https://fedorahosted.org/sssd/ticket/1110 [PATCH 1/4] I've removed FIXME and move the DEBUG message to a better place. [PATCH 2/4] I've wrapped the data provider part with tevent request so I can reuse the code in periodical updates. [PATCH 3/4] Adds two new functions in sudo sysdb api that can set/retrieve the value of 'refreshed' attribute (equivalent to 'has_enumerated' attribute in domain enumeration). If it is true, the first schedule will be delayed for a few seconds so we don't slow down the start up process. [PATCH 4/4] Periodical update itself. It adds two new options: ldap_sudo_refresh_enabled (bool) - equivalent to 'enumerate' ldap_sudo_refresh_timeout (number) - equivalent to 'ldap_enumeration_refresh_timeout'