Hi,

you can have a look at "Configuration options for using short names to resolve and authenticate users and groups" [1] in RHEL 8 guide "Configuring and managing Identity Management".
flo

[1] https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/configuring_and_managing_identity_management/assembly_using-id-views-in-active-directory-environments_configuring-and-managing-idm#con_configuration-options-for-using-short-names-to-resolve-and-authenticate-users-and-groups_assembly_using-id-views-in-active-directory-environments


On Wed, Apr 6, 2022 at 10:29 AM Francis Augusto Medeiros-Logeay via FreeIPA-users <freeipa-users@lists.fedorahosted.org> wrote:
Hi,
I wonder if it is possible to configure a FreeIPA client to assume that clients logging in are from a trusted AD domain, instead of having those users to type `username@ad_domain` when logging in.
I know I could have the user synchronisation approach so that users coexist on both systems, but a trust without sync is less complex, and I will have almost no FreeIPA users - I just want to join linux clients to FreeIPA for better management of linux resources.
Any tips on if it is possible at all to do this?

Best,
Francis
_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure