#671 Allow HBAC provider to be used with non-IPA LDAP servers
Closed: Fixed None Opened 13 years ago by sgallagh.

Several individuals have expressed interest in the past about the idea of using HBAC without IPA. For one reason or another, their environment is not readily able to migrate to IPA, but they would be able to implement the HBAC schema and provide that to the clients.

Currently, SSSD's HBAC implementation requires that {{{id_provider = ipa}}} in order to set it up correctly. We should look into making it possible to run the HBAC provider independent of IPA>


Fields changed

milestone: NEEDS_TRIAGE => SSSD Deferred

Fields changed

rhbz: => 0

https://github.com/jhrozek/pam_hbac

blockedby: =>
blocking: =>
changelog: =>
coverity: =>
design: =>
design_review: => 0
feature_milestone: =>
fedora_test_page: =>
mark: => 0
patch: => 0
resolution: => fixed
review: => 0
selected: =>
sensitive: => 0
status: new => closed

Metadata Update from @sgallagh:
- Issue set to the milestone: SSSD Patches welcome

7 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/1713

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.

Metadata