Þ•Í0˜Ç-<$<(<T<U<W<j< ˆ<–<§< ¾<Ë<æ<õ<==(=@=]="w='š=lÂ=¿/>Rï>±B?@ô?55@/k@›@³@&È@ ï@A7(A`A€A2‘AÄAZáAFC> C3ßC*D>D!RDtD ”DµDÒDBïD)2E)\E*†E±E#ÄE3èE%F3BF%vF œF½FÕFìFüFG#9G%]GƒG¢G+´GàGýG#HAH[HxH”H³HÌH#æH I$I@I]IpI!I²IÍI2èIJ2+J%^J„J–K(«KÔKóK L&'LwNL!ÆL†èLoM‰M.¨M!×M%ùMN2N0INJzNÅN&åN% O2OPIO$šO(¿OèOP"P5:P,pP4P.ÒP2QA4Q,vQE£Q3éQR(:R#cR4‡R¼R+ÙRS $S ESRS"pS5“S ÉS6ÔS$ T*0T,[TˆT¦T'ÀT,èT-U%CU'iU>‘U ÐU,ñU&VEVXV!qV“VJ®V"ùV)W!FW-hW(–W¿WØW!ðWX!X 7XAX QX#_XƒX˜X ¯XºX)ÉXóX Y#YR7YUŠYAàYV"ZAyZ)»Z<åZB"[Ge[F­[.ô[F#\8j\;£\Zß\]:]E˜]:Þ]>^;X^-”^7Â^ú^_0_"G_j_ˆ_%¢_È_ Ü_ç_Fú_A`4S`4ˆ`Û½`V™a;ða;,b!hb0Šb »bÜbúbTc'ic!‘c³c!Òcôc2d4Edzd-•d3Ãd ÷dee.eIe geˆeže·eÏeäeþe f>fZfyf—f·f%ÒfNøfGgfgug‹g£g*»g:æg%!h*Gh$rh5—h0Íh+þh#*iNibiByi>¼i4ûi90jvjjáj#k:%k$`k…k.—k'Ækîkÿkl/l Il VlIdl&®lfÕl4wKCwQwMáwW/xM‡xÕxìx ýxMyVymy†y+Ÿy(Ëy ôyÿyz2z Oz2pz*£zÎzäz-{/{'C{0k{*œ{Ç{7Ý{|'4|\|{|=™|5×|1 }?}-V}"„}§}Æ}ß} ý}*~/I~$y~ž~¹~Ë~ê~ H"7k£Â(Óü€"+€N€ e€3r€¦€¿€Ø€òî€(á- ‚)8‚b‚€‚ œ‚ª‚Á‚/ׂ$ƒ,ƒ7Iƒ7ƒ¹ƒ Ùƒçƒúƒ „'„%7„]„En„´„$Ë„ð„…"…>…7V…&Ž…7µ…í….ý…&,†S†9j†$¤†Ɇé†$ü†:!‡^\‡c»‡_ˆ$ˆ.¤ˆTÓˆ!(‰×J‰#"Š#FŠjŠ Š3Š3ÁŠ(õŠ+‹!J‹l‹‹$Ÿ‹#Ä‹9è‹I"ŒlŒˆŒ¡Œ°ŒÍŒëŒ :Yw/ÀÙó Ž!Ž8ŽOŽfŽ~Ž)–ŽuÀŽ26Ai<«PèL9=†JÄ<‘=L‘EŠ‘;Б= ’NJ’9™’^Ó’\2“5“^Å“($”M”2d”<—”PÔ”K%•Šq•aü•X^–/·–1ç–—5—I—.]—§Œ—!4˜"V˜=y˜L·˜3™"8™A[™-™CË™Bš'Rš8zš)³š-ÝšŠ ›/–›&Æ›mí›;[œ —œ!¸œÚœ>ùœ„8½#Ù#ý!!žCž\ž5zž"°ž2Óž!Ÿ (Ÿ>6Ÿ8uŸ®Ÿ½Ÿ!ÚŸ*üŸA' !i  ‹ ¬ É !ä  ¡"'¡J¡d¡¡¡¹¡qס7I¢3¢@µ¢ö¢2£%D£3j£1ž£0У/¤21¤'d¤RŒ¤5ߤ8¥&N¥#u¥™¥'­¥Õ¥(襦H"¦*k¦D–¦EÛ¦è!§8 ¨"C¨if¨9Ш8 ©DC©8ˆ©6Á©Aø©:ª;Zª=–ª@ÔªA«KW«>£«3â«T¬Dk¬°¬-̬?ú¬C:­5~­´­BÏ­'®*:®e® „®5Ž®2Ä®9÷®91¯k¯…¯ž¯¥¯¸¯¾¯Ù¯ù¯+ °$7°$\°°$ °Å°Õ°è° ë°ù°±%±$9±^±r±Š±£±º±αä±²²0²I²d²x²Œ²!¤²7Ʋ8þ²27³j³ƒ³›³¶³γê³´´!+´"M´p´¯t´$¶&¶6¶ V¶d¶v¶¶-¥¶ Ó¶߶ô¶ ·&·(E·'n·&–·B½·j¸Îk¸U:¹Â¹ISº:º%غþº»%5»1[»»3¨»Ü»û»6 ¼B¼g^¼aƼ<(½e½+z½%¦½*̽z÷½Wr¾<ʾ+¿&3¿'Z¿"‚¿-¥¿-Ó¿ÀC À%dÀ(ŠÀ)³ÀÝÀïÀ/Á+>Á>jÁ$©Á/ÎÁþÁÂ$Â"5Â%XÂ!~Â! ÂÂÂàÂ8õ .Ã#OÃ#s×òÃÏÃíÃ$ Ä2Ä2LÄÄ›Ä(·ÄàÄ1ùÄ2+Å(^ŇÅ;£ÅßÅ9ôÅ..Æ®]Æ© Ç.¶Ç/åÇÈ-È(CÈ¥lÈ3ɸFÉ&ÿÉ+&Ê@RÊ)“Ê7½ÊõÊË1ËdLË#±Ë%ÕË7ûË3ÌlPÌ/½Ì+íÌ$Í">ÍaÍCwÍ1»ÍHíÍ&6ÎC]ÎM¡Î>ïÎg.Ï8–ÏÏÏ2îÏ!!ÐHCÐ'ŒÐ>´Ð*óÐ!Ñ@ÑOÑgÑ2‚Ñ µÑAÁÑ'Ò*+ÒHVÒ*ŸÒ/ÊÒ3úÒ8.ÓCgÓ0«Ó&ÜÓTÔ5XÔ8ŽÔ1ÇÔùÔ) Õ65Õ$lÕd‘Õ öÕ-Ö'EÖ4mÖ)¢ÖÌÖäÖ#ÿÖ#×7×J× Q× ^×4i×ž×±× Æ×Ô×2è×Ø3Ø*JØpuØ_æØRFÙg™ÙOÚ8QÚGŠÚEÒÚKÛAdÛ+¦Û3ÒÛ<Ü6CÜhzÜpãÜRTÝI§ÝNñÝC@Þ6„ÞG»Þßß9ß#Tß xß™ß&·ß#Þß ààb"à …à9’à,ÌàïùàtéáR^âO±â0ãL2ã'ã!§ã!ÉãqëãH]ä"¦ä!Éä$ëä$å55å6kå¢åM»å: æDæVæqææ-¬æ)Úæ#ç%(ç&Nç&uçœç·çÖç#òç%è&<ècè&ƒè#ªèeÎè4éRébé|é“é,­é?Úé%ê$@êeê,€ê!­êÏê#ëê ë-ë:KëH†ëTÏë;$ìj`ì$Ëì7ðì8(íaíí?•í(Õíþí î 5îVî oî }îH‹î&Ôî|ûî2xïM«ïAùïG;ð,ƒð°ð;ÄðCñ.Dñsñ8‡ñÀñÕñ!ôñòFò$dò-‰ò·òÇòÞòöòžó?¥ó#åó ô!(ô/Jôzô:–ô&Ñô)øô0"õ)Sõ%}õ.£õÒõ"íõ'ö#8ö1\ö*Žö'¹ö áöôîö ã÷í÷'ø3+ø7_øM—ø,åøù/%ùUùFpùG·ùCÿù Cú:Pú@‹ú@ÌúN ûS\ûO°ûYüPZü«üÉü ÞüKéü5ý"RýuýE“ý9Ùýþ#"þ(Fþ%oþ#•þL¹þ/ÿ 6ÿ#Wÿ/{ÿ!«ÿ5Íÿ9=Y2k!ž!Àâ-F0JwCÂA >b ¡Âßû(!?a}•*¦!ÑóS?g#§Ë+Ý '>f …T’)ç3$E@jY«VH\"¥)Èò  2. 0a $’ @· <ø $5  Z h | "“ ¶ "Ê í D E /]  ¥ à Û 6û +2 6^  • ?  @à #! XE %ž Ä ã 'û G#dk_Ða03’)ÆXð%I o4}!²$Ôù66K)‚-¬"Ú$ý*"/M)}I§YñKe‚•±Ìæ7TKq½Õí,AVl9‚{¼48FmH´^ýW\?´Dô>9Bx<»=øC6Qz5Ìbde;Êd kŒ7¥CÝP!Kr¾k@V¬$I(r¤/¸Ëè´ Ó >ó $2!/W!'‡!L¯!5ü!;2"On"6¾"0õ"9&#8`#º™#=T$.’$Á$+A%!m%"%#²%<Ö%&“&3¬&"à&''+' K'?l'*¬'P×'"(( K(7V(0Ž( ¿(,Ë(0ø(5))__)2¿)5ò)&(*,O*2|*5¯*4å*0+,K+-x+-¦+)Ô+þ+=Ž,CÌ,T- e-8†-%¿-=å-I#.?m.:­.>è.7'/]_/U½/]0'q0E™0*ß0$ 1/15G1 }1Uˆ1;Þ1V28q2îª2C™3)Ý34J•4Mà4N.5H}5EÆ5S 6%`6=†6PÄ6P7Jf7R±7I8;N8YŠ8Xä8=9&X9C9AÃ9B:0H:Ny:'È:-ð:;:;/A;4q;;¦;;â;8<7W< <™<©<°<È<å<#ô<=!5=W=!s=•=´= Ä=Î=â=÷=>/>L>`>x>”>«>¿>.Ø>??-?C?[?l?}?@’?KÓ?>@M^@(¬@Õ@ï@ A&ADAaAyA(A¹AÙA¬%¡@¦hGñlºH¼² \΀IÉê ÄŸ U¢äѦ:y¤YS»MƧk2! -Ü9|ò_!§Žƒ} ÈÝ>RažÙÛ¶eŸè¤Di&Ë+ÐïI—Ì‹Q~fÓ‰ê€FTK;î²u·®x‹%ø“CdEeù¾^M…,/:ü+œ ˜QˆzfSe¾Lv73áC©,Ó½uü¬„õ›D£ñœ¸JÇbn°ÁѬÊÅÌ"ó tÀ Öˆƒ‚roíþpO¦ðlgÃ) \ˆ`Ö¯)ÿ®N]/K4µvãzé3Œbo?©EA`{‰~<Ãh4–…[Zª²W1Ïw˜ ë•(¨‘BAdt3ÊÇŠ ^,kÂÜ6˵Ò—´•æÉô{Îû¼÷$™õâU(º”wqáj_š!Í ?ŸÅH*@21[§O¹V.µ‘Pøz–#-¡ }˜R}ßQ‡|N4Á³—Ž+¶º:809p*öåbŠ.‡Ì³°³„m2v·ØB”q“W~­þ¥…Ê¿Iƒ=>/¿ °±¸ª„óš[ÙsÚ™À£ŽR¥gì´Æ¿`«E|<ZBÁ" ò¹Gd=¥A÷ ÐCaýâ&ö‘]¨Õ†À» ÿj&5_L'ãc¯×¼’s"wŒ¯>$ôìN8.(ç×€W¡ù)‚œj ÞØ 6@g7à­Dð5«hO±‡™iÔ›6P’¢¹y‹JoL£®*n9ÏýpîúlÉÕÛ5¢¶í±«¸0ßccSX¤ÍæVà–#Ô©­Â½=•fͽÇ{YïuqärèZTy%ÝHúªËx‚YKTÈ;ž¨'ÒMûPXm7?»šr8Œ;”Uë^Å'J1ÄÞå¾kFé·s$tÄimžx††ÚaÆ’ #ŠV-È<ÓF \G›0‰´]çXnÝA,<@<äAÿÿÿÿB*ÿÿÿÿ Attribute: %1$s %s is not present in cache. - gecos: %s - group id: %d - home directory: %s - no env - - no mapped users found - - shell: %s - user id: %d - user name: %s %1$-25s %2$#.4x %1$-25s Unknown domain %1$-25s Unreachable service %1$s must be run as root %s: Unable to read value [%d]: %s , your cached password will expire at: A comma-separated list of groups, members of which should be excluded from recording, only when scope=all. A comma-separated list of groups, members of which should have session recording enabled. Matches group names as returned by NSS. I.e. after the possible space replacement, case changes, etc.A comma-separated list of users to be excluded from recording, only when scope=allA comma-separated list of users which should have session recording enabled. Matches user names as returned by NSS. I.e. after the possible space replacement, case changes, etc.A list of extra attributes to download along with the user entryA mapping from user names to Kerberos principal namesA specific order of the domains to be looked upAccess control providerAction not provided Active Directory backup server addressActive Directory client hostnameActive Directory domainActive Directory primary group attribute for ID-mappingActive Directory server addressActive servers: Additional timeout to wait for a card if requestedAddress of backup IPA serverAfter changing the OTP password, you need to log out and back in order to acquire a ticketAll spaces in group or user names will be replaced with this characterAllow certificate based/Smartcard authentication.Allow core dumpsAllow passkey device authentication.Allow to generate ssh-keys from certificatesAllowed services for using smartcardsAllows to retain local users as members of an LDAP group for servers that use the RFC2307 schema.Always query all the caches before querying the Data ProvidersAn error occurred, but no description can be found.An open file descriptor for the debug logsAnalyze logged dataArchive SSSD log files in tarballArchiving log files into %s... Attribute %1$s already indexed. Attribute %1$s not indexed. Attribute (-a) not provided Attribute indicating that server side password policies are activeAttribute listing authorized PAM servicesAttribute listing authorized server hostsAttribute listing authorized server rhostsAttribute to indexAttribute with the name of the viewAttribute with the reference to the original objectAuthenticate at %1$s and press ENTER.Authenticate with PIN %1$s at %2$s and press ENTER.Authenticated with cached credentialsAuthentication is denied until: Authentication providerAuthentication timeoutAutofs providerAutomatic full refresh periodAutomatic smart refresh periodAutomounter map entry key attributeAutomounter map entry value attributeAutomounter map name attributeBackup local dataBackup local data and remove cached contentBase DN for IP hosts lookupsBase DN for IP networks lookupsBase DN for automounter map lookupsBase DN for group lookupsBase DN for netgroup lookupsBase DN for service lookupsBase DN for sudo rules lookupsBase DN for user lookupsBecome a daemon (default)Cache credentials for offline loginCache entry creation dateCache entry expiration timeCache entry last update timeCached in InfoPipeCannot get stat of SSSD socket.Certificate does not match rule. Certificate matches rule. Certificate related tools:Change or print information about SSSD debug levelCheck PAC flagsCheck mapping and matching rule with a certificateComma separated list of allowed usersComma separated list of groups that are allowed to log in. This applies only to groups within this SSSD domain. Local groups are not evaluated.Comma separated list of groups that are explicitly denied access. This applies only to groups within this SSSD domain. Local groups are not evaluated.Comma separated list of prohibited usersCommand '%s' failed with [%d] Command to start serviceConfiguration files tools:Control enumeration of trusted domainsControls if SSSD should monitor the state of resolv.conf to identify when it needs to update its internal DNS resolver.Could not open available domains Could not open domain %1$s. If the domain is a subdomain (trusted domain), use fully qualified name instead of --domain/-d parameter. Couldn't invalidate %1$s Couldn't invalidate %1$s %2$s Create clean cache files and import local dataCreating backup of local data... Creating cache index for domain %1$s Current Password: DN for ppolicy queriesDNS service name for LDAP password change serverDefault logon right (or permit/deny) to use for unmapped PAM service namesDefault subdomain homedir valueDelete log files instead of truncatingDeleting cache index for domain %1$s Deleting log files... Directory on the filesystem where SSSD should store Kerberos replay cache files.Directory to store credential cachesDisable Active Directory range retrievalDisable netlink interfaceDisable the LDAP paging controlDiscovered %s servers: Display a warning N days before the password expires.Display users/groups in fully-qualified formDo not filter domain local groups from other domainsDomain of the information provider (mandatory)Domain to add to names without a domain component.Don't forget to also update the indexes on the remote providers. Don't include group members in group lookupsERROR: Tevent chain ID support missing, log analyzer is unsupported. Enable DNS sites - location based service discoveryEnable credential validationEnable debugging in the libfido2 libraryEnable enumerating all users/groupsEnable or disable core dumps for all SSSD processes.Enable or disable the domainEnable or disable the implicit files domainEnable/disable debug backtraceEnabled Active Directory domainsEnables FASTEnables enterprise principalsEnables principal canonicalizationEnables using of subdomains realms for authenticationEnter PIN:Entry cache background update timeout length (seconds)Entry cache timeout length (seconds)Enumeration cache timeout length (seconds)Error during certificate matching [%d][%s]. Error looking up public keys Error setting the locale Error while executing external command Error while executing external command '%s' Error while reading configuration directory. Error: Unable to get object [%d]: %s FAST options ('never', 'try', 'demand')Failed to add mapping and matching rules with error [%d][%s]. Failed to decode base64 string. Failed to generate mapping filter [%d][%s]. Failed to load configuration from %s. Failed to open %s Failed to run validatorsFailed to setup certmap context. File %1$s does not exist. File ownership and permissions check failed. Expected root:root and 0600. File that contains CA certificatesFile that contains the client certificateFile that contains the client keyFiles negative cache timeout length (seconds)Filter PAM responses sent to the pam_sssFilter for group lookupsFilter for user lookupsFirst Factor (Current Password): First Factor: Follow LDAP referralsFull NameGECOS attributeGID attributeGenerate access report for a domainGroup UUID attributeGroup member attributeGroup nameGroup passwordGroups that SSSD should explicitly ignoreHome directory attributeHost identity providerHost not specified Hostnames and/or fully qualified domain names of this machine to filter sudo rulesHow long (minutes) to deny login after offline_failed_login_attempts has been reachedHow long can cached credentials be used for cached authenticationHow long should SSSD talk to single DNS server before trying next server (miliseconds)How long should keep trying to resolve single DNS query (seconds)How long the PAC data is considered validHow long to allow cached logins between online logins (days)How long to keep cached entries after last successful login (days)How long to retain a connection to the LDAP server before disconnectingHow long to wait for replies from DNS when resolving servers (seconds)How long will be in-memory cache records validHow many days before password expiration a warning should be displayedHow many failed logins attempts are allowed when offlineHow many maximum entries to fetch during a wildcard requestHow many seconds to keep a host in the known_hosts file after its host keys were requestedHow many seconds to keep a host ssh key after refresh. IE how long to cache the host key for.How many seconds to keep identity information cached for PAM requestsHow many seconds will pam_sss wait for p11_child to finishHow many seconds will pam_sss wait for passkey_child to finishHow often should expired entries be refreshed in backgroundHow often should subdomains list be refreshedHow often to periodically update the client's DNS entryHow to dereference aliasesIP host entryUSN attributeIP host name attributeIP host number (address) attributeIP network entryUSN attributeIP network name attributeIP network number (address) attributeIPA client hostnameIPA domainIPA server addressIPv4 or IPv6 addresses or network of this machine to filter sudo rulesIdentity providerIdle time before automatic disconnection of a clientIdle time before automatic shutdown of the responderIf 2-Factor-Authentication (2FA) is used and credentials should be saved this value determines the minimal length the first authentication factor (long term password) must have to be saved as SHA512 hash into the cache.If a shell stored in central directory is allowed but not available, use this fallbackIf set to false, host argument given by PAM will be ignoredIf true, SSSD will switch back to lower-wins ordering logicIgnore unreadable LDAP referencesInclude microseconds in timestamps in debug logsInclude timestamps in debug logsIndex operation failed: %1$s Indexes for domain %1$s: Indicates what is the syntax of the config file. SSSD 0.6.0 and later use version 2.InfoPipe User lookup with [%s] failed. Information about cached content:Information about cached groupInformation about cached netgroupInformation about cached userInforms that the responder has been dbus-activatedInforms that the responder has been socket-activatedInitgroups expiration timeInsert your passkey device, then press ENTER.Invalid input, please provide either '%s' or '%s'. Invalid port Invalid result.Invalidate all SSH hostsInvalidate all autofs mapsInvalidate all cached entriesInvalidate all cached sudo rulesInvalidate all groupsInvalidate all netgroupsInvalidate all servicesInvalidate all usersInvalidate cached objectsInvalidate particular SSH hostInvalidate particular autofs mapInvalidate particular groupInvalidate particular netgroupInvalidate particular serviceInvalidate particular sudo ruleInvalidate particular userIssues identified by validators: %zu Kerberos TGT will not be granted upon login, user experience will be affected.Kerberos backup server addressKerberos realmKerberos realm to useKerberos server addressKerberos service keytabLDAP filter to determine access privilegesLength of time between attempts to reconnect while offlineLength of time between cache cleanupsLength of time between enumeration updatesLength of time to attempt connectionLength of time to attempt synchronous LDAP operationsLength of time to wait for a enumeration requestLength of time to wait for a search requestLifetime of TGT for LDAP connectionLifetime of the TGTList available domainsList of PAM services that are allowed to authenticate with GSSAPI.List of UIDs or user names allowed to access the PAC responderList of domains accessible even for untrusted users.List of options that should be inherited into a subdomainList of pairs : that must be enforced for PAM access with GSSAPI