Bug 710254

Summary: The "simple" access provider for SSSD should be documented
Product: Red Hat Enterprise Linux 6 Reporter: Stephen Gallagher <sgallagh>
Component: doc-Deployment_GuideAssignee: Deon Ballard <dlackey>
Status: CLOSED CURRENTRELEASE QA Contact: ecs-bugs
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 6.1CC: dlackey
Target Milestone: rcKeywords: Documentation
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-12-06 15:41:06 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Stephen Gallagher 2011-06-02 19:59:48 UTC 
Description of problem:
The SSSD has a special access-control plugin called "simple" that makes it easy to restrict a machine to a single owner (or group of users). This may be preferable in the case of corporate laptops.

To configure the simple access provider, one would set
access_provider = simple
simple_allow_users = <username1>,<username2>, ...
simple_allow_groups = <group1>, <group2>, ...
in the [domain/<domainname>] section of sssd.conf.

Other options available are documented in sssd-simple(5), but are rarely if ever used.
Comment 2 Deon Ballard 2011-11-15 02:38:20 UTC 
Setting to ON_QA for review for 6.2.

This is a bulk change, so I'm not providing links at this time. If you need help finding the info, ping sunny-dee on #docs or email me.

Thanks!