Skip to content

Commit

Permalink
man: Add local_auth_policy table
Browse files Browse the repository at this point in the history
  • Loading branch information
@justin-stephenson
justin-stephenson committed Apr 12, 2024
1 parent 23afc3b commit 4e0cdfb
Showing 1 changed file with 30 additions and 0 deletions.
30 changes: 30 additions & 0 deletions src/man/sssd.conf.5.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4005,6 +4005,36 @@ subdomain_inherit = ldap_purge_cache_timeout
should be comma-separated, such as
<quote>enable:passkey, enable:smartcard</quote>
</para>

<para>
The following table shows which local authentication
methods are enabled or disabled for each backend, with
the default local_auth_policy: <quote>match</quote>
</para>
<informaltable frame='all'>
<tgroup cols='4'>
<colspec colname='c1' align='center'/>
<colspec colname='c2' align='center'/>
<colspec colname='c3' align='center'/>
<colspec colname='c4' align='center'/>

<thead>
<row><entry namest='c1' nameend='c4' align='center'>
local_auth_policy = match (default)</entry></row>
<row><entry></entry><entry>Passkey</entry>
<entry>Smartcard</entry><entry>2FA</entry></row>
</thead>
<tbody>
<row><entry>IPA</entry><entry>enabled</entry>
<entry><para>enabled</para>
</entry><entry>enabled</entry></row>
<row><entry>AD</entry><entry>disabled</entry>
<entry><para>enabled</para></entry>
<entry>disabled</entry></row>
<row><entry>LDAP</entry><entry>disabled</entry>
<entry><para>disabled</para></entry>
<entry>disabled</entry></row>
</tbody></tgroup></informaltable>
<para>
Please note that if local Smartcard authentication
is enabled and a Smartcard is present, Smartcard
Expand Down

0 comments on commit 4e0cdfb

Please sign in to comment.