Bug 1371814 - [RFE]: Include the /var/lib/sss/pubconf/krb5.include.d directory
Summary: [RFE]: Include the /var/lib/sss/pubconf/krb5.include.d directory
Keywords:
Status: CLOSED DUPLICATE of bug 1207552
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: realmd
Version: 7.3
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: rc
: ---
Assignee: Sumit Bose
QA Contact: BaseOS QE Security Team
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-08-31 07:58 UTC by Jakub Hrozek
Modified: 2016-08-31 11:48 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-08-31 11:48:13 UTC
Target Upstream Version:

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Jakub Hrozek 2016-08-31 07:58:14 UTC 
Description of problem:
SSSD ships with localauth plugin that is enabled via a snippet in 
/var/lib/sss/pubconf/krb5.include.d but looks like we don't include the directory when the computer is joined to an AD domain with realmd. IPA clients do include the directory

Version-Release number of selected component (if applicable):
latest

How reproducible:
always

Steps to Reproduce:
1. realm join
2. cat /etc/krb5.conf
3. 

Actual results:
no includedir /var/lib/sss/pubconf/krb5.include.d

Expected results:
includedir /var/lib/sss/pubconf/krb5.include.d

Additional info:
On IRC, Sumit suggested that the includedir for /var/lib/sss/pubconf/krb5.include.d must come before /etc/krb5.conf.d so that admin can override sssd configuration by dropping files into /etc/krb5.conf.d.
Comment 2 Jakub Hrozek 2016-08-31 11:48:13 UTC 
Justin made me aware of bug #1207552 which I didn't know about. I'll close this bug as a duplicate of #1207552

*** This bug has been marked as a duplicate of bug 1207552 ***
Note You need to log in before you can comment on or make changes to this bug.