Matt John wrote:
We currently have two ldap servers (this cannot be changed) where one
is
used for user authentication and the other provides information on
automounts. The ldap server used for automounts only contains a subset of
the users in the other ldap server as not all users are able to, or have
the need to, log into our systems.
Disclaimer: I have no personal experience with multi-domain sssd config for
distributed users/groups/sudoers/automap entries (except local and LDAP being
used side-by-side).
But for forcing all user information to come from the [domain/authd] I'd try
to set:
[domain/autofsd]
[..]
id_provider = none
auth_provider = none
[..]
Ciao, Michael.