authenticationList of possible ciphers suitesList of trusted uids or user's nameList of user attributes the InfoPipe is allowed to publishLocal authentication methods policy Local data tools:Location of the keytab to validate credentialsLocation of the user's credential cacheLog files tools:Lower bound for ID-mappingManage cache indexesMapping filter: %s Mapping ruleMatching ruleMaximum age in days before the machine account password should be renewedMaximum nesting level SSSD will followMaximum number of rules that can be refreshed at once. If this is exceeded, full refresh is performed.Maximum period deviation between enumeration updatesMaximum period deviation when refreshing expired entries in backgroundMaximum period deviation when refreshing the subdomain listMaximum period deviation when updating the client's DNS entryMaximum time deviation between cache cleanupsMaximum user IDMessage printed when user account is expired.Message printed when user account is locked.Messages generated during configuration merging: %zu Minimum user IDMode used to change user passwordModification time attributeModification time attribute for groupsModification time attribute for netgroupsNameName of attribute that is used as object class for sudo rulesName of the default domain for ID-mappingNegative cache timeout length (seconds)Netgroup nameNetgroup triple attributeNetgroups members attributeNew Password: No Kerberos TGT granted as the server does not support this method. Your single-sign on(SSO) experience will be affected.No cache object matched the specified search No servers discovered. None so far. Not enough memory Number of IDs for each slice when ID-mappingNumber of secondary slicesNumber of times to attempt connection to Data ProvidersObject class for IP hostsObject class for IP networksObject class for automounter map entriesObject class for automounter mapsObject class for sudo rulesObjectclass for group override objectsObjectclass for groupsObjectclass for netgroupsObjectclass for override objectsObjectclass for servicesObjectclass for user override objectsObjectclass for usersObjectclass for view containersOfflineOne of the following strings specifying the scope of session recording: none - No users are recorded. some - Users/groups specified by users and groups options are recorded. all - All users are recorded.OnlineOnline status: %s Only invalidate entries from a particular domainOperation mode for GPO-based access controlOption -g is incompatible with -D or -i Option -i|--interactive is not allowed together with -D|--daemon Option for tuning the machine account renewal taskOut of memory! Override GID value from the identity provider with this valueOverride existing backupOverride homedir value from the identity provider with this valueOverride shell value from the identity provider with this valueOverride the DNS server used to perform the DNS updatePAM Environment: PAM action [auth|acct|setc|chau|open|clos], default: PAM service names for which GPO-based access is always deniedPAM service names for which GPO-based access is always grantedPAM service names that map to the GPO (Deny)BatchLogonRight policy settingsPAM service names that map to the GPO (Deny)InteractiveLogonRight policy settingsPAM service names that map to the GPO (Deny)NetworkLogonRight policy settingsPAM service names that map to the GPO (Deny)RemoteInteractiveLogonRight policy settingsPAM service names that map to the GPO (Deny)ServiceLogonRight policy settingsPAM service, default: PAM stack to usePIN lockedPKCS#11 URI to restrict the selection of devices for Smartcard authenticationPasskey related tools:Password change failed. Password change providerPassword expired. Change your password now.Password reset by root is not supported.Password: Passwords do not matchPath of group file sources.Path of passwd file sources.Path to CA certificate directoryPath to certificate database with PKCS#11 modules.Path to storage of trusted CA certificatesPerform cache upgradePerform passkey registrationPerform static analysis of SSSD configurationPermission denied. Please (re)insert (different) SmartcardPlease select at least one object to invalidate Policy to evaluate the password expirationPrimary GID attributePrint information about a user and check authenticationPrint information about domainPrint information about the certificatePrint the host ssh public keysPrint version number and exitPrintf-compatible format for displaying fully-qualified namesPrivileged socket has wrong ownership or permissions.Public socket has wrong ownership or permissions.Reenter new Password: Refresh the configuration database, then exitRegex to parse username and domainRemove existing SSSD log filesRemoving cache files... Renewable lifetime of the TGTRequested lifetime of the ticketRequested renewable lifetime of the ticketRequests canonicalization of the principal nameRequire TLS certificate verificationRequire TLS for ID lookupsResolver providerRestart SSSD after data importRestore local data from backupRestoring local data... Restrict or prefer a specific address family when performing DNS lookupsRun PAC responder automatically