[Freeipa-users] sssd client cache timer and merging IPA domains
Stephen Gallagher
sgallagh at redhat.com
Fri Aug 17 19:20:46 UTC 2012
On Fri, 2012-08-17 at 11:42 +0200, Jakub Hrozek wrote:
> On Thu, Aug 16, 2012 at 09:00:23PM +0000, Steven Jones wrote:
> > Hi,
> >
> > What is the default length of time the sssd daemon on a client caches for once IPA is off line pls?
> >
>
> If the IPA provider is offline, we never remove anything from the cache, so
> indefinitely.
>
One exception: if you've opted to use the offline_credentials_expiration
option in sssd.conf, then after the specified number of days, the user's
cached password (but none of his other information) will be removed from
the client.
> If the provider is online, we cache for 90 minutes by default, then
> refresh the entry.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120817/79dae260/attachment.sig>
More information about the Freeipa-users
mailing list