790113 – [RFE] "include" directive in sssd.conf

Bug 790113 - [RFE] "include" directive in sssd.conf

Summary: [RFE] "include" directive in sssd.conf

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 7
Classification:	Red Hat
Component:	sssd
Sub Component:
Version:	7.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	high
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	SSSD Maintainers
QA Contact:	Steeve Goveas
Docs Contact:	Marc Muehlfeld
URL:
Whiteboard:
Depends On:	1205557
Blocks:	1113520 1203710 1205796 1351256
TreeView+	depends on / blocked

Reported:	2012-02-13 17:06 UTC by Dmitri Pal
Modified:	2018-12-09 16:47 UTC (History)
CC List:	10 users (show)
Fixed In Version:	sssd-1.14.0-0.2.beta1.el7
Doc Type:	Enhancement
Doc Text:	SSSD now reads optional .conf files from `/etc/sssd/conf.d/` The System Security Services Daemon (SSSD) has been enhanced to read .conf files from the `/etc/sssd/conf.d/` directory. This enables you to use a general `/etc/sssd/sssd.conf` file on all clients and to add additional settings in further configuration files to suit individual clients. SSSD first reads the common `/etc/sssd/sssd.conf` file, and then in alphabetical order the other files in `/etc/sssd/conf.d/`. The daemon uses the last read configuration parameter if the same one appears multiple times in different files.
Clone Of:
Environment:
Last Closed:	2016-11-04 07:08:04 UTC

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Links
System	ID	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHEA-2016:2476	normal	SHIPPED_LIVE	sssd bug fix and enhancement update	2016-11-03 14:08:11 UTC

Description Dmitri Pal 2012-02-13 17:06:23 UTC

This bug is created as a clone of upstream ticket:
https://fedorahosted.org/sssd/ticket/1165

As an enhancement request I would like a "include" directive in sssd.conf permitting me to split my conf in N configuration fragments all eventually included in the original sssd.conf.

Thanks
   Marco

Comment 17 Jakub Hrozek 2016-06-27 20:11:44 UTC

* master: cca497b4cbbbf05c4f9181b7d8113cde81754831

Comment 21 Madhuri 2016-09-06 09:11:05 UTC

Tested with sssd-1.14.0-27.el7.x86_64

Steps followed during verification:
1. Stop sssd service
2. Clear the sssd cache
3. Create snippet file under /etc/sssd/conf.d with permission "0600" and format ".conf"
4. Run sssctl config-check (Not necessary)
5. Start sssd service

#cat /etc/sssd/sssd.conf | grep use_fully_qualified_names
use_fully_qualified_names = False

Added 01_snippet_file.conf in /etc/sssd/conf.d/
#cat /etc/sssd/conf.d/01_snippet_file.conf
 [domain/LDAP]
 use_fully_qualified_names = True

#getent passwd testuser1@LDAP
testuser1@LDAP:*:10001:10001:testuser1 [Pune]:/home/testuser1:/bin/bash

Comment 23 errata-xmlrpc 2016-11-04 07:08:04 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHEA-2016-2476.html

Note You need to log in before you can comment on or make changes to this bug.