GSP
Quick Navigator

Search Site

Unix VPS
A - Starter
B - Basic
C - Preferred
D - Commercial
MPS - Dedicated
Previous VPSs
* Sign Up! *

Support
Contact Us
Online Help
Handbooks
Domain Status
Man Pages

FAQ
Virtual Servers
Pricing
Billing
Technical

Network
Facilities
Connectivity
Topology Map

Miscellaneous
Server Agreement
Year 2038
Credits
 

USA Flag

 

 

Man Pages


Manual Reference Pages  -  SSSD-IFP (5)

.ds Aq ’

NAME

sssd-ifp - SSSD InfoPipe responder

CONTENTS

DESCRIPTION

This manual page describes the configuration of the InfoPipe responder for sssd(8). For a detailed syntax reference, refer to the \(lqFILE FORMAT\(rq section of the sssd.conf(5) manual page.

The InfoPipe responder provides a public D-Bus interface accessible over the system bus. The interface allows the user to query information about remote users and groups over the system bus.

CONFIGURATION OPTIONS

These options can be used to configure the InfoPipe responder.

allowed_uids (string)

Specifies the comma-separated list of UID values or user names that are allowed to access the InfoPipe responder. User names are resolved to UIDs at startup.

Default: 0 (only the root user is allowed to access the InfoPipe responder)

Please note that although the UID 0 is used as the default it will be overwritten with this option. If you still want to allow the root user to access the InfoPipe responder, which would be the typical case, you have to add 0 to the list of allowed UIDs as well.

user_attributes (string)

Specifies the comma-separated list of white or blacklisted attributes.

By default, the InfoPipe responder only allows the default set of POSIX attributes to be requested. This set is the same as returned by getpwnam(3) and includes:

name

users login name

uidNumber

user ID

gidNumber

primary group ID

gecos

user information, typically full name

homeDirectory

home directory

loginShell

user shell

It is possible to add another attribute to this set by using \(lq+attr_name\(rq or explicitly remove an attribute using \(lq-attr_name\(rq. For example, to allow \(lqtelephoneNumber\(rq but deny \(lqloginShell\(rq, you would use the following configuration:

user_attributes = +telephoneNumber, -loginShell
                       

Default: not set. Only the default set of POSIX attributes is allowed.

SEE ALSO

sssd(8), sssd.conf(5), sssd-ldap(5), sssd-krb5(5), sssd-simple(5), sssd-ipa(5), sssd-ad(5), sssd-sudo(5), sss_cache(8), sss_debuglevel(8), sss_groupadd(8), sss_groupdel(8), sss_groupshow(8), sss_groupmod(8), sss_useradd(8), sss_userdel(8), sss_usermod(8), sss_obfuscate(8), sss_seed(8), sssd_krb5_locator_plugin(8), sss_ssh_authorizedkeys(8), sss_ssh_knownhostsproxy(8), sssd-ifp(5), pam_sss(8).

AUTHORS

The SSSD upstream - http://fedorahosted.org/sssd

Search for    or go to Top of page |  Section 5 |  Main Index


SSSD SSSD-IFP (5) 04/16/2016

Powered by GSP Visit the GSP FreeBSD Man Page Interface.
Output converted with manServer 1.07.