[Libosinfo] [osinfo-db][PATCH] fedora, installer: Use authselect instead of authconfig
Fabiano Fidêncio
fabiano at fidencio.org
Tue Jun 5 09:10:46 UTC 2018
On Tue, Jun 5, 2018 at 10:40 AM, Christophe Fergeau <cfergeau at redhat.com> wrote:
> Hey,
>
> Looks good
> Acked-by: Christophe Fergeau <cfergeau at redhat.com>
>
> For reference, this is documented in 'man authselect', and 'sudo
> authselect list' 'sudo authselect show sssd'. The only 2 possible
> choices at the moment are sssd and winbind.
> I see it has a 'with-mkhomedir' option
> with-mkhomedir::
> Enable automatic creation of home directories for users on their
> first login.
>
> I assume by default it's going to do the right thing, and users will
> have a homedir when needed? :)
The "with-mkhomedir" option is related to the use-case where the user
is joined to an identity management environment (like freeipa or
active directory).
So, in this case, with-mkhomedir would create the user's home
directory based on the LDAP setup and so on.
For local users, it doesn't matter, as this part won't be managed by SSSD.
The equivalent option from authconfig would be: "--enablemkhomedir"
which was never used before in our scripts, so we're safe to not pass
it :-)
>
> Christophe
>
> On Mon, Jun 04, 2018 at 08:55:57PM +0200, Fabiano Fidêncio wrote:
>> authconfig has been deprecated on F28 and authselect is its replacement.
>>
>> Signed-off-by: Fabiano Fidêncio <fabiano at fidencio.org>
>> ---
>> .../fedoraproject.org/fedora-kickstart-desktop.xml.in | 7 +++++++
>> data/install-script/fedoraproject.org/fedora-kickstart-jeos.xml.in | 7 +++++++
>> 2 files changed, 14 insertions(+)
>>
>> diff --git a/data/install-script/fedoraproject.org/fedora-kickstart-desktop.xml.in b/data/install-script/fedoraproject.org/fedora-kickstart-desktop.xml.in
>> index bdc9f5d..e8e1622 100644
>> --- a/data/install-script/fedoraproject.org/fedora-kickstart-desktop.xml.in
>> +++ b/data/install-script/fedoraproject.org/fedora-kickstart-desktop.xml.in
>> @@ -112,7 +112,14 @@ lang <xsl:value-of select="config/l10n-language"/>
>> network --onboot yes --bootproto dhcp --noipv6 --hostname=<xsl:value-of select="config/hostname"/>
>> rootpw dummyPa55w0rd # Actual password set (or unset) in %post below
>> firewall --disabled
>> +<xsl:choose>
>> + <xsl:when test="os/version < 28">
>> authconfig --enableshadow --enablemd5
>> + </xsl:when>
>> + <xsl:otherwise>
>> +authselect select sssd
>> + </xsl:otherwise>
>> +</xsl:choose>
>> timezone --utc <xsl:value-of select="config/l10n-timezone"/>
>> bootloader --location=mbr
>> zerombr
>> diff --git a/data/install-script/fedoraproject.org/fedora-kickstart-jeos.xml.in b/data/install-script/fedoraproject.org/fedora-kickstart-jeos.xml.in
>> index 8b99dfe..c4bda77 100644
>> --- a/data/install-script/fedoraproject.org/fedora-kickstart-jeos.xml.in
>> +++ b/data/install-script/fedoraproject.org/fedora-kickstart-jeos.xml.in
>> @@ -110,7 +110,14 @@ skipx
>> network --bootproto dhcp
>> rootpw <xsl:value-of select="config/admin-password"/>
>> firewall --disabled
>> +<xsl:choose>
>> + <xsl:when test="os/version < 28">
>> authconfig --enableshadow --enablemd5
>> + </xsl:when>
>> + <xsl:otherwise>
>> +authselect select sssd
>> + </xsl:otherwise>
>> +</xsl:choose>
>> <xsl:if test="os/version > 1">
>> selinux --enforcing
>> </xsl:if>
>> --
>> 2.14.3
>>
>> _______________________________________________
>> Libosinfo mailing list
>> Libosinfo at redhat.com
>> https://www.redhat.com/mailman/listinfo/libosinfo
--
Fabiano Fidêncio
More information about the Libosinfo
mailing list