Back to bug 1396012
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| RHEL Program Management | 2016-11-17 09:10:18 UTC | Keywords | FutureFeature | |
| Ellen Newlands | 2016-12-05 18:38:21 UTC | CC | enewland | |
| Namita Soman | 2016-12-08 18:52:55 UTC | Priority | unspecified | medium |
| CC | nsoman | |||
| Martin Kosek | 2016-12-09 10:05:11 UTC | Blocks | 1399979 | |
| Martin Kosek | 2016-12-16 08:40:31 UTC | Blocks | 1405326 | |
| Steeve Goveas | 2017-02-24 06:46:16 UTC | QA Contact | sgoveas | apeetham |
| Steeve Goveas | 2017-02-24 07:04:25 UTC | CC | sgoveas | |
| Jakub Hrozek | 2017-03-27 08:13:10 UTC | Status | NEW | POST |
| Jakub Hrozek | 2017-03-27 09:03:24 UTC | Status | POST | MODIFIED |
| Fixed In Version | sssd-1.15.2-3.el7 | |||
| errata-xmlrpc | 2017-03-29 13:42:51 UTC | Status | MODIFIED | ON_QA |
| Aneta Šteflová Petrová | 2017-04-18 08:46:08 UTC | Docs Contact | apetrova | |
| Aneta Šteflová Petrová | 2017-04-24 10:34:00 UTC | Doc Type | If docs needed, set a value | Enhancement |
| Flags | needinfo?(jhrozek) | |||
| Jakub Hrozek | 2017-04-24 11:05:27 UTC | Doc Text | Feature: A new sssd service called "kcm" packaged in the "sssd-kcm" subpackage was added. When this service is installed, the Kerberos library can be configured to use a new "KCM" credential cache type. With this ccache type, the credentials are managed by the sssd-kcm service. Reason: The KCM credential cache type makes it possible to share credential caches between containers on-demand, based on mounting the UNIX socket the kcm service listens on. At the same time (unlike the FILE credential cache type), KCM supports cache collections. Result: RHEL-7.4 offers a new Kerberos credential cache type, KCM, that is well suited for containerized environments. | |
| Flags | needinfo?(jhrozek) | |||
| Aneta Šteflová Petrová | 2017-04-26 13:54:45 UTC | Doc Text | Feature: A new sssd service called "kcm" packaged in the "sssd-kcm" subpackage was added. When this service is installed, the Kerberos library can be configured to use a new "KCM" credential cache type. With this ccache type, the credentials are managed by the sssd-kcm service. Reason: The KCM credential cache type makes it possible to share credential caches between containers on-demand, based on mounting the UNIX socket the kcm service listens on. At the same time (unlike the FILE credential cache type), KCM supports cache collections. Result: RHEL-7.4 offers a new Kerberos credential cache type, KCM, that is well suited for containerized environments. | New Kerberos credential cache type: KCM This update adds a new SSSD service named *kcm*. The service is included in the _sssd-kcm_ subpackage. When the *kcm* service is installed, you can configure the Kerberos library to use a new credential cache type named `KCM`. When the KCM credential cache type is configured, the *sssd-kcm* service manages the credentials. The KCM credential cache makes it possible to share credential caches between containers on demand, based on mounting the UNIX socket on which the *kcm* service listens. This makes the KCM credential cache type well-suited for containerized environments. Additionally, the KCM credential cache type supports cache collections, unlike the FILE ccache type. |
| Flags | needinfo?(jhrozek) | |||
| Jakub Hrozek | 2017-04-26 17:04:47 UTC | Flags | needinfo?(jhrozek) | |
| Aneta Šteflová Petrová | 2017-04-27 07:58:49 UTC | Doc Text | New Kerberos credential cache type: KCM This update adds a new SSSD service named *kcm*. The service is included in the _sssd-kcm_ subpackage. When the *kcm* service is installed, you can configure the Kerberos library to use a new credential cache type named `KCM`. When the KCM credential cache type is configured, the *sssd-kcm* service manages the credentials. The KCM credential cache makes it possible to share credential caches between containers on demand, based on mounting the UNIX socket on which the *kcm* service listens. This makes the KCM credential cache type well-suited for containerized environments. Additionally, the KCM credential cache type supports cache collections, unlike the FILE ccache type. | New Kerberos credential cache type: KCM This update adds a new SSSD service named *kcm*. The service is included in the _sssd-kcm_ subpackage. When the *kcm* service is installed, you can configure the Kerberos library to use a new credential cache type named `KCM`. When the KCM credential cache type is configured, the *sssd-kcm* service manages the credentials. The KCM credential cache type is well-suited for containerized environments: * With KCM, you can share credential caches between containers on demand, based on mounting the UNIX socket on which the *kcm* service listens. * The *kcm* service runs in user space outside the kernel, unlike the KEYRING credential cache type that RHEL uses by default. With KCM, you can run the *kcm* service only in selected containers. With KEYRING, all containers share the credential caches because they share the kernel. Additionally, the KCM credential cache type supports cache collections, unlike the FILE ccache type. For details, see the sssd-kcm(8) man page. |
| Flags | needinfo?(jhrozek) | |||
| Jakub Hrozek | 2017-04-27 15:56:23 UTC | Flags | needinfo?(jhrozek) | |
| Amith | 2017-06-01 04:06:33 UTC | Status | ON_QA | VERIFIED |
| errata-xmlrpc | 2017-08-01 09:00:03 UTC | Status | VERIFIED | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2017-08-01 05:00:03 UTC | |||
| Pavel Březina | 2020-05-02 18:14:47 UTC | Link ID | Github SSSD/sssd/issues/3928 |
Back to bug 1396012