for AD and IPA providerRun interactive (not a daemon)SELinux providerSID of the default domain for ID-mappingSSH public key attributeSSSD Domains to startSSSD InfoPipe user lookup result: SSSD Services to startSSSD Status:SSSD backup of local data already exists, override?SSSD is already running SSSD is not run by root.SSSD is not running. SSSD monitors the state of resolv.conf to identify when it needs to update its internal DNS resolver. By default, we will attempt to use inotify for this, and will fall back to polling resolv.conf every five seconds if inotify cannot be used.SSSD must not be running. Stop SSSD now?SSSD needs to be restarted. Restart SSSD now?SSSD needs to be running. Start SSSD now?SSSD nss user lookup result: SSSD socket does not exist.SUDO providerScope of group lookupsScope of user lookupsSearch base for Desktop Profile related objectsSearch base for HBAC related objectsSearch base for SUBID rangesSearch base for object containing info about IPA domainSearch base for objects containing info about ID rangesSearch base for view containersSearch by SIDSearch by group IDSearch by user IDSecond Factor (optional): Second Factor: Selects the principal to use for FASTServer message: Server where the change password service is running if not on the KDCService name attributeService name for DNS service lookupsService port attributeService protocol attributeSession management providerSet libldap debug levelSet lower boundary for allowed IDs from the LDAP serverSet the verbosity of the debug loggingSet upper boundary for allowed IDs from the LDAP serverShell attributeShell to use if the provider does not list oneShould filtered users appear in groupsShow debug informationShow domain list including primary or trusted domain typeShow information about active serverShow list of discovered serversShow online statusShow users mapped to the certificateSimilar to --genconf, but only refreshes the given sectionSize (in megabytes) of the data table allocated inside fast in-memory cache for group requestsSize (in megabytes) of the data table allocated inside fast in-memory cache for initgroups requestsSize (in megabytes) of the data table allocated inside fast in-memory cache for passwd requestsSmart and full refresh random offsetSpecifies the server principal to use for FASTSpecifies time in seconds for which the list of subdomains will be considered valid.Specify a non-default config fileSpecify a non-default snippet dir (The default is to look in the same place where the main config file is located. For example if the config is set to "/my/path/sssd.conf", the snippet dir "/my/path/conf.d" is used)Specify base64 encoded certificate.Specify debug level you want to setSpecify domain name.Specify name.Specify the maximal SSF for LDAP sasl authorizationSpecify the minimal SSF for LDAP sasl authorizationSpecify the sasl authorization id to useSpecify the sasl authorization realm to useSpecify the sasl mechanism to useSpecify user name.Start SSSD if it is not runningStart SSSD when the cache is removedStop SSSD before removing the cacheStore password if offline for later online authenticationSubstitute empty homedir value from the identity provider with this valueSudo rule command attributeSudo rule host attributeSudo rule nameSudo rule notafter attributeSudo rule notbefore attributeSudo rule option attributeSudo rule order attributeSudo rule runas attributeSudo rule runasgroup attributeSudo rule runasuser attributeSudo rule user attributeSystem is offline, password change not possibleTarget a specific domainTarget the AUTOFS serviceTarget the IFP serviceTarget the NSS serviceTarget the PAC serviceTarget the PAM serviceTarget the SSH serviceTarget the SSSD serviceTarget the SUDO serviceTevent chain ID used for logging purposesThe LDAP attribute that contains DN of HBAC rule which can be used for matching instead of memberUser and memberHost.The LDAP attribute that contains FQDN of the host.The LDAP attribute that contains NIS domain name of the netgroup.The LDAP attribute that contains SELinux user string itself.The LDAP attribute that contains all hosts / hostgroups this rule match against.The LDAP attribute that contains all users / groups this rule match against.The LDAP attribute that contains host category such as 'all'.The LDAP attribute that contains the UUID/GUID of an LDAP netgroup object.The LDAP attribute that contains the host's SSH public keys.The LDAP attribute that contains the name of SELinux usermap.The LDAP attribute that contains the names of the netgroup's members.The LDAP attribute that contains unique ID of the user map.The LDAP attribute that contains user category such as 'all'.The LDAP attribute that contains whether or not is user map enabled for usage.The LDAP attribute that corresponds to the netgroup name.The LDAP attribute that lists FQDNs of hosts and host groups that are members of the netgroup.The LDAP attribute that lists hosts and host groups that are direct members of the netgroup.The LDAP attribute that lists netgroup's memberships.The LDAP attribute that lists system users and groups that are direct members of the netgroup.The LDAP