[Freeipa-users] Default shell for AD trust users
Jakub Hrozek
jhrozek at redhat.com
Wed Nov 11 19:42:46 UTC 2015
On Wed, Nov 11, 2015 at 11:37:47AM -0700, Orion Poplawski wrote:
> On 11/11/2015 12:57 AM, Jakub Hrozek wrote:
> > On Tue, Nov 10, 2015 at 11:44:12AM -0700, Orion Poplawski wrote:
> >> I see that AD trust users don't get their posix shell set:
> >>
> >> # getent passwd user
> >> user at ad.nwra.com:*:2260345:2260345:A User:/export/home/user:
> >>
> >> I can fix this on the clients with override_shell, but that would apply to the
> >> IPA domain users as well. Is there some way to configure this in the
> >> trust/server?
> >
> > You might be interested in:
> > https://fedorahosted.org/sssd/wiki/DesignDocs/use_AD_homedir
> >
> > It's implemented in 7.2+ so any day now :)
> >
>
> Um, that's for homedir right, not the shell?
Ah, yes, sorry. I don't know why I read homedir and not shell.
Shell should already be transferred with IPA 4.x, but you can always use
fallback_shell.
More information about the Freeipa-users
mailing list