[deployment-guide/comm-rel: 39/74] modified authconfig section
dsilas
dsilas at fedoraproject.org
Tue Jul 6 21:12:32 UTC 2010
commit 22cb5d106fcf5da2d1a77cd33c79ca7cc785f0af
Author: Martin Prpic <mprpic at redhat.com>
Date: Fri Jun 25 10:22:39 2010 +0200
modified authconfig section
en-US/Authentication_Configuration.xml | 101 ++++++++++++++++++++++++++++----
1 files changed, 89 insertions(+), 12 deletions(-)
---
diff --git a/en-US/Authentication_Configuration.xml b/en-US/Authentication_Configuration.xml
index b71a216..52e9c64 100644
--- a/en-US/Authentication_Configuration.xml
+++ b/en-US/Authentication_Configuration.xml
@@ -67,7 +67,7 @@
</listitem>
<listitem>
<para>
- <guilabel>LDAP Server</guilabel> — Specifies the IP address of the <systemitem class="service">LDAP</systemitem> server.
+ <guilabel>LDAP Server</guilabel> — Specifies the address of the <systemitem class="service">LDAP</systemitem> server.
</para>
</listitem>
<listitem>
@@ -124,7 +124,12 @@
</para>
</listitem>
</itemizedlist>
-
+ <note>
+ <title>Note</title>
+ <para>
+ The SSSD service is used as a client for LDAP and Kerberos servers. Thus, offline login is enabled and supported by default. No user interaction is needed to set up the SSSD service with the <application>Authentication Configuration Tool</application>. For more information about the SSSD service, refer to <xref linkend="chap-SSSD_User_Guide-Introduction"/>
+ </para>
+ </note>
<bridgehead>NIS</bridgehead>
<para>
The <guilabel>NIS</guilabel> option configures the system to connect to a NIS server (as an NIS client) for user and password authentication. To configure this option, specify the NIS domain and NIS server. If the NIS server is not specified, the daemon attempts to find it via broadcast.
@@ -156,7 +161,7 @@
</listitem>
<listitem>
<para>
- <guilabel>Security Model</guilabel> — Allows you to select a security model, which configures how clients should respond to Samba. The drop-down list allows you to select any of the following:
+ <guilabel>Security Model</guilabel> — Allows you to select a security model, which configures the Samba client mode of operation. The drop-down list allows you to select any of the following:
<itemizedlist>
<listitem>
<para>
@@ -202,14 +207,7 @@
</para>
<para>
Winbind provides only one method of authentication, <guilabel>Winbind password</guilabel>. This method of authentication uses the options specified in the User Account Configuration of Winbind to connect to a Windows Active Directory or a Windows domain controller.
- </para>
- <note>
- <title>Note</title>
- <para>
- The SSSD service handles all the authentication procedures by default (except for Winbind). No user interaction is needed to set up the SSSD service with the <application>Authentication Configuration Tool</application>. For more information about the SSSD service, refer to <xref linkend="chap-SSSD_User_Guide-Introduction"/>
- </para>
- </note>
-
+ </para>
</section>
<section id="sect-The_Authentication_Configuration_Tool-Advanced_Options">
<title>Advanced Options</title>
@@ -405,6 +403,22 @@
</row>
<row>
<entry>
+ <command>--enablerfc2307bis</command>
+ </entry>
+ <entry>
+ Enable use of RFC-2307bis schema for LDAP user information lookups
+ </entry>
+ </row>
+ <row>
+ <entry>
+ <command>--disablerfc2307bis</command>
+ </entry>
+ <entry>
+ Disable use of RFC-2307bis schema for LDAP user information lookups
+ </entry>
+ </row>
+ <row>
+ <entry>
<command>--enableldapauth</command>
</entry>
<entry>
@@ -630,7 +644,54 @@
Configures winbind to prevent offline login
</entry>
</row>
-
+ <row>
+ <entry>
+ <command>--smbsecurity=<replaceable><user|server|domain|ads></replaceable></command>
+ </entry>
+ <entry>
+ Security mode to use for the Samba and Winbind services
+ </entry>
+ </row>
+ <row>
+ <entry>
+ <command>--smbrealm=<replaceable><realm></replaceable></command>
+ </entry>
+ <entry>
+ Default realm for Samba and Winbind services when <guilabel>security</guilabel> is set to <guimenuitem>ads</guimenuitem>
+ </entry>
+ </row>
+ <row>
+ <entry>
+ <command>--enablewins</command>
+ </entry>
+ <entry>
+ Enable Wins for hostname resolution
+ </entry>
+ </row>
+ <row>
+ <entry>
+ <command>--disablewins</command>
+ </entry>
+ <entry>
+ Disable Wins for hostname resolution
+ </entry>
+ </row>
+ <row>
+ <entry>
+ <command>--enablesssd</command>
+ </entry>
+ <entry>
+ Enable SSSD for user information
+ </entry>
+ </row>
+ <row>
+ <entry>
+ <command>--disablesssd</command>
+ </entry>
+ <entry>
+ Disable SSSD for user information
+ </entry>
+ </row>
<row>
<entry>
<command>--enablecache</command>
@@ -665,6 +726,22 @@
</row>
<row>
<entry>
+ <command>--enablesysnetauth</command>
+ </entry>
+ <entry>
+ Authenticate system accounts with network services
+ </entry>
+ </row>
+ <row>
+ <entry>
+ <command>--disablesysnetauth</command>
+ </entry>
+ <entry>
+ Authenticate system accounts with local files only
+ </entry>
+ </row>
+ <row>
+ <entry>
<command>--enablepamaccess</command>
</entry>
<entry>
More information about the docs-commits
mailing list