group external member attributeThe SSSD domain to useThe Schema Type in use on the LDAP server, rfc2307The TTL to apply to the client's DNS entry after updating itThe amount of time between lookups of the GPO policy files against the AD serverThe amount of time between lookups of the HBAC rules against the IPA serverThe amount of time in minutes between lookups of Desktop Profiles rules against the IPA server when the last request did not find any ruleThe amount of time in seconds between lookups of the Desktop Profile rules against the IPA serverThe amount of time in seconds between lookups of the SELinux maps against the IPA serverThe authentication token of the default bind DNThe automounter location this IPA client is usingThe debug level to run withThe default base DNThe default bind DNThe domain part of service discovery DNS queryThe entry cache can be set to automatically update entries in the background if they are requested beyond a percentage of the entry_cache_timeout value for the domain.The group ID to run the server asThe group to create FAST ccache asThe interface whose IP should be used for dynamic DNS updatesThe list of shells that will be vetoed, and replaced with the fallback shellThe list of shells users are allowed to log in withThe name of the NSS library to useThe name of the NSS library to use for hosts and networks lookupsThe name of the automount master map in LDAP.The number of file descriptors that may be opened by this responderThe number of members that must be missing to trigger a full derefThe number of preforked proxy children.The number of records to retrieve in a single LDAP queryThe object class of a host entry in LDAP.The object class of a netgroup entry in LDAP.The option denotes that the SSSD is running on IPA server and should perform lookups of users and groups from trusted domains differently.The path to the proxy command must be absolute The port to use to connect to the hostThe provider which should handle fetching of subdomains. This value should be always the same as id_provider.The type of the authentication token of the default bind DNThe user ID to run the server asThe user to create FAST ccache asThe user to drop privileges toThe value of the password field the NSS provider should returnThe value of this option will be used in the expansion of the override_homedir option if the template contains the format string %H.There is no configuration. This domain has no active servers. Time between two checks for renewalTreat usernames as case sensitiveTruncating log files... Tune certificate verificationTune certificate verification for PAM authentication.Tune passkey verification behaviorTune sssd to honor or ignore netlink state changesType of the group and other flagsUID attributeURI of a backup LDAP server where password changes are allowedURI of an LDAP server where password changes are allowedUUID attributeUnable to archive log files Unable to connect to system bus! Unable to create backup directory [%d]: %sUnable to create backup of local data, can not remove the cache. Unable to export group overrides Unable to export user overrides Unable to get online status Unable to get server list Unable to import group overrides Unable to import user overrides Unable to parse command arguments Unable to parse name %s. Unable to read user input Unable to remove cache files Unable to remove log files Unable to truncate log files Unexpected argument(s) provided, options that invalidate a single object only accept a single provided argument. Unexpected error while looking for an error descriptionUnexpected format of the server credential message.Unknown action: %1$s Valid actions are "%2$s", "%3$s and "%4$s" Upper bound for ID-mappingUse ID-mapping of objectSID instead of pre-set IDsUse Kerberos auth for LDAP connectionUse LDAPS port for LDAP and Global Catalog requestsUse anonymous PKINIT to request FAST armor ticketUse anonymous PKINIT to request FAST credentialsUse autorid-compatible algorithm for ID-mappingUse custom version of krb5_get_init_creds_passwordUse only the upper case for realm namesUse the following matching rules to filter the certificates for ssh-key generationUse the given string as search base for host objects.Use the given string as search base for trusted domains.Used configuration snippet files: %zu User name lookup with [%s] failed. User not specified User principal attribute (for Kerberos)Username attributeUsers that SSSD should explicitly ignoreValidate the PACVarious tags stored by the realmd configuration service for this domain.Watchdog timeout before restarting serviceWhat kind of authentication should be used to perform the DNS updateWhat kind of messages are displayed to the user during authenticationWhen SSSD switches to offline mode the amount of time before it tries to go back online will increase based upon the time spent disconnected. This value is in seconds and calculated by the following: offline_timeout + random_offset.When shall the PAM responder force an initgroups requestWhere to drop krb5 config snippetsWhether the LDAP library should perform a reverse lookup to canonicalize the host name