Community Packages

Please read this before reporting a bug:

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!

FS#72557 - [sssd] add adcli to the community repository and as optional dependency to sssd

Attached to Project: Community Packages
Opened by Arne Fahrenwalde (macgeneral) - Wednesday, 27 October 2021, 09:36 GMT
Last edited by Toolybird (Toolybird) - Saturday, 03 June 2023, 23:21 GMT
Task Type Feature Request
Category Packages
Status Assigned
Assigned To Massimiliano Torromeo (mtorromeo)
Architecture All
Severity Medium
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 0%
Votes 0
Private No


ActiveDirectory setups can hand out a machine credential called the "kerberos keytab" to connected machines.
This can be set to expire forcing machines to regularly renew it.
While that renewal is supported by sssd, the feature can only be used if adcli is installed.
adcli currently is only available in the AUR and unlike sssd not in the official repositories.

Additional info:
* adcli version 0.9.1

Steps to reproduce:
* hard to reproduce because you need a fully working Kerberos/AD setup which hands out a krb5.keytab file which has to be regularly renewed.
This task depends upon