9f1c60eefd
Use variable localhome to determines whether the localhome module is installed. Default: localhome=false Further changes: - Move pam-exec from common-auth to common-session - Move pam-mkhomedir before pam-mount to avoid double login on first use on localhome devices
22 lines
589 B
Django/Jinja
22 lines
589 B
Django/Jinja
[sssd]
|
|
domains = {{ domain }}
|
|
config_file_version = 2
|
|
implicit_pac_responder = False
|
|
|
|
[domain/{{ domain }}]
|
|
krb5_realm = {{ domain | upper }}
|
|
ad_domain = {{ domain }}
|
|
id_provider = ad
|
|
access_provider = ad
|
|
use_fully_qualified_names = False
|
|
cache_credentials = True
|
|
krb5_store_password_if_offline = True
|
|
default_shell = /usr/bin/bash
|
|
# default: # ldap_id_mapping = True
|
|
ad_gpo_access_control = disabled
|
|
ad_gpo_ignore_unreadable = True
|
|
ad_maximum_machine_account_password_age = 0
|
|
ignore_group_members = True
|
|
{% if localhome is defined and localhome %}
|
|
override_homedir = /home/%u
|
|
{% endif %}
|