during a SASL bindWhether the domain is usable by the OS or by applicationsWhether the nsupdate utility should default to using TCPWhether the provider should explicitly update the PTR record as wellWhether to automatically create private groups for usersWhether to automatically update the client's DNS entryWhether to automatically update the client's DNS entry in FreeIPAWhether to create kdcinfo filesWhether to evaluate the time-based attributes in sudo rulesWhether to filter rules by hostname, IP addresses and networkWhether to hash host names and addresses in the known_hosts fileWhether to include rules that contains netgroup in host attributeWhether to include rules that contains regular expression in host attributeWhether to look up canonical group name from cache if possibleWhether to match authenticated UPN with target userWhether to update the ldap_user_shadow_last_change attribute after a password changeWhether to update the machine account password in the Samba databaseWhether to use Token-GroupsWhether to use the Global Catalog for lookupsWhich PAM services are permitted to contact application domainsWhich attributes shall be used to evaluate if an account is expiredWhich rules should be used to evaluate access controlYour password has expired.Your password has expired. You have %1$d grace login(s) remaining.Your password will expire in %1$d %2$s.a particular site to be used by the clientaccountExpires attribute of ADattributeattribute containing the X509 certificate of the userattribute containing the email address of the userattribute containing the passkey mapping data of the userattribute listing allowed authentication types for a userdlopen failed with [%s]. dlsym failed with [%s]. domainentryUSN attributeerrorkrbLastPwdChange attributekrbPasswordExpiration attributelastUSN attributeldap_backup_uri, The URI of the LDAP serverldap_uri, The URI of the LDAP serverloginAllowedTimeMap attribute of NDSloginDisabled attribute of NDSloginExpirationTime attribute of NDSmalloc failed. memberOf attributenonot connectednsAccountLock attributeobjectSID attributepam_acct_mgmt: %s pam_authenticate for user [%s]: %s pam_chauthtok: %s pam_close_session: %s pam_get_item failed: %s pam_open_session: %s pam_setcred: [%s] pam_start failed: %s set_debug_file_from_fd failed. shadowExpire attributeshadowFlag attributeshadowInactive attributeshadowLastChange attributeshadowMax attributeshadowMin attributeshadowWarning attributesss_getpwnam_r failed with [%d]. sss_ssh_knownhostsproxy: Could not resolve hostname %s sss_ssh_knownhostsproxy: connect to host %s port %d: %s sss_ssh_knownhostsproxy: unable to proxy data: %s talloc_asprintf failed. testing pam_acct_mgmt testing pam_authenticate testing pam_chauthtok testing pam_close_session testing pam_open_session testing pam_setcred unknown action user: %s action: %s service: %s userAccountControl attribute of ADyesProject-Id-Version: PACKAGE VERSION Report-Msgid-Bugs-To: sssd-devel@lists.fedorahosted.org PO-Revision-Date: 2023-09-18 03:54+0000 Last-Translator: ê¹€ì¸ìˆ˜ Language-Team: Korean Language: ko MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; X-Generator: Weblate 5.0.2 ì†ì„±: %1$s %sê°€ ìºì‰¬ì— 없습니다. - gecos: %s - 그룹 id: %d - 홈 디렉토리: %s -í™˜ê²½ì´ ì—†ìŒ - - ë§¤í•‘ëœ ì‚¬ìš©ìžë¥¼ ì°¾ì„ ìˆ˜ ì—†ìŒ - -쉘: %s - ì‚¬ìš©ìž ID: %d - ì‚¬ìš©ìž ì´ë¦„: %s %1$-25s %2$#.4x %1$-25s 알려지지 ì•Šì€ ë„ë©”ì¸ %1$-25s ì ‘ê·¼ í•  수 없는 서비스 %1$s는 rootë¡œ 실행해야 합니다 %s: [%d] ê°’ì„ ì½ì„ 수 ì—†ìŒ: %s , ë‹¹ì‹ ì˜ ìºì‰¬ëœ 비밀번호는 다ìŒì— 만료ë©ë‹ˆë‹¤.: scope=allì¸ ê²½ìš°ì—만 기ë¡ì—ì„œ 제외ë˜ì–´ì•¼ 하는 쉼표로 êµ¬ë¶„ëœ ê·¸ë£¹ 목ë¡ìž…니다. 쉼표로 êµ¬ë¶„ëœ ê·¸ë£¹ 목ë¡ìœ¼ë¡œ, ê·¸ 구성ì›ì€ 세션 기ë¡ì„ 활성화해야 합니다. NSSì—ì„œ ë°˜í™˜ëœ ê·¸ë£¹ ì´ë¦„ê³¼ ì¼ì¹˜í•©ë‹ˆë‹¤. 가능한 공간 êµì²´ 후, ì¼€ì´ìŠ¤ 변경 등.scope=allì¸ ê²½ìš°ì—만 기ë¡ì—ì„œ 제외할 쉼표로 êµ¬ë¶„ëœ ì‚¬ìš©ìž ëª©ë¡ì„¸ì…˜ 기ë¡ì„ 활성화해야 하는 쉼표로 êµ¬ë¶„ëœ ì‚¬ìš©ìž ëª©ë¡ìž…니다. NSSì—ì„œ ë°˜í™˜ëœ ì‚¬ìš©ìž ì´ë¦„ê³¼ ì¼ì¹˜í•©ë‹ˆë‹¤. 가능한 공간 êµì²´ 후, ì¼€ì´ìŠ¤ 변경 등.ì‚¬ìš©ìž í•­ëª©ê³¼ 함께 내려받기 하려는 추가 ì†ì„±ì˜ 목ë¡ì‚¬ìš©ìž ì´ë¦„ì—ì„œ Kerberos 주체 ì´ë¦„으로 매핑조회 í•  ë„ë©”ì¸ì˜ 특정 순서접근 제어 공급ìžë™ìž‘ì´ ì œê³µë˜ì§€ ì•ŠìŒ Active Directory 백업 서버 주소Active Directory í´ë¼ì´ì–¸íŠ¸ 호스트 ì´ë¦„Active Directory ë„ë©”ì¸ID-mappingì˜ Active Directory 기본 그룹 ì†ì„±Active Directory 서버 주소활성 서버: 요청 ì‹œ 카드를 기다리는 추가 시간 초과백업 IPA ì„œë²„ì˜ ì£¼ì†ŒOTP 암호를 변경한 후 í‹°ì¼“ì„ ë°›ìœ¼ë ¤ë©´ 로그아웃한 후 다시 로그ì¸í•´ì•¼ 합니다그룹과 ì‚¬ìš©ìž ì´ë¦„ì—ì„œ 모든 ê³µê°„ì€ ì´ì™€ ê°™ì€ ë¬¸ìžë¡œ 대체 ë  ê²ƒìž…ë‹ˆë‹¤ì¸ì¦ì„œ 기반/스마트 ì¹´ë“œ ì¸ì¦ì„ 허용합니다.코어 ë¤í”„ 허용패스키 장치 ì¸ì¦ì„ 허용합니다.ì¸ì¦ì„œì—ì„œ ssh 키 ìƒì„± 허용스마트카드 ì‚¬ìš©ì„ í—ˆìš© 서비스로컬 사용ìžë¥¼ RFC2307 스키마를 사용하는 ì„œë²„ì˜ LDAP ê·¸ë£¹ì˜ êµ¬ì„±ì›ìœ¼ë¡œ 유지할 수 있습니다.ìžë£Œ 공급ìžë¥¼ 질ì˜(쿼리)하기 ì „ì— í•­ìƒ ëª¨ë“  ìºì‰¬ë¥¼ 질ì˜í•©ë‹ˆë‹¤ì˜¤ë¥˜ê°€ ë°œìƒí–ˆì§€ë§Œ ì„¤ëª…ì„ ì°¾ì„ ìˆ˜ 없습니다.디버그 ë¡œê·¸ì˜ ì˜¤í”ˆ íŒŒì¼ ì„¤ëª…ìžë¡œê·¸ì¸ëœ ìžë£Œë¥¼ 분ì„합니다tarballì—ì„œ SSSD ê¸°ë¡ íŒŒì¼ ë³´ê´€%sì— ë¡œê·¸ íŒŒì¼ ë³´ê´€ 중... ì†ì„± %1$sê°€ ì´ë¯¸ 색ì¸ë˜ì—ˆìŠµë‹ˆë‹¤. ì†ì„± %1$sê°€ 색ì¸ë˜ì§€ 않았습니다. ì†ì„±ì´ 제공ë˜ì§€ ì•ŠìŒ ì„œë²„ 측 암호 ì •ì±…ì´ í™œì„± ìƒíƒœìž„ì„ ë‚˜íƒ€ë‚´ëŠ” ì†ì„±ìŠ¹ì¸ëœ PAM 서비스 나열 ì†ì„±ìŠ¹ì¸ëœ 서버 호스트 나열 ì†ì„±ê¶Œí•œ 있는 서버 rhosts 나열 ì†ì„±ìƒ‰ì¸ í•  ì†ì„±ë³´ê¸° ì´ë¦„ì´ ìžˆëŠ” ì†ì„±ì›ë³¸ ê°ì²´ì— 대한 참조가 있는 ì†ì„±%1$sì— ì¸ì¦í•˜ê³  ENTER를 누릅니다.PIN %1$s(%2$sì—ì„œ)으로 ì¸ì¦í•˜ê³  ENTER를 누릅니다.