Jakub I'm not trying to know if I should or not use only sssd. I'd like to know if
I can have both working together.
You said sssd contact the ldap even if the password is cached for the group information,
If yes, is there a way to ask it to not contact the ldap if it has the password and it has
not expired yet (in the cache).
I'd like to avoid as much as possible to contact the LDAP as I only need passwords and
even if they change my application can wait for a day
> In my case, I don't need to access other information but the
> by a database that can use pam for authentication and all permissions are
> set at the database level). What is the option to not contact the server
> even for the group information if there is one ?
I'm sorry, but I don't understand what do you mean by "even for the group
sssd-users mailing list