SSS_USERMOD(8) SSSD Manual pages SSS_USERMOD(8)NAME
sss_usermod - modify a user account
SYNOPSIS
sss_usermod [options] LOGIN
DESCRIPTION
sss_usermod modifies the account specified by LOGIN to reflect the changes that are specified on the command line.
OPTIONS -c,--gecos COMMENT
Any text string describing the user. Often used as the field for the user's full name.
-h,--home HOME_DIR
The home directory of the user account.
-s,--shell SHELL
The user's login shell.
-a,--append-group GROUPS
Append this user to groups specified by the GROUPS parameter. The GROUPS parameter is a comma separated list of group names.
-r,--remove-group GROUPS
Remove this user from groups specified by the GROUPS parameter.
-l,--lock
Lock the user account. The user won't be able to log in.
-u,--unlock
Unlock the user account.
-Z,--selinux-user SELINUX_USER
The SELinux user for the user's login.
-?,--help
Display help message and exit.
THE LOCAL DOMAIN
In order to function correctly, a domain with "id_provider=local" must be created and the SSSD must be running.
The administrator might want to use the SSSD local users instead of traditional UNIX users in cases where the group nesting (see
sss_groupadd(8)) is needed. The local users are also useful for testing and development of the SSSD without having to deploy a full remote
server. The sss_user* and sss_group* tools use a local LDB storage to store users and groups.
SEE ALSO sssd(8), sssd.conf(5), sssd-ldap(5), sssd-krb5(5), sssd-simple(5), sssd-ipa(5), sssd-ad(5), sssd-sudo(5),sss_cache(8), sss_debuglevel(8),
sss_groupadd(8), sss_groupdel(8), sss_groupshow(8), sss_groupmod(8), sss_useradd(8), sss_userdel(8), sss_usermod(8), sss_obfuscate(8),
sss_seed(8), sssd_krb5_locator_plugin(8), sss_ssh_authorizedkeys(8), sss_ssh_knownhostsproxy(8),pam_sss(8).
AUTHORS
The SSSD upstream - http://fedorahosted.org/sssd
SSSD 06/17/2014 SSS_USERMOD(8)
I have installed Kerberos security in my UNIX system but I need to disable because of an application conflict with Kerberos.
So Anybody ca tell me how can I disable it?
Thank you (1 Reply)
I am setting up Kerberos authentication and this is one of the steps:
1. Open the JBoss startup script.
2. Add the following Java System Properties
-Djava.security.krb5.conf=/disk01/kerb/krb5.conf
-Djavax.security.auth.useSubjectCredsOnly=false
I added these 2 lines and it works in a... (0 Replies)
Hi All,
I have been given the task of integrating Linux (RedHat, Ubuntu, CentOS and Mac OSX) with a Windows Server 2012 A.D.
if anyone has done this before help would be very much appreciated, I have been looking at using either Samba with Win-bind or SSSD, if anyone has tested this please... (9 Replies)
I'm authenticating with SSSD / Kerberos against Windows Server 2012 R2. I've setup credentails delegation using these options:
Host *
GSSAPIAuthentication yes
GSSAPIDelegateCredentials yes
GSSAPITrustDns yes
For both client/server but no luck. I've read online that I need to run... (2 Replies)
Hello All,
I need help writing a bash script that will run on 500 LINUX servers and do the following:
1. Capture the ipa_server name from /etc/sssd/sssd.conf on a list of 500 servers in the ipahosts file.
2. Write to a file outputing only server name and IPA server name.
Root ssh keys... (3 Replies)