* sssd crashes after upgrade from 1.11.4 to 1.11.5 when using a samba4 domain
* SSSD pam module accepts usernames with leading spaces
* [RFE] Expose the list of trusted domains to IPA
* If both IPA and LDAP are set up with enumeration on, two enum tasks are running
* sssd.conf man pages don't list a configuration option.
* Make SSSD compilable on systems with non-standard paths to krb5 includes
* [freebsd] pam_sss: add ignore_unknown_user option
* MAN: Remove misleading memberof example from ldap_access_filter example
* not retrieving homedirs of AD users with posix attributes
* Document that `sssd` cache needs to be cleared manually, if ID mapping configuration changes
* Check IPA idranges before saving them to the cache
* Evaluate usage of sudo LDAP provider together with the AD provider
* Setting int option to 0 yields the default value
* ipa-server-mode: Use lower-case user name component in home dir path
* SSSD Does not cache SELinux map from FreeIPA correctly
* IPA SELinux code looks for the host in the wrong sysdb subdir when a trusted user logs in
* sssd fails to handle expired passwords when OTP is used
* Add another Kerberos error code to trigger IPA password migration
* Double OK when starting the service
* SSSD should create the SELinux mapping file with format expected by pam_selinux
* Valgrind: Invalid read of int while processing netgroup
* other subdomains are unavailable when joined to a subdomain in the ad forest
* Error during password change
* configure time variables not expanded when running ./configure
* RHEL7 IPA selinuxusermap hbac rule not always matching
* AD Enumeration reads data from LDAP while regular lookups connect to GC
* Implement heuristics to detect if POSIX attributes have been replicated to the Global Catalog or not
* sssd_be crashes when ad_access_filter uses FOREST keyword.
* "System Error" when invalid ad_access_filter is used
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=111
- Update to new upstream release 1.8.0
* Support for the service map in NSS
* Support for setting default SELinux user context from FreeIPA
* Support for retrieving SSH user and host keys from LDAP
* Support for caching autofs LDAP requests
* Support for caching SUDO rules
* Include the IPA AutoFS provider
* Fixed several memory-corruption bugs
* Fixed a regression in the proxy provider
OBS-URL: https://build.opensuse.org/request/show/108828
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=62
- Update to new upstream release 1.5.11
* Support for overriding home directory, shell and primary GID
locally
* Properly honor TTL values from SRV record lookups
* Support non-POSIX groups in nested group chains (for RFC2307bis
LDAP servers)
* Properly escape IPv6 addresses in the failover code
* Do not crash if inotify fails (e.g. resource exhaustion)
- Remove redundant %clean section; delete .la files more
efficiently
OBS-URL: https://build.opensuse.org/request/show/77333
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=53
* Add support for netgroups to the LDAP and proxy providers
* Fixes a minor bug with UIDs/GIDs >= 2^31
* Fixes a segfault in the kerberos provider
* Fixes a segfault in the NSS responder if a data provider crashes
* Correctly use sdap_netgroup_search_base
* the utility libraries libpath_utils1, libpath_utils-devel,
libref_array1 and libref_array-devel moved to their own
separate upstream project (ding-libs)
* Performance improvements made to group processing of RFC2307
LDAP servers
* Fixed nested group issues with RFC2307bis LDAP servers without
a memberOf plugin
* Manpage reviewed and updated
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=29
