On Thu, 26 Mar 2020, Jannis Mann wrote:
> Hi John,
> thanks for your input!
>
> Sorry, I've meant ignore_group_members = true
>
> I already read about the tmpfs idea but I worry a little when the vm fails and then one restarts with out a connection to the domain controller the users are not able to login anymore...
> - at least that is what I am thinking
You lose cached credentials by going that route, but I don't think you're likely to see other significant bother. We've not noticed any issues.
ignore_group_members breaks applications that expect to be able to get a list of members of a group, rather than which groups a user is a member of.
jh
_______________________________________________
sssd-users mailing list -- sssd-users@lists.fedorahosted.org
To unsubscribe send an email to sssd-users-leave@lists.fedorahosted.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedorahosted.org/archives/list/sssd-users@lists.fedorahosted.org