Rodrigo,

We only have the single sssd.conf, and it's - afaik - created by the process of joining the domain.

To the best of my knowledge this is how it is meant to be managed.

Other notes:
 - I kept my sssd.conf in a git repo'd ansible playbook until I realised that the sssd.conf was being built on the fly, then I stopped. It hasn't caused any issues.
 - I have kept one copy in the repo for DR
 - I did have a couple of other copies - where I had set log levels higher or had a dev network set up. Dev network see 1, higher log levels are only on two machines for debug purposes

ie - you can, but it's not really necessary for my systems.

If you install SSSD first, and then join the network, I'm not 100% sure what happens to your sssd.conf.

Cheers
L.

------
"Mission Statement: To provide hope and inspiration for collective action, to build collective power, to achieve collective transformation, rooted in grief and rage but pointed towards vision and dreams."

 - Patrisse Cullors, Black Lives Matter founder

On 4 July 2017 at 01:33, Rodrigo M <rouxero@gmail.com> wrote:
Thanks Lukas!

May I ask you another question guys ?  How do you manage the SSSD configuration for dozens of nodes ?



 


2017-07-03 3:41 GMT-03:00 Lukas Slebodnik <lslebodn@redhat.com>:
On (02/07/17 02:09), Rodrigo M wrote:
>Oh Thanks Lachlan! I don't know why but I was avoiding that repo.
>
>I just realize that the support for the non-posix users and group will be
>avaiable in the 1.15.3 release
>https://pagure.io/SSSD/sssd/issue/3310
>
>I will find another way to sync my users to RHEL
>
1.15.3 has not been released yet and is not in fedora either.
Copr sssd-1.15 and fedora are in sync therefore copr does not contain it.

We found few regressions in git master; that's reason why 1.15.3 was postponed
a little bit.

You can create SRC.RPM from git master with tiny script
contrib/fedora/make_srpm.sh And then just rebuild src.rpm package

LS
_______________________________________________
sssd-users mailing list -- sssd-users@lists.fedorahosted.org
To unsubscribe send an email to sssd-users-leave@lists.fedorahosted.org


_______________________________________________
sssd-users mailing list -- sssd-users@lists.fedorahosted.org
To unsubscribe send an email to sssd-users-leave@lists.fedorahosted.org