From 4f73a9ead6af7de1cca6384b3b27f93fedcda02e Mon Sep 17 00:00:00 2001
From: "Andreas B. Mundt" <andreas.mundt@steinbeisschule-reutlingen.de>
Date: Tue, 8 Dec 2020 13:08:26 +0100
Subject: [PATCH] Use private groups for all LDAP users.

---
 roles/fvs-client-mkhome/templates/sssd.conf.j2 | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/roles/fvs-client-mkhome/templates/sssd.conf.j2 b/roles/fvs-client-mkhome/templates/sssd.conf.j2
index 977426a..1efcfc5 100644
--- a/roles/fvs-client-mkhome/templates/sssd.conf.j2
+++ b/roles/fvs-client-mkhome/templates/sssd.conf.j2
@@ -15,5 +15,8 @@ ldap_uri = ldaps://{{ ldap_server }}/
 ldap_search_base = {{ basedn }}
 
 auth_provider = ldap
+auto_private_groups = true
+
 cache_credentials = true
+
 ldap_tls_reqcert = never