On Tue, 2010-10-19 at 10:31 -0400, Stephen Gallagher wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 10/19/2010 10:25 AM, Eric Doutreleau wrote:
> i m still using sssd 1.3 and in my ldap domain i have put the following
> statement
>
> create_homedir = False
>
> but the homedir is still created if it doesn't exist.
>
> can i use this directive for an ldap domain?
No, this option is only for use with id_provider = local and only
applies when using sss_useradd.
If you have home directories being created, then it means you must have
pam_mkhomedir.so (or the oddjob equivalent) in your session stack in
/etc/pam.d/system-auth (and probably /etc/pam.d/password-auth as well).
You should be able to safely remove/comment-out this line and homedirs
will no longer be generated.
Or you can use 'authconfig --disablemkhomedir --update' command or
disable the creation of the home directories in the Authconfig GUI -
System-Administration-Authentication.
--
Tomas Mraz
No matter how far down the wrong road you've gone, turn back.
Turkish proverb