strndup failed.\n"); + return ENOMEM; + } + } else { + *pin = NULL; + } + + if (token_name_len != 0) { + *token_name = talloc_strndup(mem_ctx, (const char *) blob + c + pin_len, + token_name_len); + if (*token_name == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strndup failed.\n"); + talloc_free(*pin); + return ENOMEM; + } + } else { + *token_name = NULL; + } + + if (module_name_len != 0) { + *module_name = talloc_strndup(mem_ctx, + (const char *) blob + c + pin_len + + token_name_len, + module_name_len); + if (*module_name == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strndup failed.\n"); + talloc_free(*pin); + talloc_free(*token_name); + return ENOMEM; + } + } else { + *module_name = NULL; + } + + if (key_id_len != 0) { + *key_id = talloc_strndup(mem_ctx, + (const char *) blob + c + pin_len + + token_name_len + + module_name_len, + key_id_len); + if (*key_id == NULL) { + DEBUG(SSSDBG_OP_FAILURE, "talloc_strndup failed.\n"); + talloc_free(*pin); + talloc_free(*token_name); + talloc_free(*module_name); + return ENOMEM; + } + } else { + *key_id = NULL; + } + + /* Re-calculate length for the case where \0 was missing in the blob */ + if (_pin_len != NULL) { + *_pin_len = (*pin == NULL) ? 0 : strlen(*pin); + } + if (_token_name_len != NULL) { + *_token_name_len = (*token_name == NULL) ? 0 : strlen(*token_name); + } + if (_module_name_len != NULL) { + *_module_name_len = (*module_name == NULL) ? 0 : strlen(*module_name); + } + + if (_key_id_len != NULL) { + *_key_id_len = (*key_id == NULL) ? 0 : strlen(*key_id); + } + + return EOK; +} + +errno_t sss_authtok_get_sc(struct sss_auth_token *tok, + const char **_pin, size_t *_pin_len, + const char **_token_name, size_t *_token_name_len, + const char **_module_name, size_t *_module_name_len, + const char **_key_id, size_t *_key_id_len) +{ + size_t c = 0; + size_t pin_len; + size_t token_name_len; + size_t module_name_len; + size_t key_id_len; + uint32_t tmp_uint32_t; + + if (!tok) { + return EFAULT; + } + + if (tok->type != SSS_AUTHTOK_TYPE_SC_PIN + && tok->type != SSS_AUTHTOK_TYPE_SC_KEYPAD) { + return (tok->type == SSS_AUTHTOK_TYPE_EMPTY) ? ENOENT : EACCES; + } + + if (tok->length < 4 * sizeof(uint32_t)) { + DEBUG(SSSDBG_CRIT_FAILURE, "Blob too small.\n"); + return EINVAL; + } + + SAFEALIGN_COPY_UINT32(&tmp_uint32_t, tok->data, &c); + pin_len = tmp_uint32_t - 1; + SAFEALIGN_COPY_UINT32(&tmp_uint32_t, tok->data + c, &c); + token_name_len = tmp_uint32_t - 1; + SAFEALIGN_COPY_UINT32(&tmp_uint32_t, tok->data + c, &c); + module_name_len = tmp_uint32_t -1; + SAFEALIGN_COPY_UINT32(&tmp_uint32_t, tok->data + c, &c); + key_id_len = tmp_uint32_t -1; + + if (tok->length != 4 * sizeof(uint32_t) + 4 + pin_len + token_name_len + + module_name_len + key_id_len) { + DEBUG(SSSDBG_CRIT_FAILURE, "Blob size mismatch.\n"); + return EINVAL; + } + + if (_pin != NULL) { + *_pin = (const char *) tok->data + c; + } + if (_pin_len != NULL) { + *_pin_len = pin_len; + } + + if (_token_name != NULL) { + *_token_name = (const char *) tok->data + c + pin_len + 1; + } + if (_token_name_len != NULL) { + *_token_name_len = token_name_len; + } + + if (_module_name != NULL) { + *_module_name = (const char *) tok->data + c + pin_len + 1 + + token_name_len + 1; + } + if (_module_name_len != NULL) { + *_module_name_len = module_name_len; + } + + if (_key_id != NULL) { + *_key_id = (const char *) tok->data + c + pin_len + 1 + + token_name_len + 1 + module_name_len + 1; + } + if (_key_id_len != NULL) { + *_key_id_len = key_id_len; + } + + return EOK; +} diff -Nru sssd-1.15.0/src/util/authtok.h sssd-1.15.2/src/util/authtok.h --- sssd-1.15.0/src/util/authtok.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/authtok.h 2017-03-15 16:53:24.000000000 +0000 @@ -264,4 +264,88 @@ */ void sss_authtok_set_sc_keypad(struct sss_auth_token *tok); +/** + * @brief Set complete Smart Card authentication blob including PKCS#11 token + * name, module name and key id. + * + * @param tok A pointer to an sss_auth_token + * @param type Authentication token type, may be + * SSS_AUTHTOK_TYPE_SC_PIN or SSS_AUTHTOK_TYPE_SC_KEYPAD + * @param pin A pointer to a const char *, that will point to a null + * terminated string containing the pin + * @param pin_len The length of the pin string, if set to 0 it will be + * calculated + * @param token_name A pointer to a const char *, that will point to a null + * terminated string containing the PKCS#11 token name + * @param token_name_len The length of the token name string, if set to 0 it + * will be calculated + * @param module_name A pointer to a const char *, that will point to a null + * terminated string containing the PKCS#11 module name + * @param module_name_len The length of the module name string, if set to 0 it + * will be calculated + * @param key_id A pointer to a const char *, that will point to a null + * terminated string containing the PKCS#11 key id + * @param key_id_len The length of the key id string, if set to 0 it will be + * calculated + * + * @return EOK on success + * EINVAL unexpected or inval input + * ENOMEM memory allocation error + */ +errno_t sss_authtok_set_sc(struct sss_auth_token *tok, + enum sss_authtok_type type, + const char *pin, size_t pin_len, + const char *token_name, size_t token_name_len, + const char *module_name, size_t module_name_len, + const char *key_id, size_t key_id_len); +/** + * @brief Set a Smart Card authentication data, replacing any previous data + * + * @param tok A pointer to a sss_auth_token structure to change, also + * used as a memory context to allocate the internal data. + * @param data Smart Card authentication data blob + * @param len The length of the blob + * + * @return EOK on success + * ENOMEM on error + */ +errno_t sss_authtok_set_sc_from_blob(struct sss_auth_token *tok, + const uint8_t *data, + size_t len); + +/** + * @brief Get complete Smart Card authtoken data + * + * @param tok A pointer to a sss_auth_token structure + * @param[out] _pin A pointer to a const char *, that will point to + * a null terminated string holding the pin, + * may not be modified or freed + * @param[out] _pin__len Length of the pin + * @param[out] _token_name A pointer to a const char *, that will point to + * a null terminated string holding the PKCS#11 + * token name, may not be modified or freed + * @param[out] _token_name_len Length of the PKCS#11 token name + * @param[out] _module_name A pointer to a const char *, that will point to + * a null terminated string holding the PKCS#11 + * module name, may not be modified or freed + * @param[out] _module_name_len Length of the PKCS#11 module name + * @param[out] _key_id A pointer to a const char *, that will point to + * a null terminated string holding the PKCS#11 + * key id, may not be modified or freed + * @param[out] _key_id_len Length of the PKCS#11 key id + * + * Any of the output pointers may be NULL if the caller does not need the + * specific item. + * + * @return EOK on success + * EFAULT missing token + * EINVAL if input data is not consistent + * ENOENT if the token is empty + * EACCESS if the token is not a Smart Card token + */ +errno_t sss_authtok_get_sc(struct sss_auth_token *tok, + const char **_pin, size_t *_pin_len, + const char **_token_name, size_t *_token_name_len, + const char **_module_name, size_t *_module_name_len, + const char **_key_id, size_t *_key_id_len); #endif /* __AUTHTOK_H__ */ diff -Nru sssd-1.15.0/src/util/authtok-utils.c sssd-1.15.2/src/util/authtok-utils.c --- sssd-1.15.0/src/util/authtok-utils.