'\" t .\" Title: sssd-ifp .\" Author: The SSSD upstream - https://github.com/SSSD/sssd/ .\" Generator: DocBook XSL Stylesheets vsnapshot .\" Date: 02/10/2021 .\" Manual: File Formats and Conventions .\" Source: SSSD .\" Language: English .\" .TH "SSSD\-IFP" "5" "02/10/2021" "SSSD" "File Formats and Conventions" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- .\" ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ .\" http://bugs.debian.org/507673 .\" http://lists.gnu.org/archive/html/groff/2009-02/msg00013.html .\" ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ .ie \n(.g .ds Aq \(aq .el .ds Aq ' .\" ----------------------------------------------------------------- .\" * set default formatting .\" ----------------------------------------------------------------- .\" disable hyphenation .nh .\" disable justification (adjust text to left margin only) .ad l .\" ----------------------------------------------------------------- .\" * MAIN CONTENT STARTS HERE * .\" ----------------------------------------------------------------- .SH "NAME" sssd-ifp \- SSSD InfoPipe responder .SH "DESCRIPTION" .PP This manual page describes the configuration of the InfoPipe responder for \fBsssd\fR(8)\&. For a detailed syntax reference, refer to the \(lqFILE FORMAT\(rq section of the \fBsssd.conf\fR(5) manual page\&. .PP The InfoPipe responder provides a public D\-Bus interface accessible over the system bus\&. The interface allows the user to query information about remote users and groups over the system bus\&. .SH "CONFIGURATION OPTIONS" .PP These options can be used to configure the InfoPipe responder\&. .PP allowed_uids (string) .RS 4 Specifies the comma\-separated list of UID values or user names that are allowed to access the InfoPipe responder\&. User names are resolved to UIDs at startup\&. .sp Default: 0 (only the root user is allowed to access the InfoPipe responder) .sp Please note that although the UID 0 is used as the default it will be overwritten with this option\&. If you still want to allow the root user to access the InfoPipe responder, which would be the typical case, you have to add 0 to the list of allowed UIDs as well\&. .RE .PP user_attributes (string) .RS 4 Specifies the comma\-separated list of white or blacklisted attributes\&. .sp By default, the InfoPipe responder only allows the default set of POSIX attributes to be requested\&. This set is the same as returned by \fBgetpwnam\fR(3) and includes: .PP name .RS 4 user\*(Aqs login name .RE .PP uidNumber .RS 4 user ID .RE .PP gidNumber .RS 4 primary group ID .RE .PP gecos .RS 4 user information, typically full name .RE .PP homeDirectory .RS 4 home directory .RE .PP loginShell .RS 4 user shell .RE .sp It is possible to add another attribute to this set by using \(lq+attr_name\(rq or explicitly remove an attribute using \(lq\-attr_name\(rq\&. For example, to allow \(lqtelephoneNumber\(rq but deny \(lqloginShell\(rq, you would use the following configuration: .sp .if n \{\ .RS 4 .\} .nf user_attributes = +telephoneNumber, \-loginShell .fi .if n \{\ .RE .\} .sp Default: not set\&. Only the default set of POSIX attributes is allowed\&. .RE .PP wildcard_limit (integer) .RS 4 Specifies an upper limit on the number of entries that are downloaded during a wildcard lookup that overrides caller\-supplied limit\&. .sp Default: 0 (let the caller set an upper limit) .RE .SH "SEE ALSO" .PP \fBsssd\fR(8), \fBsssd.conf\fR(5), \fBsssd-ldap\fR(5), \fBsssd-krb5\fR(5), \fBsssd-simple\fR(5), \fBsssd-ipa\fR(5), \fBsssd-ad\fR(5), \fBsssd-files\fR(5), \fBsssd-sudo\fR(5), \fBsssd-session-recording\fR(5), \fBsss_cache\fR(8), \fBsss_debuglevel\fR(8), \fBsss_obfuscate\fR(8), \fBsss_seed\fR(8), \fBsssd_krb5_locator_plugin\fR(8), \fBsss_ssh_authorizedkeys\fR(8), \fBsss_ssh_knownhostsproxy\fR(8), \fBsssd-ifp\fR(5), \fBpam_sss\fR(8)\&. \fBsss_rpcidmapd\fR(5) \fBsssd-systemtap\fR(5) .SH "AUTHORS" .PP \fBThe SSSD upstream \- https://github\&.com/SSSD/sssd/\fR