Hi Team, I have integrated 'sssd' with ldap server. I am using 'getent passwd' command to see all users from local and ldap. I am able to see all users from local. For LDAP, I am only seeing users which are not root(uid=0,gid=0).
I have below section in [NSS]
[nss]
filter_users = bin
filter_groups = bin
filter_users_in_groups = false
enum_cache_timeout = 5
Can you please help? Please let me know if you need any details from me.
Regards, Kedar.
On Tue, Jun 27, 2017 at 11:12:52AM -0700, kedar sirshikar wrote:
Hi Team, I have integrated 'sssd' with ldap server. I am using 'getent passwd' command to see all users from local and ldap. I am able to see all users from local. For LDAP, I am only seeing users which are not root(uid=0,gid=0).
This is by design. SSSD explicitly filters out users with UID 0 and the name 'root'. And I think this is for a good reason, the root account is traditionally local-only and domain accounts elevate themselves to the admin level with sudo.
Can you explain your use-case better?
I have below section in [NSS]
[nss]
filter_users = bin
filter_groups = bin
filter_users_in_groups = false
enum_cache_timeout = 5
Can you please help? Please let me know if you need any details from me.
Regards, Kedar.
sssd-users mailing list -- sssd-users@lists.fedorahosted.org To unsubscribe send an email to sssd-users-leave@lists.fedorahosted.org
sssd-users@lists.fedorahosted.org
-
Jakub Hrozek -
kedar sirshikar