mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-23 07:33:27 -06:00
a21214cb9e
- ipa user-add-passkey - ipa user-remove-passkey - ipa stageuser-add-passkey - ipa stageuser-remove-passkey Fixes: https://pagure.io/freeipa/issue/9261 Signed-off-by: Florence Blanc-Renaud <flo@redhat.com> Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
17 lines
709 B
Plaintext
17 lines
709 B
Plaintext
# Configuration for Passkey Authentication
|
|
dn: cn=passkeyconfig,cn=etc,$SUFFIX
|
|
default:objectclass: top
|
|
default:objectclass: nscontainer
|
|
default:objectclass: ipaPasskeyConfigObject
|
|
default:ipaRequireUserVerification: default
|
|
|
|
# Passkey Administrators
|
|
dn: cn=Passkey Administrators,cn=privileges,cn=pbac,$SUFFIX
|
|
default:objectClass: top
|
|
default:objectClass: groupofnames
|
|
default:objectClass: nestedgroup
|
|
default:cn: Passkey Administrators
|
|
default:description: Passkey Administrators
|
|
|
|
dn: $SUFFIX
|
|
add:aci: (targetattr = "ipapasskey")(targattrfilters="add=objectclass:(objectclass=ipapasskeyuser)")(version 3.0;acl "selfservice:Users can manage their own passkey mappings";allow (write) userdn = "ldap:///self";) |