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/authtok-utils.c 2017-03-15 16:53:24.000000000 +0000 @@ -72,3 +72,94 @@ return 0; } + +errno_t sss_auth_pack_sc_blob(const char *pin, size_t pin_len, + const char *token_name, size_t token_name_len, + const char *module_name, size_t module_name_len, + const char *key_id, size_t key_id_len, + uint8_t *buf, size_t buf_len, + size_t *_sc_blob_len) +{ + size_t c; + uint32_t tmp_uint32_t; + + if (pin_len > UINT32_MAX || token_name_len > UINT32_MAX + || module_name_len > UINT32_MAX + || (pin_len != 0 && pin == NULL) + || (token_name_len != 0 && token_name == NULL) + || (module_name_len != 0 && module_name == NULL) + || (key_id_len != 0 && key_id == NULL)) { + return EINVAL; + } + + /* A missing pin is ok in the case of a reader with a keyboard */ + if (pin == NULL) { + pin = ""; + pin_len = 0; + } + + if (token_name == NULL) { + token_name = ""; + token_name_len = 0; + } + + if (module_name == NULL) { + module_name = ""; + module_name_len = 0; + } + + if (key_id == NULL) { + key_id = ""; + key_id_len = 0; + } + + /* len should not include the trailing \0 */ + if (pin_len == 0 || pin[pin_len - 1] == '\0') { + pin_len = strlen(pin); + } + + if (token_name_len == 0 || token_name[token_name_len - 1] == '\0') { + token_name_len = strlen(token_name); + } + + if (module_name_len == 0 || module_name[module_name_len - 1] == '\0') { + module_name_len = strlen(module_name); + } + + if (key_id_len == 0 || key_id[key_id_len - 1] == '\0') { + key_id_len = strlen(key_id); + } + + *_sc_blob_len = pin_len + token_name_len + module_name_len + key_id_len + 4 + + 4 * sizeof(uint32_t); + if (buf == NULL || buf_len < *_sc_blob_len) { + return EAGAIN; + } + + c = 0; + tmp_uint32_t = (uint32_t) pin_len + 1; + SAFEALIGN_COPY_UINT32(buf, &tmp_uint32_t, &c); + tmp_uint32_t = (uint32_t) token_name_len + 1; + SAFEALIGN_COPY_UINT32(buf + c, &tmp_uint32_t, &c); + tmp_uint32_t = (uint32_t) module_name_len + 1; + SAFEALIGN_COPY_UINT32(buf + c, &tmp_uint32_t, &c); + tmp_uint32_t = (uint32_t) key_id_len + 1; + SAFEALIGN_COPY_UINT32(buf + c, &tmp_uint32_t, &c); + + memcpy(buf + c, pin, pin_len); + buf[c + pin_len] = '\0'; + c += pin_len + 1; + + memcpy(buf + c, token_name, token_name_len); + buf[c + token_name_len] = '\0'; + c += token_name_len + 1; + + memcpy(buf + c, module_name, module_name_len); + buf[c + module_name_len] = '\0'; + c += module_name_len + 1; + + memcpy(buf + c, key_id, key_id_len); + buf[c + key_id_len] = '\0'; + + return 0; +} diff -Nru sssd-1.15.0/src/util/authtok-utils.h sssd-1.15.2/src/util/authtok-utils.h --- sssd-1.15.0/src/util/authtok-utils.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/authtok-utils.h 2017-03-15 16:53:24.000000000 +0000 @@ -25,6 +25,37 @@ #include "sss_client/sss_cli.h" /** + * @brief Fill memory buffer with Smartcard authentication blob + * + * @param[in] pin PIN, null terminated + * @param[in] pin_len Length of the PIN, if 0 + * strlen() will be called internally + * @param[in] token_name Token name, null terminated + * @param[in] token_name_len Length of the token name, if 0 + * strlen() will be called internally + * @param[in] module_name Name of PKCS#11 module, null terminated + * @param[in] module_name_len Length of the module name, if 0 + * strlen() will be called internally + * @param[in] key_id Key ID of the certificate + * @param[in] key_id_len Length of the key id of the certificate, if 0 + * strlen() will be called internally + * @param[in] buf memory buffer of size buf_len, may be NULL + * @param[in] buf_len size of memory buffer buf + * + * @param[out] _sc_blob len size of the Smartcard authentication blob + * + * @return EOK on success + * EINVAL if input data is not consistent + * EAGAIN if provided buffer is too small, _sc_blob_len + * contains the size needed to store the SC blob + */ +errno_t sss_auth_pack_sc_blob(const char *pin, size_t pin_len, + const char *token_name, size_t token_name_len, + const char *module_name, size_t module_name_len, + const char *key_id, size_t key_id_len, + uint8_t *buf, size_t buf_len, + size_t *_sc_blob_len); +/** * @brief Fill memory buffer with 2FA blob * * @param[in] fa1 First authentication factor, null terminated @@ -67,4 +98,29 @@ const uint8_t *blob, size_t blob_len, char **fa1, size_t *_fa1_len, char **fa2, size_t *_fa2_len); + +/** + * @brief Extract SC data from memory buffer + * + * @param[in] mem_ctx Talloc memory context to allocate the 2FA + * data on + * @param[in] blob Memory buffer containing the 2FA data + * @param[in] blob_len Size of the memory buffer + * @param[out] _pin PIN, null terminated + * @param[out] _pin_len Length of the PIN + * @param[out] _token_name Token name, null terminated + * @param[out] _token_name_len Length of the token name + * @param[out] _module_name Name of PKCS#11 module, null terminated + * @param[out] _module_name_len Length of the module name + * + * @return EOK on success + * EINVAL if input data is not consistent + * EINVAL if no memory can be allocated + */ +errno_t sss_auth_unpack_sc_blob(TALLOC_CTX *mem_ctx, + const uint8_t *blob, size_t blob_len, + char **pin, size_t *_pin_len, + char **token_name, size_t *_token_name_len, + char **module_name, size_t *_module_name_len, + char **key_id, size_t *_key_id_len); #endif /* __AUTHTOK_UTILS_H__ */ diff -Nru sssd-1.15.0/src/util/domain_info_utils.c sssd-1.15.2/src/util/domain_info_utils.c --- sssd-1.15.0/src/util/domain_info_utils.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/domain_info_utils.c 2017-03-15 16:53:24.000000000 +0000 @@ -814,8 +814,25 @@ return ret; } +static const char *domain_state_str(struct sss_domain_info *dom) +{ + switch (dom->state) { + case DOM_ACTIVE: + return "Active"; + case DOM_DISABLED: + return "Disabled"; + case DOM_INACTIVE: + return "Inactive"; + case DOM_INCONSISTENT: + return "Inconsistent"; + } + return "Unknown"; +} + enum sss_domain_state sss_domain_get_state(struct sss_domain_info *dom) { + DEBUG(SSSDBG_TRACE_LIBS, + "Domain %s is %s\n", dom->name, domain_state_str(dom)); return dom->state; } @@ -823,6 +840,8 @@ enum sss_domain_state state) { dom->state = state; + DEBUG(SSSDBG_TRACE_LIBS, + "Domain %s is %s\n", dom->name, domain_state_str(dom)); } bool is_email_from_domain(const char *email, struct sss_domain_info *dom) diff -Nru sssd-1.15.0/src/util/inotify.c sssd-1.15.2/src/util/inotify.c --- sssd-1.15.0/src/util/inotify.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/util/inotify.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,562 @@ +/* + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include +#include +#include +#include +#include + +#include "util/inotify.h" +#include "util/util.h" + +/* For parent directories, we want to know if a file was moved there or + * created there + */ +#define PARENT_DIR_MASK (IN_CREATE | IN_MOVED_TO) + +/* This structure is recreated if we need to rewatch the file and/or + * directory + */ +struct snotify_watch_ctx { + int inotify_fd; /* The inotify_fd */ + struct tevent_fd *tfd; /* Activity on the fd */ + + struct snotify_ctx *snctx; /* Pointer up to the main snotify struct */ + + /* In case we're also watching the parent directory, otherwise -1. + * We keep the variable here and not in snctx so that we're able + * to catch even changes to the parent directory + */ + int dir_wd; + /* The file watch */ + int file_wd; +}; + +/* This is what we call when an event we're interested in arrives */ +struct snotify_cb_ctx { + snotify_cb_fn fn; + const char *fn_name; + uint32_t mask; + void *pvt; +}; + +/* One instance of a callback. We hoard the inotify notifications + * until timer fires in caught_flags + */ +struct snotify_dispatcher { + struct tevent_timer *te; + uint32_t caught_flags; +}; + +struct snotify_ctx { + struct tevent_context *ev; + + /* The full path of the file we're watching, + * its file and directory components */ + const char *filename; + const char *dir_name; + const char *base_name; + + /* Private pointer passed to the callback */ + struct snotify_cb_ctx cb; + /* A singleton callback dispatcher */ + struct snotify_dispatcher *disp; + + /* Internal snotify flags */ + uint16_t snotify_flags; + /* The caller might decide to batch the updates and receive + * them all together with a delay + */ + struct timeval delay; + /* We keep the structure that actually does the work + * separately to be able to reinitialize it when the + * file is recrated or moved to the directory + */ + struct snotify_watch_ctx *wctx; +}; + +struct flg2str { + uint32_t flg; + const char *str; +} flg_table[] = { + { 0x00000001, "IN_ACCESS" }, + { 0x00000002, "IN_MODIFY" }, + { 0x00000004, "IN_ATTRIB" }, + { 0x00000008, "IN_CLOSE_WRITE" }, + { 0x00000010, "IN_CLOSE_NOWRITE" }, + { 0x00000020, "IN_OPEN" }, + { 0x00000040, "IN_MOVED_FROM" }, + { 0x00000080, "IN_MOVED_TO" }, + { 0x00000100, "IN_CREATE" }, + { 0x00000200, "IN_DELETE" }, + { 0x00000400, "IN_DELETE_SELF" }, + { 0x00000800, "IN_MOVE_SELF" }, + { 0x00002000, "IN_UNMOUNT" }, + { 0x00004000, "IN_Q_OVERFLOW" }, + { 0x00008000, "IN_IGNORED" }, + { 