-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 10/19/2010 10:25 AM, Eric Doutreleau wrote:
i m still using sssd 1.3 and in my ldap domain i have put the following statement
create_homedir = False
but the homedir is still created if it doesn't exist.
can i use this directive for an ldap domain?
No, this option is only for use with id_provider = local and only applies when using sss_useradd.
If you have home directories being created, then it means you must have pam_mkhomedir.so (or the oddjob equivalent) in your session stack in /etc/pam.d/system-auth (and probably /etc/pam.d/password-auth as well). You should be able to safely remove/comment-out this line and homedirs will no longer be generated.
- -- Stephen Gallagher RHCE 804006346421761
Delivering value year after year. Red Hat ranks #1 in value among software vendors. http://www.redhat.com/promo/vendor/