Description of problem:
The man page for sssd-ldap is unclear about the configuration requirements to use the 'ldap_access_order = lockout' feature.
When using 'ldap_access_order = lockout', the configuration *must* contain 'access_provider = ldap' otherwise this will not work. We wish to improve the text to make this absolutely clear.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
Will submit a man page patch soon.
Forgot, the original ticket in regards to this RFE is https://bugzilla.redhat.com/show_bug.cgi?id=1099290
* master: 03b02ec99ea4be8e6f41c70dbe91d7175d5b63ea
Verified in sssd-1.12.4-25.el6
The additional text in the manpage now has:
Please note that ´access_provider = ldap´ must be set for this feature to work.
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.