0x01000000, "IN_ONLYDIR" }, + { 0x02000000, "IN_DONT_FOLLOW" }, + { 0x04000000, "IN_EXCL_UNLINK" }, + { 0x20000000, "IN_MASK_ADD" }, + { 0x40000000, "IN_ISDIR" }, + { 0x80000000, "IN_ONESHOT" }, + { 0, NULL }, +}; + +#if 0 +static void debug_flags(uint32_t flags, const char *file) +{ + char msgbuf[1024]; + size_t total = 0; + + if (!DEBUG_IS_SET(SSSDBG_TRACE_LIBS)) { + return; + } + + for (int i = 0; flg_table[i].flg != 0; i++) { + if (flags & flg_table[i].flg) { + total += snprintf(msgbuf+total, + sizeof(msgbuf)-total, + "%s ", flg_table[i].str); + } + } + + if (total == 0) { + snprintf(msgbuf, sizeof(msgbuf), "NONE\n"); + } + DEBUG(SSSDBG_TRACE_LIBS, "Inotify event: %s on %s\n", msgbuf, file); +} +#endif + +static void snotify_process_callbacks(struct tevent_context *ev, + struct tevent_timer *te, + struct timeval t, + void *ptr) +{ + struct snotify_ctx *snctx; + + snctx = talloc_get_type(ptr, struct snotify_ctx); + if (snctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Bad pointer\n"); + return; + } + + snctx->cb.fn(snctx->filename, + snctx->disp->caught_flags, + snctx->cb.pvt); + + talloc_zfree(snctx->disp); +} + +static struct snotify_dispatcher *create_dispatcher(struct snotify_ctx *snctx) +{ + struct snotify_dispatcher *disp; + struct timeval tv; + + disp = talloc_zero(snctx, struct snotify_dispatcher); + if (disp == NULL) { + return NULL; + } + + gettimeofday(&tv, NULL); + tv.tv_sec += snctx->delay.tv_sec; + tv.tv_usec += snctx->delay.tv_usec; + + DEBUG(SSSDBG_TRACE_FUNC, + "Running a timer with delay %ld.%ld\n", + (unsigned long) snctx->delay.tv_sec, + (unsigned long) snctx->delay.tv_usec); + + disp->te = tevent_add_timer(snctx->ev, disp, tv, + snotify_process_callbacks, + snctx); + if (disp->te == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Unable to queue file update!\n"); + talloc_free(disp); + return NULL; + } + + return disp; +} + +static struct snotify_dispatcher *get_dispatcher(struct snotify_ctx *snctx) +{ + if (snctx->disp != NULL) { + DEBUG(SSSDBG_TRACE_INTERNAL, "Reusing existing dispatcher\n"); + return snctx->disp; + } + + return create_dispatcher(snctx); +} + +static errno_t dispatch_event(struct snotify_ctx *snctx, + uint32_t ev_flags) +{ + struct snotify_dispatcher *disp; + + if ((snctx->cb.mask & ev_flags) == 0) { + return EOK; + } + + disp = get_dispatcher(snctx); + if (disp == NULL) { + return ENOMEM; + } + + disp->caught_flags |= ev_flags; + DEBUG(SSSDBG_TRACE_FUNC, + "Dispatched an event with combined flags 0x%X\n", + disp->caught_flags); + + snctx->disp = disp; + return EOK; +} + +static errno_t process_dir_event(struct snotify_ctx *snctx, + const struct inotify_event *in_event) +{ + errno_t ret; + + DEBUG(SSSDBG_TRACE_ALL, "inotify name: %s\n", in_event->name); + if (in_event->len == 0 \ + || strcmp(in_event->name, snctx->base_name) != 0) { + DEBUG(SSSDBG_TRACE_FUNC, "Not interested in %s\n", in_event->name); + return EOK; + } + + DEBUG(SSSDBG_TRACE_FUNC, + "received notification for watched file [%s] under %s\n", + in_event->name, snctx->dir_name); + + /* file the event for the file to see if the caller is interested in it */ + ret = dispatch_event(snctx, in_event->mask); + if (ret == EOK) { + /* Tells the outer loop to re-initialize flags once the loop is finished. + * However, finish reading all the events first to make sure we don't + * miss any + */ + return EAGAIN; + } + + return ret; +} + +static errno_t process_file_event(struct snotify_ctx *snctx, + const struct inotify_event *in_event) +{ + if (in_event->mask & IN_IGNORED) { + DEBUG(SSSDBG_TRACE_FUNC, + "Will reopen moved or deleted file %s\n", snctx->filename); + /* Notify caller of the event, don't quit */ + return EAGAIN; + } + + DEBUG(SSSDBG_TRACE_FUNC, + "received notification for watched file %s\n", snctx->filename); + + return dispatch_event(snctx, in_event->mask); +} + +static errno_t snotify_rewatch(struct snotify_ctx *snctx); + +static void snotify_internal_cb(struct tevent_context *ev, + struct tevent_fd *fde, + uint16_t flags, + void *data) +{ + char ev_buf[sizeof(struct inotify_event) + PATH_MAX]; + const char *ptr; + const struct inotify_event *in_event; + struct snotify_ctx *snctx; + ssize_t len; + errno_t ret; + bool rewatch; + + snctx = talloc_get_type(data, struct snotify_ctx); + if (snctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Bad pointer\n"); + return; + } + + while (1) { + len = read(snctx->wctx->inotify_fd, ev_buf, sizeof(ev_buf)); + if (len == -1) { + ret = errno; + if (ret != EAGAIN) { + DEBUG(SSSDBG_OP_FAILURE, + "Cannot read inotify_event [%d]: %s\n", + ret, strerror(ret)); + } else { + DEBUG(SSSDBG_TRACE_INTERNAL, "All inotify events processed\n"); + } + return; + } + + if ((size_t) len < sizeof(struct inotify_event)) { + /* Did not even read the required amount of data, move on.. */ + continue; + } + + for (ptr = ev_buf; + ptr < ev_buf + len; + ptr += sizeof(struct inotify_event) + in_event->len) { + + in_event = (const struct inotify_event *) ptr; + + //debug_flags(in_event->mask, in_event->name); + + if (snctx->wctx->dir_wd == in_event->wd) { + ret = process_dir_event(snctx, in_event); + if (ret == EAGAIN) { + rewatch = true; + /* Continue with the loop and read all the events from + * this descriptor first, then rewatch when done + */ + } else if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "Failed to process inotify event\n"); + continue; + } + } else if (snctx->wctx->file_wd == in_event->wd) { + ret = process_file_event(snctx, in_event); + if (ret != EOK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "Failed to process inotify event\n"); + continue; + } + } else { + DEBUG(SSSDBG_MINOR_FAILURE, + "Uknown watch %d\n", in_event->wd); + ret = EOK; + } + } + } + + if (rewatch) { + ret = snotify_rewatch(snctx); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, "Failed to re-set watch"); + } + } +} + +static int watch_ctx_destructor(void *memptr) +{ + struct snotify_watch_ctx *wctx; + + wctx = talloc_get_type(memptr, struct snotify_watch_ctx); + if (wctx == NULL) { + DEBUG(SSSDBG_FATAL_FAILURE, "Bad pointer\n"); + return 1; + } + + /* We don't need to close the watches explicitly. man 7 inotify says: + * When all file descriptors referring to an inotify instance + * have been closed (using close(2)), the underlying object + * and its resources are freed for reuse by the kernel; all + * associated watches are automatically freed. + */ + if (wctx->inotify_fd != -1) { + DEBUG(SSSDBG_TRACE_INTERNAL, + "Closing inotify fd %d\n", wctx->inotify_fd); + close(wctx->inotify_fd); + } + + return 0; +} + +static errno_t copy_filenames(struct snotify_ctx *snctx, + const char *filename) +{ + char *p; + char fcopy[PATH_MAX]; + + strncpy(fcopy, filename, sizeof(fcopy)); + fcopy[PATH_MAX-1] = '\0'; + + p = dirname(fcopy); + if (p == NULL) { + return EIO; + } + + snctx->dir_name = talloc_strdup(snctx, p); + if (snctx->dir_name == NULL) { + return ENOMEM; + } + + strncpy(fcopy, filename, sizeof(fcopy)); + fcopy[PATH_MAX-1] = '\0'; + + p = basename(fcopy); + if (p == NULL) { + return EIO; + } + + snctx->base_name = talloc_strdup(snctx, p); + if (snctx->base_name == NULL) { + return ENOMEM; + } + + snctx->filename = talloc_strdup(snctx, filename); + if (snctx->filename == NULL) { + return ENOMEM; + } + + return EOK; +} + +static struct snotify_watch_ctx *snotify_watch(struct snotify_ctx *snctx, + uint32_t mask) +{ + struct snotify_watch_ctx *wctx; + errno_t ret; + + wctx = talloc_zero(snctx, struct snotify_watch_ctx); + if (wctx == NULL) { + return NULL; + } + wctx->inotify_fd = -1; + wctx->dir_wd = -1; + wctx->file_wd = -1; + wctx->snctx = snctx; + talloc_set_destructor((TALLOC_CTX *)wctx, watch_ctx_destructor); + + wctx->inotify_fd = inotify_init1(IN_NONBLOCK | IN_CLOEXEC); + if (wctx->inotify_fd == -1) { + ret = errno; + DEBUG(SSSDBG_CRIT_FAILURE, + "inotify_init1 failed: %d: %s\n", ret, strerror(ret)); + goto fail; + } + DEBUG(SSSDBG_TRACE_INTERNAL, "Opened inotify fd %d\n", wctx->inotify_fd); + + wctx->tfd = tevent_add_fd(snctx->ev, wctx, wctx->inotify_fd, + TEVENT_FD_READ, snotify_internal_cb, + snctx); + if (wctx->tfd == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot add tevent fd watch for %s\n", + snctx->filename); + goto fail; + } + + wctx->file_wd = inotify_add_watch(wctx->inotify_fd, snctx->filename, mask); + if (wctx->file_wd == -1) { + ret = errno; + if (ret != ENOENT || (!