[Freeipa-users] Default shell for AD-domain accounts
Alexander Bokovoy
abokovoy at redhat.com
Sun Jan 24 14:40:43 UTC 2016
On Sun, 24 Jan 2016, Rob Verduijn wrote:
>Hello,
>
>I'm trying to get an ipa server to trust a microsoft AD-domain.
>
>So far I've managed to get the trust to work and I can login with an
>active directory user on the ipa clients.
>
>Now I see the default shell is set to /bin/sh.
>Since the preffered shel is bash for me I wish to change this.
>It doesn't help to set this in the ipa server config since these
>accounts are external ms accounts.
>
>In the goog old days we used to have posix attributes schemas in the
>AD one of them being the shell.
>
>Sadly this is a thing of the past.
>https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Windows_Integration_Guide/ex.sssd-ad-posix.html
>
>How do I define a new default shell for all ms-AD accounts in ipa ?
You can use ID overrides per user to add shell override.
We don't have templated overrides, though, so these are individual, per
user.
--
/ Alexander Bokovoy
More information about the Freeipa-users
mailing list