[Freeipa-users] AD Integration - /etc/krb5.conf requirements
Michael ORourke
mrorourke at earthlink.net
Thu Apr 28 15:36:45 UTC 2016
I'm just looking for some clarification from the documentation:
http://www.freeipa.org/page/Active_Directory_trust_setup
In the section that starts with "Edit /etc/krb5.conf", they mention a manual configuration to the krb5.conf file for machines that will be leveraging AD users:
[realms]
IPA_DOMAIN = {
....
auth_to_local = RULE:[1:$1@$0](^.*@AD_DOMAIN$)s/@AD_DOMAIN/@ad_domain/
auth_to_local = DEFAULT
}
Is this still required for sssd 1.13.0 and above?
Thanks,
Mike
More information about the Freeipa-users
mailing list