(snctx->snotify_flags & SNOTIFY_WATCH_DIR))) { + DEBUG(SSSDBG_MINOR_FAILURE, + "inotify_add_watch failed [%d]: %s\n", + ret, strerror(ret)); + goto fail; + } + } + DEBUG(SSSDBG_TRACE_INTERNAL, "Opened file watch %d\n", wctx->file_wd); + + if (snctx->snotify_flags & SNOTIFY_WATCH_DIR) { + /* Create a watch for the parent directory. This is useful for cases + * where we start watching a file before it's created, but still want + * a notification when the file is moved in + */ + wctx->dir_wd = inotify_add_watch(wctx->inotify_fd, + snctx->dir_name, PARENT_DIR_MASK); + if (wctx->dir_wd == -1) { + ret = errno; + DEBUG(SSSDBG_MINOR_FAILURE, + "inotify_add_watch failed [%d]: %s\n", + ret, strerror(ret)); + goto fail; + } + DEBUG(SSSDBG_TRACE_INTERNAL, + "Opened directory watch %d\n", wctx->dir_wd); + } + + return wctx; + +fail: + talloc_free(wctx); + return NULL; +} + +static errno_t snotify_rewatch(struct snotify_ctx *snctx) +{ + talloc_free(snctx->wctx); + + snctx->wctx = snotify_watch(snctx, snctx->cb.mask); + if (snctx->wctx == NULL) { + return ENOMEM; + } + + DEBUG(SSSDBG_TRACE_FUNC, "Recreated watch\n"); + return EOK; +} + +struct snotify_ctx *_snotify_create(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + uint16_t snotify_flags, + const char *filename, + struct timeval *delay, + uint32_t mask, + snotify_cb_fn fn, + const char *fn_name, + void *pvt) +{ + errno_t ret; + struct snotify_ctx *snctx; + + snctx = talloc_zero(mem_ctx, struct snotify_ctx); + if (snctx == NULL) { + return NULL; + } + + snctx->ev = ev; + snctx->snotify_flags = snotify_flags; + if (delay) { + snctx->delay.tv_sec = delay->tv_sec; + snctx->delay.tv_usec = delay->tv_usec; + } + + snctx->cb.fn = fn; + snctx->cb.fn_name = fn_name; + snctx->cb.mask = mask; + snctx->cb.pvt = pvt; + + ret = copy_filenames(snctx, filename); + if (ret != EOK) { + talloc_free(snctx); + return NULL; + } + + snctx->wctx = snotify_watch(snctx, mask); + if (snctx->wctx == NULL) { + talloc_free(snctx); + return NULL; + } + + DEBUG(SSSDBG_TRACE_FUNC, + "Added a watch for %s with inotify flags 0x%X " + "internal flags 0x%X " + "using function %s after delay %ld.%ld\n", + snctx->filename, + mask, + snotify_flags, + fn_name, + (unsigned long) snctx->delay.tv_sec, + (unsigned long) snctx->delay.tv_usec); + + return snctx; +} diff -Nru sssd-1.15.0/src/util/inotify.h sssd-1.15.2/src/util/inotify.h --- sssd-1.15.0/src/util/inotify.h 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/util/inotify.h 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,61 @@ +/* + Copyright (C) 2016 Red Hat + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#ifndef __INOTIFY_H_ +#define __INOTIFY_H_ + +#include +#include +#include + + +typedef int (*snotify_cb_fn)(const char *filename, + uint32_t caught_flags, + void *pvt); + +#define SNOTIFY_WATCH_DIR 0x0001 + +/* + * Set up an inotify watch for file at filename. When an inotify + * event is caught, it must match the "mask" parameter. The watch + * would then call snotify_cb_fn() and include the caught flags. + * + * If snotify_flags includes SNOTIFY_WATCH_DIR, also the parent directory + * of this file would be watched to cover cases where the file might not + * exist when the watch is created. + * + * If you wish to batch inotify requests to avoid hammering the caller + * with several successive requests, use the delay parameter. The function + * would then only send invoke the callback after the delay and the caught + * flags would be OR-ed. By default, the callback is invoked immediately. + * + * Use the pvt parameter to pass a private context to the function + */ +struct snotify_ctx *_snotify_create(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + uint16_t snotify_flags, + const char *filename, + struct timeval *delay, + uint32_t mask, + snotify_cb_fn fn, + const char *fn_name, + void *pvt); + +#define snotify_create(mem_ctx, ev, snotify_flags, filename, delay, mask, fn, pvt) \ + _snotify_create(mem_ctx, ev, snotify_flags, filename, delay, mask, fn, #fn, pvt); + +#endif /* __INOTIFY_H_ */ diff -Nru sssd-1.15.0/src/util/murmurhash3.c sssd-1.15.2/src/util/murmurhash3.c --- sssd-1.15.0/src/util/murmurhash3.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/murmurhash3.c 2017-03-15 16:53:24.000000000 +0000 @@ -90,14 +90,17 @@ switch (len & 3) { case 3: k1 ^= tail[2] << 16; + SSS_ATTRIBUTE_FALLTHROUGH; case 2: k1 ^= tail[1] << 8; + SSS_ATTRIBUTE_FALLTHROUGH; case 1: k1 ^= tail[0]; k1 *= c1; k1 = rotl(k1, 15); k1 *= c2; h1 ^= k1; + break; default: break; } diff -Nru sssd-1.15.0/src/util/sss_iobuf.c sssd-1.15.2/src/util/sss_iobuf.c --- sssd-1.15.0/src/util/sss_iobuf.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/util/sss_iobuf.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,205 @@ +#include + +#include "util/util.h" +#include "util/sss_iobuf.h" + +/** + * @brief The iobuf structure that holds the data, its capacity and + * a pointer to the data. + * + * @see sss_iobuf_init_empty() + * @see sss_iobuf_init_readonly() + */ +struct sss_iobuf { + uint8_t *data; /* Start of the data buffer */ + + size_t dp; /* Data pointer */ + size_t size; /* Current data buffer size */ + size_t capacity; /* Maximum capacity */ +}; + +struct sss_iobuf *sss_iobuf_init_empty(TALLOC_CTX *mem_ctx, + size_t size, + size_t capacity) +{ + struct sss_iobuf *iobuf; + uint8_t *buf; + + iobuf = talloc_zero(mem_ctx, struct sss_iobuf); + if (iobuf == NULL) { + return NULL; + } + + buf = talloc_zero_array(iobuf, uint8_t, size); + if (buf == NULL) { + talloc_free(iobuf); + return NULL; + } + + if (capacity == 0) { + capacity = SIZE_MAX / 2; + } + + iobuf->data = buf; + iobuf->size = size; + iobuf->capacity = capacity; + iobuf->dp = 0; + + return iobuf; +} + +struct sss_iobuf *sss_iobuf_init_readonly(TALLOC_CTX *mem_ctx, + uint8_t *data, + size_t size) +{ + struct sss_iobuf *iobuf; + + iobuf = sss_iobuf_init_empty(mem_ctx, size, size); + if (iobuf == NULL) { + return NULL; + } + + if (data != NULL) { + memcpy(iobuf->data, data, size); + } + + return iobuf; +} + +size_t sss_iobuf_get_len(struct sss_iobuf *iobuf) +{ + if (iobuf == NULL) { + return 0; + } + + return iobuf->dp; +} + +size_t sss_iobuf_get_capacity(struct sss_iobuf *iobuf) +{ + if (iobuf == NULL) { + return 0; + } + + return iobuf->capacity; +} + +size_t sss_iobuf_get_size(struct sss_iobuf *iobuf) +{ + if (iobuf == NULL) { + return 0; + } + + return iobuf->size; +} + +uint8_t *sss_iobuf_get_data(struct sss_iobuf *iobuf) +{ + if (iobuf == NULL) { + return NULL; + } + + return iobuf->data; +} + +static size_t iobuf_get_len(struct sss_iobuf *iobuf) +{ + if (iobuf == NULL) { + return 0; + } + + return (iobuf->size - iobuf->dp); +} + +static errno_t ensure_bytes(struct sss_iobuf *iobuf, + size_t nbytes) +{ + size_t wantsize; + size_t newsize; + uint8_t *newdata; + + if (iobuf == NULL) { + return EINVAL; + } + + wantsize = iobuf->dp + nbytes; + if (wantsize <= iobuf->size) { + /* Enough space already */ + return EOK; + } + + /* Else, try to extend the iobuf */ + if (wantsize > iobuf->capacity) { + /* We will never grow past capacity */ + return ENOBUFS; + } + + /* Double the size until we add at least nbytes, but stop if we double past capacity */ + for (newsize = iobuf->size; + (newsize < wantsize) && (newsize < iobuf->capacity); + newsize *= 2) + ; + + if (newsize > iobuf->capacity) { + newsize = iobuf->capacity; + } + + newdata = talloc_realloc(iobuf, iobuf->data, uint8_t, newsize); + if (newdata == NULL) { + return ENOMEM; + } + + iobuf->data = newdata; + iobuf->size = newsize; + + return EOK; +} + +static inline uint8_t *iobuf_ptr(struct sss_iobuf *iobuf) +{ + return iobuf->data + iobuf->dp; +} + +errno_t sss_iobuf_read(struct sss_iobuf *iobuf, + size_t len, + uint8_t *_buf, + size_t *_read) +{ + size_t remaining; + + if (iobuf == NULL || _buf == NULL) { + return EINVAL; + } + + remaining = iobuf_get_len(iobuf); + if (len > remaining) { + len = remaining; + } + + safealign_memcpy(_buf, iobuf_ptr(iobuf), len, &iobuf->dp); + if (_read != NULL) { + *_read = len; + } + + return EOK; +} + +errno_t sss_iobuf_write_len(struct sss_iobuf *iobuf, + uint8_t *buf, + size_t len) +{ + errno_t