diff options
| author | Arthur de Jong <arthur@arthurdejong.org> | 2011-01-23 21:59:42 +0100 |
|---|---|---|
| committer | Arthur de Jong <arthur@arthurdejong.org> | 2011-01-23 21:59:42 +0100 |
| commit | d492b570f93108c65088462fea7a6a87d091f953 (patch) | |
| tree | f516c0c61076ba108893bb0f3083a933c45514b2 | |
| parent | 19d57ea96f903ce8592fb74edd241b1a54853a93 (diff) | |
name pam_check_service_attr and pam_check_host_attr options in manual page and indicate how pam_authz_search replaces them
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1366 ef36b2f9-881f-0410-afb5-c4e39611909c
| -rw-r--r-- | man/nslcd.conf.5.xml | 12 |
1 files changed, 8 insertions, 4 deletions
diff --git a/man/nslcd.conf.5.xml b/man/nslcd.conf.5.xml index 0d901aa..7af8a10 100644 --- a/man/nslcd.conf.5.xml +++ b/man/nslcd.conf.5.xml @@ -691,10 +691,14 @@ expressions below. </para> <para> - For example, to check that the user has a proper authorizedService - value if the attribute is present: - <literal>(&(objectClass=posixAccount)(uid=$username) - (|(authorizedService=$service)(!(authorizedService=*))))</literal> + For example, to check that the user has a proper <literal>authorizedService</literal> + value if the attribute is present (this emulates the + <option>pam_check_service_attr</option> option in PADL's pam_ldap): + <literallayout><literal>(&(objectClass=posixAccount)(uid=$username)(|(authorizedService=$service)(!(authorizedService=*))))</literal></literallayout> + </para> + <para> + The <option>pam_check_host_attr</option> option can be emulated with: + <literallayout><literal>(&(objectClass=posixAccount)(uid=$username)(|(host=$hostname)(!(host=*))))</literal></literallayout> </para> <para> The default behaviour is not to do this extra search and always |