Arthur de Jong

Open Source / Free Software developer

summaryrefslogtreecommitdiffstats
path: root/man/nslcd.conf.5.xml
Commit message (Collapse)AuthorAgeFilesLines
* Clarify the map option in the manual pageHEADmasterArthur de Jong2024-03-031-15/+18
| | | | | This tries to make it a little clearer how expressions in the map statement may be used.
* Get files ready for 0.9.12 release0.9.12Arthur de Jong2021-11-201-3/+3
|
* Support DNSLDAPS in uriArthur de Jong2021-11-191-4/+7
| | | | | | This supports both `uri DNSLDAPS` and `uri DNSLDAPS:some.domain` variants alongside the pre-existing `uri DNS` that was already supported generating ldaps URIs for all SRV records found.
* Support an empty search baseArthur de Jong2021-11-021-2/+5
| | | | | | | | | | | | This allows putting `base ""` in nslcd.conf to specify an empty search base. Note that the LDAP server needs to support this. With slapd this requires setting up an olcDefaultSearchBase attribute in the olcFrontendConfig object under cn=config or have the database have an empty suffix. Closes https://github.com/arthurdejong/nss-pam-ldapd/issues/50
* Add tls_reqsan to check certificate SANArthur de Jong2021-01-231-0/+13
| | | | This option is passed to the LDAP library if it is supported.
* Add tls_crlfile to check local CRL fileArthur de Jong2021-01-231-1/+14
| | | | This option is passed to the LDAP library if it is supported.
* Add tls_crlcheck to check Certificate Revocation Listsebastienblavier2021-01-181-0/+13
| | | | | | This option is passed to the LDAP library if it is supported. Closes https://github.com/arthurdejong/nss-pam-ldapd/pull/41
* Fix typo in manual pageArthur de Jong2020-02-101-1/+1
| | | | | | | Thanks Benedict Reuschling for pointing this out. Closes https://github.com/arthurdejong/nss-pam-ldapd/issues/39 Fixes b93838d
* Get files ready for 0.9.11 release0.9.11Arthur de Jong2019-10-061-3/+3
|
* Various spelling fixesArthur de Jong2019-09-171-3/+3
|
* Get files ready for 0.9.10 release0.9.10Arthur de Jong2018-09-011-2/+2
|
* Add domain variable for use in pam_authz_searchArthur de Jong2018-07-211-0/+1
| | | | | | | | | This adds a domain variable (if it can be determined on the system) that can be used in pam_authz_search and pam_authc_search filters to build search filters that search on the domain name (the FQDN without the starting host name). Closes https://github.com/arthurdejong/nss-pam-ldapd/issues/8
* Get files ready for 0.9.9 release0.9.9Arthur de Jong2018-02-181-6/+6
|
* Get files ready for 0.9.8 release0.9.8Arthur de Jong2017-06-261-2/+2
|
* Add the ability to offset UID and GID numbersSeth Wright2017-06-201-0/+30
|
* Allow skipping post-authentication search altogetherArthur de Jong2017-06-151-0/+7
|
* Document pam_authc_search optionArthur de Jong2017-06-151-1/+24
|
* Get files ready for 0.9.7 release0.9.7Arthur de Jong2016-08-141-3/+3
|
* Support substituting expresions of type ${var:offset:length}Giovanni Mascellani2016-06-031-0/+11
|
* Fix small typoGiovanni Mascellani2016-05-301-1/+1
|
* Add pam_authc_ppolicy optionMathieu Baeumler2016-01-061-0/+12
| | | | This option allows completely disabling ppolicy handling.
* Get files ready for 0.9.6 release0.9.6Arthur de Jong2015-06-141-2/+2
|
* Manual page improvementsArthur de Jong2015-06-131-11/+11
|
* Implement disable_enumerationAndrew Elble2015-05-011-0/+21
| | | | | | | | | | If this option is present, functions which cause all user/group entries to be loaded (getpwent(), getgrent()) from the directory will not succeed in doing so. This can dramatically reduce ldap server load in situations where there are a great number of users and/or groups. Applications that depend on being able to sequentially read all users and/or groups may fail to operate correctly. This option is not recommended for most configurations.