ret; + + if (iobuf == NULL || buf == NULL) { + return EINVAL; + } + + ret = ensure_bytes(iobuf, len); + if (ret != EOK) { + return ret; + } + + safealign_memcpy(iobuf_ptr(iobuf), buf, len, &iobuf->dp); + + return EOK; +} diff -Nru sssd-1.15.0/src/util/sss_iobuf.h sssd-1.15.2/src/util/sss_iobuf.h --- sssd-1.15.0/src/util/sss_iobuf.h 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/util/sss_iobuf.h 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,118 @@ +#ifndef __SSS_IOBUF_H_ +#define __SSS_IOBUF_H_ + +#include +#include +#include + +#include "util/util_errors.h" + +struct sss_iobuf; + +/* + * @brief Allocate an empty IO buffer + * + * @param[in] mem_ctx The talloc context that owns the iobuf + * + * When this buffer is written into, but the capacity is exceeded, the write + * function will return an error. + * + * @param[in] mem_ctx The talloc context that owns the iobuf + * @param[in] size The size of the data buffer + * @param[in] capacity The maximum capacity the buffer can grow into. + * Use 0 for an 'unlimited' buffer that will grow + * until SIZE_MAX/2. + * + * @return The newly created buffer on success or NULL on an error. + * + */ +struct sss_iobuf *sss_iobuf_init_empty(TALLOC_CTX *mem_ctx, + size_t size, + size_t capacity); + +/* + * @brief Allocate an IO buffer with a fixed size + * + * This function is useful for parsing an input buffer from an existing + * buffer pointed to by data. + * + * The iobuf does not assume ownership of the data buffer in talloc terms, + * but copies the data instead. + * + * @param[in] mem_ctx The talloc context that owns the iobuf + * @param[in] data The data to initialize the IO buffer with. This + * data is copied into the iobuf-owned buffer. + * @param[in] size The size of the data buffer + * + * @return The newly created buffer on success or NULL on an error. + */ +struct sss_iobuf *sss_iobuf_init_readonly(TALLOC_CTX *mem_ctx, + uint8_t *data, + size_t size); + +/* + * @brief Returns the number of bytes currently stored in the iobuf + * + * @return The number of bytes (the data pointer offset) + */ +size_t sss_iobuf_get_len(struct sss_iobuf *iobuf); + +/* + * @brief Returns the capacity of the IO buffer + * + * @return The capacity of the IO buffer. Returns zero + * for an unlimited buffer. + */ +size_t sss_iobuf_get_capacity(struct sss_iobuf *iobuf); + +/* + * @brief Returns the current size of the IO buffer + */ +size_t sss_iobuf_get_size(struct sss_iobuf *iobuf); + +/* + * @brief Returns the data pointer of the IO buffer + */ +uint8_t *sss_iobuf_get_data(struct sss_iobuf *iobuf); + +/* + * @brief Read from an IO buffer + * + * Read up to len bytes from an IO buffer. It is not an error to request + * more bytes than the buffer actually has - the function will succeed, but + * return the actual number of bytes read. Reading from an empty buffer just + * returns zero bytes read. + * + * @param[in] iobuf The IO buffer to read from + * @param[in] len The maximum number of bytes to read + * @param[out] _buf The buffer to read data into from iobuf + * @param[out] _read The actual number of bytes read from IO buffer. + * + * @return EOK on success, errno otherwise + */ +errno_t sss_iobuf_read(struct sss_iobuf *iobuf, + size_t len, + uint8_t *_buf, + size_t *_read); + +/* + * @brief Write into an IO buffer + * + * Attempts to write len bytes into the iobuf. If the capacity is exceeded, + * the iobuf module tries to extend the buffer up to the maximum capacity. + * + * If reallocating the internal buffer fails, the data pointers are not + * touched. + * + * @param[in] iobuf The IO buffer to write to + * @param[in] buf The data to write into the buffer + * @param[in] len The number of bytes to write + * + * @return EOK on success, errno otherwise. Notably returns ENOBUFS if + * the buffer capacity is exceeded. + */ +errno_t sss_iobuf_write_len(struct sss_iobuf *iobuf, + uint8_t *buf, + size_t len); + +#endif /* __SSS_IOBUF_H_ */ diff -Nru sssd-1.15.0/src/util/sss_nss.c sssd-1.15.2/src/util/sss_nss.c --- sssd-1.15.0/src/util/sss_nss.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/sss_nss.c 2017-03-15 16:53:24.000000000 +0000 @@ -88,6 +88,23 @@ talloc_free(username); break; + case 'l': + if (homedir_ctx->username == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot expand first letter of user name template " + "because user name is empty.\n"); + goto done; + } + username = sss_output_name(tmp_ctx, homedir_ctx->username, + case_sensitive, 0); + if (username == NULL) { + goto done; + } + + result = talloc_asprintf_append(result, "%s%c", p, username[0]); + talloc_free(username); + break; + case 'U': if (homedir_ctx->uid == 0) { DEBUG(SSSDBG_CRIT_FAILURE, "Cannot expand uid template " diff -Nru sssd-1.15.0/src/util/tev_curl.c sssd-1.15.2/src/util/tev_curl.c --- sssd-1.15.0/src/util/tev_curl.c 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/util/tev_curl.c 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,933 @@ +/* + SSSD + + libcurl tevent integration + + Copyright (C) Red Hat, 2016 + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#include +#include +#include +#include +#include +#include + +#include +#include + +#include + +#include "util/util.h" +#include "util/tev_curl.h" + +#define IOBUF_CHUNK 1024 +#define IOBUF_MAX 4096 + +static bool global_is_curl_initialized; + +/** + * @brief The main structure of the tcurl module. + * + * Use tcurl_init() to initialize it, then pass to the request. + * Should be kept opaque in the future. + * + * @see tcurl_init() + */ +struct tcurl_ctx { + struct tevent_context *ev; + /* See where we set CURLMOPT_TIMERFUNCTION */ + struct tevent_timer *process_timer; + + /* Since we want the API to be non-blocking, all the transfers use + * the curl's multi interface: + * https://ec.haxx.se/libcurl-drive-multi.html + * and then each transfer also uses an easy interface instance for + * the transfer's private data + */ + CURLM *multi_handle; +}; + +/** + * @brief A tevent wrapper around curl socket + */ +struct tcurl_sock { + struct tcurl_ctx *tctx; /* Backchannel to the main context */ + + curl_socket_t sockfd; /* curl socket is an int typedef on Unix */ + struct tevent_fd *fde; /* tevent tracker of the fd events */ +}; + +/** + * @brief A state of one curl transfer + * + * Intentionally breaking the tevent coding style here and making the struct available + * in the whole module so that the structure is available to curl callbacks that + * need to access the state of the transfer. + * + * @see handle_curlmsg_done() + */ +struct tcurl_http_state { + /* Input parameters */ + struct tcurl_ctx *tctx; + const char *socket_path; + const char *url; + int timeout; + struct sss_iobuf *inbuf; + + /* Internal state */ + CURL *http_handle; + struct curl_slist *curl_headers; + + /* Output data */ + struct sss_iobuf *outbuf; + long http_code; +}; + +static errno_t curl_code2errno(CURLcode crv) +{ + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "curl error %d: %s\n", crv, curl_easy_strerror(crv)); + } + + switch (crv) { + /* HTTP error does not fail the whole request, just returns the error + * separately + */ + case CURLE_HTTP_RETURNED_ERROR: + case CURLE_OK: + return EOK; + case CURLE_URL_MALFORMAT: + return EBADMSG; + case CURLE_COULDNT_CONNECT: + return EHOSTUNREACH; + case CURLE_REMOTE_ACCESS_DENIED: + return EACCES; + case CURLE_OUT_OF_MEMORY: + return ENOMEM; + case CURLE_OPERATION_TIMEDOUT: + return ETIMEDOUT; + default: + break; + } + + return EIO; +} + +static errno_t tcurl_global_init(void) +{ + errno_t ret; + + if (global_is_curl_initialized == false) { + ret = curl_global_init(CURL_GLOBAL_ALL); + if (ret != CURLE_OK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot initialize global curl options [%d]\n", ret); + return EIO; + } + } + + global_is_curl_initialized = true; + return EOK; +} + +static const char *http_req2str(enum tcurl_http_request req) +{ + switch (req) { + case TCURL_HTTP_GET: + return "GET"; + case TCURL_HTTP_PUT: + return "PUT"; + case TCURL_HTTP_DELETE: + return "DELETE"; + } + + return "Uknown request type"; +} + +static int curl2tev_flags(int curlflags) +{ + int flags = 0; + + switch (curlflags) { + case CURL_POLL_IN: + flags |= TEVENT_FD_READ; + break; + case CURL_POLL_OUT: + flags |= TEVENT_FD_WRITE; + break; + case CURL_POLL_INOUT: + flags |= (TEVENT_FD_READ | TEVENT_FD_WRITE); + break; + } + + return flags; +} + +static void handle_curlmsg_done(CURLMsg *message) +{ + CURL *easy_handle; + CURLcode crv; + struct tevent_req *req; + char *done_url; + errno_t ret; + struct tcurl_http_state *state; + + easy_handle = message->easy_handle; + if (easy_handle == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "BUG: NULL handle for message %p\n", message); + return; + } + + if (DEBUG_IS_SET(SSSDBG_TRACE_FUNC)) { + crv = curl_easy_getinfo(easy_handle, CURLINFO_EFFECTIVE_URL, &done_url); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_MINOR_FAILURE, + "Cannot get CURLINFO_EFFECTIVE_URL [%d]: %s\n", + crv, curl_easy_strerror(crv)); + /* not fatal since we need this only for debugging */ + } else { + DEBUG(SSSDBG_TRACE_FUNC, "Handled %s\n", done_url); + } + } + + crv = curl_easy_getinfo(easy_handle, CURLINFO_PRIVATE, (void *) &req); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot get CURLINFO_PRIVATE [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return; + } + + state = tevent_req_data(req, struct tcurl_http_state); + if (state == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "BUG: request has no state\n"); + tevent_req_error(req, EFAULT); + return; + } + + ret = curl_code2errno(message->data.result); + if (ret != EOK) { + DEBUG(SSSDBG_OP_FAILURE, + "curl operation failed [%d]: %s\n", ret, sss_strerror(ret)); + tevent_req_error(req, ret); + return; + } + + /* If there was no fatal error, let's read the HTTP error code and mark + * the request as done + */ + crv = curl_easy_getinfo(easy_handle, CURLINFO_RESPONSE_CODE, &state->http_code); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, "Cannot get HTTP status code\n"); + tevent_req_error(req, EFAULT); + return; + } + + tevent_req_done(req); +} + +static void process_curl_activity(struct tcurl_ctx *tctx) +{ + CURLMsg *message; + int pending; + + while ((message = curl_multi_info_read(tctx->multi_handle, &pending))) { + switch (message->msg) { + case CURLMSG_DONE: + handle_curlmsg_done(message); + break; + default: + DEBUG(SSSDBG_TRACE_LIBS, + "noop for curl msg %d\n", message->msg); + break; + } + } +} + +static void tcurlsock_input_available(struct tevent_context *ev, + struct tevent_fd *fde, + uint16_t flags, + void *data) +{ + struct tcurl_ctx *tctx; + struct tcurl_sock *tcs = NULL; + int curl_flags = 0; + int running_handles; + + tcs = talloc_get_type(data, struct tcurl_sock); + if (tcs == NULL) { + return; + } + + if (flags & TEVENT_FD_READ) { + curl_flags |= CURL_CSELECT_IN; + } + if (flags & TEVENT_FD_WRITE) { + curl_flags |= CURL_CSELECT_OUT; + } + + /* multi_socket_action might invalidate tcs when the transfer ends, + * so we need to store tctx separately + */ + tctx = tcs->tctx; + + /* https://ec.haxx.se/libcurl-drive-multi-socket.html */ + curl_multi_socket_action(tcs->tctx->multi_handle, + tcs->sockfd, + curl_flags, + &running_handles); + + process_curl_activity(tctx); +} + +/** + * @brief Registers a curl's socket with tevent + * + * Creates a private structure, registers the socket with tevent and finally + * registers the tcurl_sock structure as a private pointer for the curl + * socket for later + */ +static struct tcurl_sock *register_curl_socket(struct tcurl_ctx *tctx, + curl_socket_t sockfd, + int flags) +{ + struct tcurl_sock *tcs; + + tcs = talloc_zero(tctx, struct tcurl_sock); + if (tcs == NULL) { + return NULL; + } + tcs->sockfd = sockfd; + tcs->tctx = tctx; + + tcs->fde = tevent_add_fd(tctx->ev, tcs, sockfd, flags, + tcurlsock_input_available, tcs); + if (tcs->fde == NULL) { + talloc_free(tcs); + return NULL; + } + + curl_multi_assign(tctx->multi_handle, sockfd, (void *) tcs); + return tcs; +} + +/* libcurl informs the application about socket activity to wait for with + * this callback */ +static int handle_socket(CURL *easy, + curl_socket_t s, + int action, + void *userp, + void *socketp) +{ + struct tcurl_ctx *tctx = NULL; + struct tcurl_sock *tcsock; + int flags = 0; + + tctx = talloc_get_type(userp, struct tcurl_ctx); + if (tctx == NULL) { + return 1; + } + + DEBUG(SSSDBG_TRACE_INTERNAL, + "Activity on curl socket %d socket data %p\n", s, socketp); + + switch (action) { + case CURL_POLL_IN: + case CURL_POLL_OUT: + case CURL_POLL_INOUT: + /* There is some activity on a socket */ + + flags = curl2tev_flags(action); + + if (socketp == NULL) { + /* If this socket doesn't have private data, it must be a new one, + * let's start tracking it with tevent + */ + tcsock = register_curl_socket(tctx, s, flags); + if (tcsock == NULL) { + return 1; + } + } else { + /* If we are already tracking this socket, just set the correct + * flags for tevent and pass the control to tevent + */ + tcsock = talloc_get_type(socketp, struct tcurl_sock); + if (tcsock == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, + "BUG: No private data for socket %d\n", s); + return 1; + } + tevent_fd_set_flags(tcsock->fde, flags); + } + break; + + case CURL_POLL_REMOVE: + /* This socket is being closed by curl, so we need to.. */ + tcsock = talloc_get_type(socketp, struct tcurl_sock); + if (tcsock == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, + "BUG: Trying to remove an untracked socket %d\n", s); + } + /* ..stop tracking the socket with the multi handle.. */ + curl_multi_assign(tctx->multi_handle, s, NULL); + /* ..and stop tracking the fd with tevent */ + talloc_free(tcsock); + break; + + default: + return 1; + } + + return 0; +} + +static void check_curl_timeouts(struct tcurl_ctx *tctx) +{ + int running_handles; + + curl_multi_socket_action(tctx->multi_handle, + CURL_SOCKET_TIMEOUT, + 0, + &running_handles); + DEBUG(SSSDBG_TRACE_ALL, + "Still tracking %d outstanding requests\n", running_handles); + + /* https://ec.haxx.se/libcurl-drive-multi-socket.html */ + process_curl_activity(tctx); +} + +static void check_fd_activity(struct tevent_context *ev, + struct tevent_timer *te, + struct timeval current_time, + void *private_data) +{ + struct tcurl_ctx *tctx = talloc_get_type(private_data, struct tcurl_ctx); + check_curl_timeouts(tctx); +} + +static int schedule_fd_processing(CURLM *multi, + long timeout_ms, + void *userp) +{ + struct timeval tv = { 0, 0 }; + struct tcurl_ctx *tctx = talloc_get_type(userp, struct tcurl_ctx); + + DEBUG(SSSDBG_TRACE_INTERNAL, "timeout_ms: %ld\n", timeout_ms); + + if (timeout_ms == -1) { + /* man curlmopt_timerfunction(3) says: + * A timeout_ms value of -1 means you should delete your timer. + */ + talloc_zfree(tctx->process_timer); + check_curl_timeouts(tctx); + return 0; + } + + tv = tevent_timeval_current_ofs(0, timeout_ms * 1000); + + /* There is only one timer per multi handle, so it makes sense to cancel + * the previous one. + * + * From https://ec.haxx.se/libcurl-drive-multi-socket.html: + * There is only one timeout for the application to handle for the + * entire multi handle, no matter how many individual easy handles + * that have been added or transfers that are in progress. The timer + * callback will be updated with the current nearest-in-time period to + * wait. + */ + talloc_zfree(tctx->process_timer); + tctx->process_timer = tevent_add_timer(tctx->ev, tctx, tv, + check_fd_activity, tctx); + if (tctx->process_timer == NULL) { + return -1; + } + + return 0; +} + +static int tcurl_ctx_destroy(struct tcurl_ctx *ctx) +{ + if (ctx == NULL) { + return 0; + } + + curl_multi_cleanup(ctx->multi_handle); + return 0; +} + +struct tcurl_ctx *tcurl_init(TALLOC_CTX *mem_ctx, + struct tevent_context *ev) +{ + errno_t ret; + struct tcurl_ctx *tctx = NULL; + CURLMcode cmret; + + /* Per the manpage it is safe to call the initialization multiple + * times, as long as this is done before any other curl calls to + * make sure we don't mangle the global curl environment + */ + ret = tcurl_global_init(); + if (ret != EOK) { + goto fail; + } + + tctx = talloc_zero(mem_ctx, struct tcurl_ctx); + if (tctx == NULL) { + goto fail; + } + tctx->ev = ev; + + tctx->multi_handle = curl_multi_init(); + if (tctx->multi_handle == NULL) { + goto fail; + } + talloc_set_destructor(tctx, tcurl_ctx_destroy); + + cmret = curl_multi_setopt(tctx->multi_handle, + CURLMOPT_SOCKETDATA, tctx); + if (cmret != CURLM_OK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot