From 24c5b6b2f4abff4253ede2fcf5f78f995f398037 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ga=C5=A1per=20Fele-=C5=BDor=C5=BE?= Date: Sun, 26 Oct 2025 22:42:08 +0100 Subject: [PATCH] Fix sddm, apparmor --- roles/ad_joined/templates/apparmor_cifs_homes | 1 + roles/ad_joined/templates/sssd.conf | 4 ++-- roles/fri_base/tasks/main_lin.yml | 6 ++++++ 3 files changed, 9 insertions(+), 2 deletions(-) create mode 100644 roles/ad_joined/templates/apparmor_cifs_homes diff --git a/roles/ad_joined/templates/apparmor_cifs_homes b/roles/ad_joined/templates/apparmor_cifs_homes new file mode 100644 index 0000000..eada994 --- /dev/null +++ b/roles/ad_joined/templates/apparmor_cifs_homes @@ -0,0 +1 @@ +@{HOMEDIRS}+=/home/profiles/ diff --git a/roles/ad_joined/templates/sssd.conf b/roles/ad_joined/templates/sssd.conf index 31e3216..777cda5 100644 --- a/roles/ad_joined/templates/sssd.conf +++ b/roles/ad_joined/templates/sssd.conf @@ -30,8 +30,8 @@ ldap_id_mapping = True use_fully_qualified_names = True full_name_format = %1$s@%3$s # fallback_homedir = /home/%u@%d -fallback_homedir = /cifs_home/%u.%F -subdomain_homedir = /cifs_home/%u.%F +fallback_homedir = /home/profiles/%u.%F +subdomain_homedir = /home/profiles/%u.%F access_provider = ad krb5_ccname_template = FILE:%d/krb5cc_%U krb5_lifetime = 86400 diff --git a/roles/fri_base/tasks/main_lin.yml b/roles/fri_base/tasks/main_lin.yml index 29d2e6a..0e9673d 100644 --- a/roles/fri_base/tasks/main_lin.yml +++ b/roles/fri_base/tasks/main_lin.yml @@ -265,6 +265,12 @@ dest: /etc/sddm.conf.d/ src: hide_users.conf +- name: Prevent sddm from enumerating all users + lineinfile: + path: /usr/share/sddm/themes/breeze/metadata.desktop + insertafter: EOF + state: present + line: needsFullUserModel=false - name: Copy authorized_keys become: false