* Implement nss_getgrent_skipmembersArthur de Jong2015-04-201-1/+20
| | | | | | | This option allows skipping group member list retrieval to improve performance with very large groups. This option results in inconsistent group membership information being presented that may confuse some applications.
* Document that multiple URIs can be specifiedDalibor Pospíšil2015-03-201-2/+3
| | | | | | | Update nslcd.conf man page that multiple URIs can be set by using more uri lines or more URIs defined on one uri line. https://bugzilla.redhat.com/show_bug.cgi?id=1204195
* Document that rootpwmoddn needs to existArthur de Jong2014-11-021-0/+4
| | | See http://lists.arthurdejong.org/nss-pam-ldapd-users/2014/msg00166.html
* Get files ready for 0.9.4 release0.9.4Arthur de Jong2014-06-061-2/+2
|
* Small documentation improvementsArthur de Jong2014-05-041-5/+4
| | | | | This includes a number of minor changes to the documentation. This also documents the children search scope (related to 2caeef4).
* Get files ready for 0.9.3 release0.9.3Arthur de Jong2014-03-121-3/+3
|
* Document cache option in manual pageArthur de Jong2013-12-211-0/+33
|
* Get files ready for 0.9.2 release0.9.2Arthur de Jong2013-10-301-2/+2
|
* Fix for common spelling mistakeArthur de Jong2013-08-281-2/+2
|
* Get files ready for 0.9.1 release0.9.1Arthur de Jong2013-08-251-2/+2
|
* Rename nscd_invalidate option to reconnect_invalidateArthur de Jong2013-07-261-2/+2
| | | | | This also renames the internal nscd module to invalidator for both nslcd and pynslcd. The new invalidator module is now no longer nscd-specific.
* Allow invalidating the nfsidmap cacheArthur de Jong2013-07-261-4/+12
| | | | This introduces an nfsidmap value for nscd_invalidate which will cause the nfsidmap -c command to be run.
* Get files ready for 0.9.0 release0.9.0Arthur de Jong2013-04-051-2/+2
|
* Fix manual page generationArthur de Jong2013-03-281-1/+1
|
* Implement a nss_nested_groups configuration optionArthur de Jong2013-03-241-0/+13
| | | | | | This option can be used in both nslcd and pynslcd to enable recursive group member lookups. By default the functionality is disabled. This also updates the documentation.
* document the nscd_invalidate optionArthur de Jong2013-03-091-0/+18
|
* document the trimming expressions in the nslcd.conf(5) ↵Arthur de Jong2013-03-031-5/+45
| | | | manual page
* include information about when some of the options were ↵Arthur de Jong2013-02-271-49/+50
| | | | added
* allow names with one character in default validnames ↵Arthur de Jong2013-02-231-1/+1
| | | | option and allow parentheses (taken from Fedora packages)
* document the log optionArthur de Jong2013-02-231-0/+21
|
* support children search scope for systems that have itArthur de Jong2013-01-141-3/+3
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1917 ef36b2f9-881f-0410-afb5-c4e39611909c
* get files ready for 0.8.12 release0.8.12Arthur de Jong2012-11-181-2/+2
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1834 ef36b2f9-881f-0410-afb5-c4e39611909c
* to only set LDAP_OPT_X_SASL_NOCANON if the ↵Arthur de Jong2012-11-131-1/+2
| | | | | | sasl_canonicalize option is explicitly set in the configuration file git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1824 ef36b2f9-881f-0410-afb5-c4e39611909c
* get files ready for 0.8.11 release0.8.11Arthur de Jong2012-10-141-2/+2
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1798 ef36b2f9-881f-0410-afb5-c4e39611909c
* change the default value of sasl_canonicalize to yes ↵Arthur de Jong2012-08-311-1/+1
| | | | | | (thanks Marcus Moeller) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1735 ef36b2f9-881f-0410-afb5-c4e39611909c
* introduce a sasl_canonicalize option that will now, by ↵Arthur de Jong2012-08-141-0/+12
| | | | | | default, disable reverse host name lookups in OpenLDAP git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1733 ef36b2f9-881f-0410-afb5-c4e39611909c