set CURLMOPT_SOCKETDATA [%d]: %s\n", + cmret, curl_multi_strerror(cmret)); + goto fail; + } + + /* + * When there is some activity on a socket associated with the multi + * handle, then the handle_socket() function will be called with the + * global context as private data + */ + cmret = curl_multi_setopt(tctx->multi_handle, + CURLMOPT_SOCKETFUNCTION, handle_socket); + if (cmret != CURLM_OK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot set CURLMOPT_SOCKETFUNCTION [%d]: %s\n", + cmret, curl_multi_strerror(cmret)); + goto fail; + } + + /* When integrated in a mainloop, the curl multi interface must + * kick off the communication in another eventloop tick. Similar + * to the handle_socet function, the tcurl context is passed in + * as private data + */ + cmret = curl_multi_setopt(tctx->multi_handle, + CURLMOPT_TIMERFUNCTION, schedule_fd_processing); + if (cmret != CURLM_OK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot set CURLMOPT_TIMERFUNCTION [%d]: %s\n", + cmret, curl_multi_strerror(cmret)); + goto fail; + } + + cmret = curl_multi_setopt(tctx->multi_handle, CURLMOPT_TIMERDATA, tctx); + if (cmret != CURLM_OK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Cannot set CURLMOPT_TIMERDATA [%d]: %s\n", + cmret, curl_multi_strerror(cmret)); + } + + return tctx; + +fail: + talloc_free(tctx); + return NULL; +} + +static errno_t tcurl_add_headers(struct tcurl_http_state *state, + const char *headers[]); + +static errno_t tcurl_set_options(struct tcurl_http_state *state, + struct tevent_req *req, + enum tcurl_http_request req_type); + +static int tcurl_http_cleanup_handle(TALLOC_CTX *ptr); + +static size_t tcurl_http_write_data(char *ptr, + size_t size, + size_t nmemb, + void *userdata); + +static size_t tcurl_http_read_data(void *ptr, + size_t size, + size_t nmemb, + void *userdata); + +struct tevent_req *tcurl_http_send(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + struct tcurl_ctx *tctx, + enum tcurl_http_request req_type, + const char *socket_path, + const char *url, + const char *headers[], + struct sss_iobuf *req_data, + int timeout) +{ + errno_t ret; + struct tevent_req *req; + struct tcurl_http_state *state; + + req = tevent_req_create(mem_ctx, &state, struct tcurl_http_state); + if (req == NULL) { + return NULL; + } + + state->tctx = tctx; + state->socket_path = socket_path; + state->url = url; + state->inbuf = req_data; + state->timeout = timeout; + + state->outbuf = sss_iobuf_init_empty(state, IOBUF_CHUNK, IOBUF_MAX); + if (state->outbuf == NULL) { + ret = ENOMEM; + goto fail; + } + + DEBUG(SSSDBG_TRACE_FUNC, + "HTTP request %s for URL %s\n", http_req2str(req_type), url); + talloc_set_destructor((TALLOC_CTX *) state, tcurl_http_cleanup_handle); + + /* All transfer share the same multi handle, but each trasfer has its own + * easy handle we can use to set per-transfer options + */ + state->http_handle = curl_easy_init(); + if (state->http_handle == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "curl_easy_init failed\n"); + ret = EIO; + goto fail; + } + + ret = tcurl_add_headers(state, headers); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Failed to set CURL headers [%d]: %s\n", ret, sss_strerror(ret)); + goto fail; + } + + ret = tcurl_set_options(state, req, req_type); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Failed to set CURL options [%d]: %s\n", ret, sss_strerror(ret)); + goto fail; + } + + /* Pass control to the curl handling which will mark the request as + * done + */ + curl_multi_add_handle(tctx->multi_handle, state->http_handle); + + return req; + +fail: + tevent_req_error(req, ret); + tevent_req_post(req, ev); + return req; +} + +static int tcurl_http_cleanup_handle(TALLOC_CTX *ptr) +{ + struct tcurl_http_state *state = talloc_get_type(ptr, struct tcurl_http_state); + + if (state == NULL) { + return 0; + } + + /* it is safe to pass NULL here */ + curl_multi_remove_handle(state->tctx->multi_handle, state->http_handle); + curl_slist_free_all(state->curl_headers); + curl_easy_cleanup(state->http_handle); + return 0; +} + +static errno_t tcurl_add_headers(struct tcurl_http_state *state, + const char *headers[]) +{ + if (headers == NULL) { + return EOK; + } + + /* The headers will be freed later in tcurl_http_cleanup_handle */ + for (int i = 0; headers[i] != NULL; i++) { + state->curl_headers = curl_slist_append(state->curl_headers, headers[i]); + if (state->curl_headers == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Cannot add header %s\n", headers[i]); + return ENOMEM; + } + } + + /* Add a dummy header to suppress libcurl adding Expect 100-continue which + * was causing libcurl to always wait for the internal timeout when sending + * a PUT/PATCH request + */ + state->curl_headers = curl_slist_append(state->curl_headers, "Expect:"); + if (state->curl_headers == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "Cannot add the dummy expect header\n"); + return ENOMEM; + } + + return EOK; +} + +static errno_t tcurl_set_common_options(struct tcurl_http_state *state, + struct tevent_req *req) +{ + CURLcode crv; + + crv = curl_easy_setopt(state->http_handle, + CURLOPT_HTTPHEADER, + state->curl_headers); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set HTTP headers [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return EIO; + } + + crv = curl_easy_setopt(state->http_handle, + CURLOPT_UNIX_SOCKET_PATH, + state->socket_path); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set UNIX socket path %s [%d]: %s\n", + state->socket_path, crv, curl_easy_strerror(crv)); + return EIO; + } + + crv = curl_easy_setopt(state->http_handle, CURLOPT_URL, state->url); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set URL %s [%d]: %s\n", + state->url, crv, curl_easy_strerror(crv)); + return EIO; + } + + crv = curl_easy_setopt(state->http_handle, CURLOPT_PRIVATE, req); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set private data [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return EIO; + } + + if (state->timeout > 0) { + crv = curl_easy_setopt(state->http_handle, + CURLOPT_TIMEOUT, + state->timeout); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set timeout [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return EIO; + } + } + + return EOK; +} + +static errno_t tcurl_set_write_options(struct tcurl_http_state *state) +{ + CURLcode crv; + + crv = curl_easy_setopt(state->http_handle, + CURLOPT_WRITEFUNCTION, + tcurl_http_write_data); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set write function [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return EIO; + } + + crv = curl_easy_setopt(state->http_handle, + CURLOPT_WRITEDATA, + state->outbuf); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set write data [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return EIO; + } + + return EOK; +} + +static errno_t tcurl_set_read_options(struct tcurl_http_state *state) +{ + CURLcode crv; + + crv = curl_easy_setopt(state->http_handle, + CURLOPT_READFUNCTION, + tcurl_http_read_data); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set read function [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return EIO; + } + + crv = curl_easy_setopt(state->http_handle, + CURLOPT_READDATA, + state->inbuf); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set read data [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return EIO; + } + + return EOK; +} + +static errno_t tcurl_set_options(struct tcurl_http_state *state, + struct tevent_req *req, + enum tcurl_http_request req_type) +{ + CURLcode crv; + errno_t ret; + + ret = tcurl_set_common_options(state, req); + if (ret != EOK) { + return ret; + } + + ret = tcurl_set_write_options(state); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Failed to set write callbacks [%d]: %s\n", + ret, sss_strerror(ret)); + return ret; + } + + switch (req_type) { + case TCURL_HTTP_PUT: + /* CURLOPT_UPLOAD enables HTTP_PUT */ + crv = curl_easy_setopt(state->http_handle, + CURLOPT_UPLOAD, + 1L); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set the uplodad option [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return EIO; + } + + /* Causes libcurl to add a sane Content-Length header */ + crv = curl_easy_setopt(state->http_handle, + CURLOPT_INFILESIZE_LARGE, + (curl_off_t) sss_iobuf_get_size(state->inbuf)); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set CURLOPT_INFILESIZE_LARGE [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return EIO; + } + + ret = tcurl_set_read_options(state); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Failed to set write callbacks [%d]: %s\n", + ret, sss_strerror(ret)); + return ret; + } + break; + case TCURL_HTTP_GET: + /* GET just needs the write callbacks, nothing to do here.. */ + break; + case TCURL_HTTP_DELETE: + crv = curl_easy_setopt(state->http_handle, + CURLOPT_CUSTOMREQUEST, + "DELETE"); + if (crv != CURLE_OK) { + DEBUG(SSSDBG_OP_FAILURE, + "Failed to set the uplodad option [%d]: %s\n", + crv, curl_easy_strerror(crv)); + return EIO; + } + break; + default: + return EFAULT; + } + + return EOK; +} + +static size_t tcurl_http_write_data(char *ptr, + size_t size, + size_t nmemb, + void *userdata) +{ + errno_t ret; + size_t realsize = size * nmemb; + struct sss_iobuf *outbuf = talloc_get_type(userdata, struct sss_iobuf); + + DEBUG(SSSDBG_TRACE_INTERNAL, "---> begin libcurl data\n"); + DEBUG(SSSDBG_TRACE_INTERNAL, "%s\n", ptr); + DEBUG(SSSDBG_TRACE_INTERNAL, "<--- end libcurl data\n"); + + ret = sss_iobuf_write_len(outbuf, (uint8_t *) ptr, realsize); + if (ret != EOK) { + DEBUG(SSSDBG_CRIT_FAILURE, + "Failed to write data to buffer [%d]: %s\n", ret, sss_strerror(ret)); + /* zero signifies an EOF */ + return 0; + } + + return realsize; +} + +static size_t tcurl_http_read_data(void *ptr, + size_t size, + size_t nmemb, + void *userdata) +{ + errno_t ret; + size_t readbytes; + struct sss_iobuf *inbuf = (struct sss_iobuf *) userdata; + + if (inbuf == NULL) { + return CURL_READFUNC_ABORT; + } + + ret = sss_iobuf_read(inbuf, size * nmemb, ptr, &readbytes); + if (ret != EOK) { + return CURL_READFUNC_ABORT; + } + + return readbytes; +} + +int tcurl_http_recv(TALLOC_CTX *mem_ctx, + struct tevent_req *req, + int *_http_code, + struct sss_iobuf **_outbuf) +{ + struct tcurl_http_state *state = tevent_req_data(req, struct tcurl_http_state); + + TEVENT_REQ_RETURN_ON_ERROR(req); + + if (_http_code != NULL) { + *_http_code = state->http_code; + } + + if (_outbuf != NULL) { + *_outbuf = talloc_steal(mem_ctx, state->outbuf); + } + + return 0; +} diff -Nru sssd-1.15.0/src/util/tev_curl.h sssd-1.15.2/src/util/tev_curl.h --- sssd-1.15.0/src/util/tev_curl.h 1970-01-01 00:00:00.000000000 +0000 +++ sssd-1.15.2/src/util/tev_curl.h 2017-03-15 16:53:24.000000000 +0000 @@ -0,0 +1,111 @@ +/* + SSSD + + libcurl tevent integration + + Copyright (C) Red Hat, 2016 + + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; either version 3 of the License, or + (at your option) any later version. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program. If not, see . +*/ + +#ifndef __TEV_CURL_H +#define __TEV_CURL_H + +#include +#include + +#include "util/sss_iobuf.h" + +/** + * @brief Supported HTTP requests + */ +enum tcurl_http_request { + TCURL_HTTP_GET, + TCURL_HTTP_PUT, + TCURL_HTTP_DELETE, +}; + +/** + * @brief Initialize the tcurl tevent wrapper. + * + * @returns the opaque context or NULL on error + */ +struct tcurl_ctx *tcurl_init(TALLOC_CTX *mem_ctx, + struct tevent_context *ev); + +/** + * @brief Run a single asynchronous HTTP request. + * + * Currently only UNIX sockets at socket_path are supported. + * + * If the request runs into completion, but reports a failure with HTTP return + * code, the request will be marked as done. Only if the request cannot run at + * all (if e.g. the socket is unreachable), the request will fail completely. + * + * Headers are a NULL-terminated + * array of strings such as: + * static const char *headers[] = { + * "Content-type: application/octet-stream", + * NULL, + * }; + * + * @param[in] mem_ctx The talloc context that owns the iobuf + * @param[in] ev Event loop context + * @param[in] tctx Use tcurl_init to get this context + * @param[in] req_type The request type + * @param[in] socket_path The path to the UNIX socket to forward the + * request to + * @param[in] url The request URL + * @param[in] headers A NULL-terminated array of strings to use + * as additional HTTP headers. Pass NULL if you + * don't need any additional headers. + * @param[in] req_data The HTTP request input data. For some request + * types like DELETE, this is OK to leave as NULL. + * @param[in] timeout The request timeout in seconds. Use 0 if you want + * to use the default libcurl timeout. + * + * @returns A tevent request or NULL on allocation error. On other errors, we + * try to set the errno as event error code and run it to completion so that + * the programmer can use tcurl_http_recv to read the error code. + * + * @see tcurl_init + * @see tcurl_http_recv + */ +struct tevent_req *tcurl_http_send(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + struct tcurl_ctx *tctx, + enum tcurl_http_request req_type, + const char *socket_path, + const char *url, + const char *headers[], + struct sss_iobuf *req_data, + int timeout); + +/** + * @brief Receive a result of a single asynchronous HTTP request. + * + * @param[in] mem_ctx The talloc context that owns the outbuf + * @param[in] req The request previously obtained with + * tcurl_http_send + * @param[out] _http_code The HTTP code that the transfer ended with + * @param[out] _outbuf The raw data the HTTP request returned + * + * @returns The error code of the curl request (not the HTTP code!) + */ +int tcurl_http_recv(TALLOC_CTX *mem_ctx, + struct tevent_req *req, + int *_http_code, + struct sss_iobuf **_outbuf); + +#endif /* __TEV_CURL_H */ diff -Nru sssd-1.15.0/src/util/util.c sssd-1.15.2/src/util/util.c --- sssd-1.15.0/src/util/util.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/util.c 2017-03-15 16:53:24.000000000 +0000 @@ -589,6 +589,16 @@ output[j++] = '5'; output[j++] = 'c'; break; + case '\r': + output[j++] = '\\'; + output[j++] = '0'; + output[j++] = 'd'; + break; + case '\n': + output[j++] = '\\'; + output[j++] = '0'; + output[j++] = 'a'; + break; default: output[j++] = input[i]; } diff -Nru sssd-1.15.0/src/util/util_errors.c sssd-1.15.2/src/util/util_errors.c --- sssd-1.15.0/src/util/util_errors.c 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/util_errors.c 2017-03-15 16:53:24.000000000 +0000 @@ -102,6 +102,8 @@ { "No proxy server for secrets available"}, /* ERR_SEC_NO_PROXY */ { "The maximum number of stored secrets has been reached" }, /* ERR_SEC_INVALID_TOO_MANY_SECRETS */ { "The secret payload size is too large" }, /* ERR_SEC_PAYLOAD_SIZE_IS_TOO_LARGE */ + { "No authentication methode available" }, /* ERR_NO_AUTH_METHOD_AVAILABLE */ + { "Smartcard authentication not supported" }, /* ERR_SC_AUTH_NOT_SUPPORTED */ { "ERR_LAST" } /* ERR_LAST */ }; diff -Nru sssd-1.15.0/src/util/util_errors.h sssd-1.15.2/src/util/util_errors.h --- sssd-1.15.0/src/util/util_errors.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/util_errors.h 2017-03-15 16:53:24.000000000 +0000 @@ -124,6 +124,8 @@ ERR_SEC_NO_PROXY, ERR_SEC_INVALID_TOO_MANY_SECRETS, ERR_SEC_PAYLOAD_SIZE_IS_TOO_LARGE, + ERR_NO_AUTH_METHOD_AVAILABLE, + ERR_SC_AUTH_NOT_SUPPORTED, ERR_LAST /* ALWAYS LAST */ }; diff -Nru sssd-1.15.0/src/util/util_safealign.h sssd-1.15.2/src/util/util_safealign.h --- sssd-1.15.0/src/util/util_safealign.h 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/src/util/util_safealign.h 2017-03-15 16:53:24.000000000 +0000 @@ -124,6 +124,12 @@ safealign_memcpy(dest, CV_MACRO_val, sizeof(char) * length, pctr); \ } while(0) +#define SAFEALIGN_MEMCPY_CHECK(dest, src, srclen, len, pctr) do { \ + if ((*(pctr) + srclen) > (len) || \ + SIZE_T_OVERFLOW(*(pctr), srclen)) { return EINVAL; } \ + safealign_memcpy(dest, src, srclen, pctr); \ +} while(0) + /* Aliases for backward compatibility. */ #define SAFEALIGN_SET_VALUE SAFEALIGN_SETMEM_VALUE #define SAFEALIGN_SET_INT64 SAFEALIGN_SETMEM_INT64 diff -Nru sssd-1.15.0/version.m4 sssd-1.15.2/version.m4 --- sssd-1.15.0/version.m4 2017-01-25 15:39:16.000000000 +0000 +++ sssd-1.15.2/version.m4 2017-03-15 16:53:24.000000000 +0000 @@ -1,5 +1,5 @@ # Primary version number -m4_define([VERSION_NUMBER], [1.15.0]) +m4_define([VERSION_NUMBER], [1.15.2]) # If the PRERELEASE_VERSION_NUMBER is set, we'll append # it to the release tag when creating an RPM or SRPM