forked from jengelh/sssd
Accepting request 420591 from home:stroeder:branches:network:ldap
update to 1.14.1 OBS-URL: https://build.opensuse.org/request/show/420591 OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=175
This commit is contained in:
parent
c1259b7292
commit
d2987b14fa
@ -1,3 +0,0 @@
|
|||||||
version https://git-lfs.github.com/spec/v1
|
|
||||||
oid sha256:5c49ed0ecd17461a955bf031b73f257e8c40744d7485cd969976ccce819d624e
|
|
||||||
size 4915954
|
|
@ -1,7 +0,0 @@
|
|||||||
-----BEGIN PGP SIGNATURE-----
|
|
||||||
Version: GnuPG v1
|
|
||||||
|
|
||||||
iEYEABECAAYFAld+lREACgkQHsardTLnvCWq5QCdHBsN7hUU57vQ6nekGFsKbS8t
|
|
||||||
jYIAn14wL9ZxSlmGY9zAGUAt8A0l0DLQ
|
|
||||||
=ER1G
|
|
||||||
-----END PGP SIGNATURE-----
|
|
3
sssd-1.14.1.tar.gz
Normal file
3
sssd-1.14.1.tar.gz
Normal file
@ -0,0 +1,3 @@
|
|||||||
|
version https://git-lfs.github.com/spec/v1
|
||||||
|
oid sha256:ae6fe6c886db5de2b4f1f1fa0e1a10955d8d25bfceff25e475e50a37527c75e0
|
||||||
|
size 4949350
|
7
sssd-1.14.1.tar.gz.asc
Normal file
7
sssd-1.14.1.tar.gz.asc
Normal file
@ -0,0 +1,7 @@
|
|||||||
|
-----BEGIN PGP SIGNATURE-----
|
||||||
|
Version: GnuPG v1
|
||||||
|
|
||||||
|
iEYEABECAAYFAle3EtUACgkQHsardTLnvCUUmQCePnqDXDrAnLZOqKdKaTCrb/ZS
|
||||||
|
cooAoLCGqfUtRQy6BrbRy2tLwMbYVPe5
|
||||||
|
=bOBT
|
||||||
|
-----END PGP SIGNATURE-----
|
44
sssd.changes
44
sssd.changes
@ -1,3 +1,47 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Fri Aug 19 18:38:35 UTC 2016 - michael@stroeder.com
|
||||||
|
|
||||||
|
- Update to new upstream release 1.14.1
|
||||||
|
* The IPA provider now supports logins with enterprise principals (also
|
||||||
|
known as additional UPN suffixes). This functionality also enabled Active
|
||||||
|
Directory users from trusted AD domains who use an additional UPN suffix
|
||||||
|
to log in. Please note that this feature requires a recent IPA server.
|
||||||
|
* When a user name is overriden in an IPA domain, resolving a group these
|
||||||
|
users are a member of now returns the overriden user names
|
||||||
|
* Users can be looked up by and log in with their e-mail address as an
|
||||||
|
identifier. In order to do so, an attribute that represents the user's
|
||||||
|
e-mail address is fetched by default. This attribute can by customized
|
||||||
|
by setting the ldap_user_email configuration option.
|
||||||
|
* A new ad_enabled_domains option was added. This option lets the
|
||||||
|
administrator select domains that SSSD should attempt to reach in the
|
||||||
|
AD forest SSSD is joined to. This option is useful for deployments where
|
||||||
|
not all domains are reachable on the network level, yet the administrator
|
||||||
|
needs to access some trusted domains and therefore disabling the subdomains
|
||||||
|
provider completely is not desirable.
|
||||||
|
* The sssctl tool has two new commands active-server and servers that
|
||||||
|
allow the administrator to observe the server that SSSD is bound to and
|
||||||
|
the servers that SSSD autodiscovered
|
||||||
|
* SSSD used to fail to start when an attribute name is present in both
|
||||||
|
the default SSSD attribute map and the custom ldap_user_extra_attrs map
|
||||||
|
* GPO policy procesing no longer fails if the gPCMachineExtensionNames
|
||||||
|
attribute only contains whitespaces
|
||||||
|
* Several commits fix regressions related to switching all user and group
|
||||||
|
names to fully qualified format, such as running initgroups for a user
|
||||||
|
who is only a member of a primary group
|
||||||
|
* Several patches fix regressions caused by splitting the database into
|
||||||
|
two ldb files, such as when user attributes change without increasing
|
||||||
|
the modifyTimestamp attribute value
|
||||||
|
* systemd unit files are now shipped for the sssd-secrets responder,
|
||||||
|
allowing the responder to be socket-activated. To do so, administrators
|
||||||
|
should enable the sssd-secrets.socket and sssd-secrets.service systemd
|
||||||
|
units.
|
||||||
|
* The sssd binary has a new switch --disable-netlink that lets sssd skip
|
||||||
|
messages from the kernel's netlink interface.
|
||||||
|
* A crash when entries with special characters such as '(' were requested
|
||||||
|
was fixed
|
||||||
|
* The ldap_rfc_2307_fallback_to_local_users option was broken in the
|
||||||
|
previous version. This release fixes the functionality.
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Fri Jul 8 10:46:59 UTC 2016 - jengelh@inai.de
|
Fri Jul 8 10:46:59 UTC 2016 - jengelh@inai.de
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user