ìºì‰¬ëœ ì¸ì¦ ì •ë³´ë¡œ ì¸ì¦ë¨ì¸ì¦ì€ ë‹¤ìŒ ê¸°ê°„ê¹Œì§€ 거부ë©ë‹ˆë‹¤. ì¸ì¦ 공급ìžì¸ì¦ 시간 제한autofs 공급ìžìžë™ ì „ì²´ 새로 고침 기간ìžë™ 스마트 새로 고침 기간automounter 맵 항목 키 ì†ì„±automounter 맵 항목 ê°’ ì†ì„±automounter 맵 ì´ë¦„ ì†ì„±ë¡œì»¬ ìžë£Œ 백업로컬 ìžë£Œë¥¼ 백업하고 ìºì‰¬ëœ ë‚´ìš©ì„ ì œê±°IP 호스트 ê²€ìƒ‰ì˜ ê¸°ë³¸ DNIP ë„¤íŠ¸ì›Œí¬ ê²€ìƒ‰ì˜ ê¸°ë³¸ DNautomounter 맵 ê²€ìƒ‰ì˜ ê¸°ë³¸ DN그룹 ê²€ìƒ‰ì˜ ê¸°ë³¸ DNnetgroup ê²€ìƒ‰ì˜ ê¸°ë³¸ DN서비스 ê²€ìƒ‰ì˜ ê¸°ë³¸ DNsudo 규칙 ê²€ìƒ‰ì˜ ê¸°ë³¸ DNì‚¬ìš©ìž ê²€ìƒ‰ì„ ìœ„í•œ 기본 DNë°ëª¬ì´ ë¨ (기본값)오프ë¼ì¸ ì ‘ì†ì„ 위한 ìºì‰¬ ìžê²© ì¦ëª…ìºì‰¬ 항목 ìƒì„± 날짜ìºì‰¬ 항목 만료 시간ìºì‰¬ 항목 마지막 최신화 시간InfoPipeì—ì„œ ìºì‰¬ë¨SSSD 소켓 통계를 가져올 수 없습니다.ì¸ì¦ì„œê°€ 규칙과 ì¼ì¹˜í•˜ì§€ 않습니다. ì¸ì¦ì„œê°€ 규칙과 ì¼ì¹˜í•©ë‹ˆë‹¤. ì¸ì¦ì„œ ê´€ë ¨ëœ ë„구:SSSD 디버그 ìˆ˜ì¤€ì— ëŒ€í•œ ì •ë³´ 변경 ë˜ëŠ” 출력PAC 플래그 ì ê²€ì¸ì¦ì„œë¥¼ 사용하여 매핑 ë° ì¼ì¹˜ 규칙 확ì¸ì‰¼í‘œë¡œ êµ¬ë¶„ëœ í—ˆìš©ëœ ì‚¬ìš©ìž ëª©ë¡ë¡œê·¸ì¸í•  수 있는 쉼표로 êµ¬ë¶„ëœ ê·¸ë£¹ 목ë¡ìž…니다. ì´ëŠ” ì´ SSSD ë„ë©”ì¸ ë‚´ì˜ ê·¸ë£¹ì—만 ì ìš©ë©ë‹ˆë‹¤. 로컬 ê·¸ë£¹ì€ í‰ê°€ë˜ì§€ 않습니다.명시ì ìœ¼ë¡œ 액세스가 ê±°ë¶€ëœ ê·¸ë£¹ 목ë¡ìž…니다. ì´ëŠ” ì´ SSSD ë„ë©”ì¸ ë‚´ì˜ ê·¸ë£¹ì—만 ì ìš©ë©ë‹ˆë‹¤. 로컬 ê·¸ë£¹ì€ í‰ê°€ë˜ì§€ 않습니다.쉼표로 êµ¬ë¶„ëœ ê¸ˆì§€ëœ ì‚¬ìš©ìž ëª©ë¡ëª…ë ¹ '%s'ì´(ê°€) [%d]ì— ì‹¤íŒ¨í–ˆìŠµë‹ˆë‹¤ 서비스 시작 명령구성 íŒŒì¼ ë„구:신뢰할 수 있는 ë„ë©”ì¸ì˜ 제어SSSDê°€ 내부 DNS resolver를 최신화해야 하는 시기를 ì‹ë³„하기 위해 resolv.confì˜ ìƒíƒœë¥¼ ëª¨ë‹ˆí„°ë§ í•´ì•¼ 하는지 여부를 제어합니다.사용 가능한 ë„ë©”ì¸ì„ ì—´ 수 없습니다 %1$s ë„ë©”ì¸ì„ ì—´ 수 없습니다. ë„ë©”ì¸ì´ 하위 ë„ë©”ì¸(신뢰할 수 있는 ë„ë©”ì¸)ì¸ ê²½ìš° --domain/-d 매개변수 대신 ì •ê·œí™”ëœ ì´ë¦„ì„ ì‚¬ìš©í•©ë‹ˆë‹¤. 비활성화할 수 없습니다 %1$s 비활성화할 수 없습니다 %1$s %2$s ì •ë¦¬ëœ ìºì‰¬ 파ì¼ì„ 만들고 로컬 ìžë£Œ 가져 오기로컬 ë°ì´í„°ì˜ 백업 ìƒì„± 중... ë„ë©”ì¸ %1$s를 위해 ìºì‰¬ 색ì¸ì„ ìƒì„±í•˜ê¸° 현재 암호: ppolicy ì¿¼ë¦¬ì˜ DNLDAP 암호 변경 ì„œë²„ì˜ DNS 서비스 ì´ë¦„매핑ë˜ì§€ ì•Šì€ PAM 서비스 ì´ë¦„ì— ì‚¬ìš©í•  기본 로그온 권한 (ë˜ëŠ” 허용/거부)기본 하위 ë„ë©”ì¸ homedir ê°’ìžë¥´ëŠ” 대신 로그 íŒŒì¼ ì‚­ì œë„ë©”ì¸ %1$s를 위해 ìºì‰¬ 색ì¸ì„ 삭제하기 로그 íŒŒì¼ ì‚­ì œ 중... SSSDê°€ 커버러스(Kerberos) ìž¬ìƒ ìºì‰¬ 파ì¼ì„ 저장해야 하는 íŒŒì¼ ì‹œìŠ¤í…œì˜ ë””ë ‰í† ë¦¬.ì¸ì¦ ì •ë³´ ìºì‰¬ë¥¼ 저장 í•  디렉토리Active Directory 범위 검색 비활성화netlink ì¸í„°íŽ˜ì´ìŠ¤ 비활성화LDAP 페ì´ì§• 제어 ë¹„í™œì„±í™”ê²€ìƒ‰ëœ %s 서버: 비밀번호가 만료ë˜ê¸° Nì¼ ì „ì— ê²½ê³ ë¥¼ 표시합니다.ì •ê·œí™”ëœ í˜•ì‹ìœ¼ë¡œ 사용ìž/그룹 표시다른 ë„ë©”ì¸ì—ì„œ ë„ë©”ì¸ ë¡œì»¬ ê·¸ë£¹ì„ í•„í„°ë§í•˜ì§€ ì•ŠìŒì •ë³´ 공급ìžì˜ ë„ë©”ì¸ (필수)ë„ë©”ì¸ êµ¬ì„± 요소가 없는 ëª…ì¹­ì´ ì¶”ê°€ë˜ëŠ” ë„ë©”ì¸.ì›ê²© 공급ìžì—ì„œë„ ìƒ‰ì¸ì„ 최신화하는 ê²ƒì„ ìžŠì§€ 마세요. 그룹 ê²€ìƒ‰ì— ê·¸ë£¹ 구성ì›ì„ í¬í•¨í•˜ì§€ 마십시오오류: Tì´ë²¤íŠ¸ ì²´ì¸ ID 지ì›ì´ 누ë½ë˜ì—ˆìœ¼ë©°, 로그 분ì„ì´ ì§€ì›ë˜ì§€ 않습니다. DNS 사ì´íŠ¸ 활성화 - 위치 기반 서비스 검색ì¸ì¦ ì •ë³´ ê²€ì¦ í™œì„±í™”libfido2 ë¼ì´ë¸ŒëŸ¬ë¦¬ì—ì„œ 디버깅 활성화모든 사용ìž/그룹 활성화SSSD 프로세서를 위한 코어 ë¤í”„ 활성화 ë˜ëŠ” 비활성화.ë„ë©”ì¸ í™œì„±í™” ë˜ëŠ” 비활성화절대ì ì¸ íŒŒì¼ ë„ë©”ì¸ì„ 활성화 ë˜ëŠ” 비활성화디버그 ì—­ì¶”ì  í™œì„±í™”/비활성화Active Directory ë„ë©”ì¸ ì‚¬ìš©FAST 활성화기업 주체 활성화주체 표준화 활성화ì¸ì¦ì— 하위 ë„ë©”ì¸ ì˜ì—­ 사용 활성화PIN ìž…ë ¥:항목 ìºì‰¬ 백그ë¼ìš´ë“œ 최신화 시간 초과 길ì´(ì´ˆ)항목 ìºì‰¬ 시간 초과 길ì´(ì´ˆ)ì—´ê±°ëœ ìºì‰¬ 시간 초과 길ì´(ì´ˆ)ì¸ì¦ì„œë¥¼ ì¼ì¹˜í•˜ëŠ” ë™ì•ˆ [%d][%s] 오류가 ë°œìƒí–ˆìŠµë‹ˆë‹¤. 공개 키를 찾는 ë„중 오류 ë°œìƒ ë¡œì¼€ì¼ì„ 설정하는 ë„중 오류 ë°œìƒ ì™¸ë¶€ ëª…ë ¹ì„ ì‹¤í–‰í•˜ëŠ” ë„중 오류 ë°œìƒ ì™¸ë¶€ 명령 '%s'ì„ ì‹¤í–‰í•˜ëŠ” ë„중 오류 ë°œìƒ ì„¤ì • 디렉토리를 ì½ëŠ” ë„중 오류가 ë°œìƒí–ˆìŠµë‹ˆë‹¤. 오류: [%d] 개체를 가져올 수 ì—†ìŒ: %s FAST 옵션 ('never', 'try', 'demand')오류 [%d][%s]와 함께 매핑 ë° ì¼ì¹˜ ê·œì¹™ì„ ì¶”ê°€í•˜ì§€ 못했습니다. base64 문ìžì—´ì„ 디코딩하지 못했습니다. 매핑 필터를 ìƒì„±í•˜ì§€ 못했습니다 [%d][%s]. %sì—ì„œ êµ¬ì„±ì„ ë¡œë“œí•˜ì§€ 못했습니다. %s 열기 실패 ê²€ì¦ê¸°ë¥¼ 실행하지 못했습니다certmap 컨í…스트를 설정하지 못했습니다. íŒŒì¼ %1$sì´ ì¡´ìž¬í•˜ì§€ ì•ŠìŒ. íŒŒì¼ ì†Œìœ ê¶Œ ë° ê¶Œí•œì„ í™•ì¸í•˜ì§€ 못했습니다. root:root ë° 0600ì´ ì˜ˆìƒë©ë‹ˆë‹¤. CA ì¸ì¦ì„œê°€ í¬í•¨ëœ 파ì¼í´ë¼ì´ì–¸íŠ¸ ì¸ì¦ì„œê°€ í¬í•¨ëœ 파ì¼í´ë¼ì´ì–¸íŠ¸ 키가 í¬í•¨ëœ 파ì¼íŒŒì¼ 네거티브 ìºì‰¬ 시간 초과 길ì´(ì´ˆ)pam_sssë¡œ ì „ì†¡ëœ PAM ì‘답 í•„í„°ë§ê·¸ë£¹ 검색 í•„í„°ë§ì‚¬ìš©ìž 검색 í•„í„°ë§ì²« 번째 ìš”ì¸ (현재 암호): 첫 번째 ìš”ì¸: LDAP 참조 준수성명GECOS ì†ì„±GID ì†ì„±ë„ë©”ì¸ì„ 위한 ì ‘ê·¼ 보고를 ë°œìƒí•©ë‹ˆë‹¤ê·¸ë£¹ UUID ì†ì„±ê·¸ë£¹ 멤버 ì†ì„±ê·¸ë£¹ ì´ë¦„그룹 비밀번호SSSDê°€ 명시ì ìœ¼ë¡œ 무시해야 하는 그룹홈 디렉토리 ì†ì„±í˜¸ìŠ¤íŠ¸ ID 공급ìží˜¸ìŠ¤íŠ¸ê°€ 지정ë˜ì§€ 않았습니다 sudo ê·œì¹™ì„ í•„í„°ë§í•˜ê¸° 위한 ì´ ì‹œìŠ¤í…œì˜ í˜¸ìŠ¤íŠ¸ ì´ë¦„ ë°/ë˜ëŠ” ì •ê·œí™”ëœ ë„ë©”ì¸ ì´ë¦„offline_failed_login_attemptsì— ë„달한 후 ì ‘ì†ì„ 거부하는 ë° ê±¸ë¦¬ëŠ” 시간(분)ìºì‰¬ëœ ìžê²© ì¦ëª…ì€ ìºì‰¬ëœ ì¸ì¦ì„ 위해 사용 ë  ìˆ˜ 있는 ê¸°ê°„ë‹¤ìŒ ì„œë²„ë¥¼ ì‹œë„하기 ì „ì— SSSDê°€ ë‹¨ì¼ DNS 서버와 통신해야 하는 시간(밀리초)ë‹¨ì¼ DNS 쿼리를 해결하기 위해 ê³„ì† ì‹œë„해야 하는 시간(ì´ˆ)PAC ë°ì´í„°ê°€ 유효한 것으로 간주ë˜ëŠ” 기간온ë¼ì¸ ì ‘ì†ê³¼ ìºì‰¬ 사ì´ì˜ ì ‘ì†ì„ 허용하는 기간(ì¼)마지막 ì ‘ì† ì„±ê³µ 후 ìºì‰¬ëœ í•­ëª©ì„ ë³´ê´€í•  기간(ì¼)ì—°ê²°ì„ ëŠê¸° ì „ì— LDAP ì„œë²„ì— ëŒ€í•œ ì—°ê²°ì„ ìœ ì§€í•˜ëŠ” 시간서버를 확ì¸í•  ë•Œ DNSì˜ ì‘ë‹µì„ ê¸°ë‹¤ë¦¬ëŠ” 시간(ì´ˆ)ìºì‰¬ ë©”ëª¨ë¦¬ì— ê¸°ë¡ì˜ 유효 기간암호 만료 경고를 표시해야 하는 ì¼ ìˆ˜ì˜¤í”„ë¼ì¸ì¼ ë•Œ 허용ë˜ëŠ” ì ‘ì† ì‹œë„ ì‹¤íŒ¨ 횟수와ì¼ë“œì¹´ë“œ 요청 중 가져올 최대 항목 수호스트 키가 ìš”ì²­ëœ í›„ 호스트를 known_hosts 파ì¼ì— 유지하는 ë° ê±¸ë¦¬ëŠ” 시간(ì´ˆ)새롭게 í•œ í›„ì— í˜¸ìŠ¤íŠ¸ ssh 키를 유지해야 í•  시간(ì´ˆ). IE 호스트 키를 ìºì‰¬í•˜ëŠ” 기간.PAM ìš”ì²­ì— ëŒ€í•´ ìºì‰¬ëœ ID 정보를 유지하는 ë° ê±¸ë¦¬ëŠ” 시간(ì´ˆ)p11_childê°€ ì™„ë£Œë  ë•Œê¹Œì§€ pam_ssê°€ 몇 ì´ˆ ë™ì•ˆ 대기합니까passkey_childê°€ ì™„ë£Œë  ë•Œê¹Œì§€ pam_sssê°€ 몇 ì´ˆ ë™ì•ˆ ëŒ€ê¸°í•©ë‹ˆê¹Œë§Œë£Œëœ í•­ëª©ì„ ë°±ê·¸ë¼ìš´ë“œì—ì„œ 새로고침하는 빈ë„하위 ë„ë©”ì¸ ëª©ë¡ì„ 새로 고침 하는 빈ë„í´ë¼ì´ì–¸íŠ¸ì˜ DNS í•­ëª©ì„ ì£¼ê¸°ì ìœ¼ë¡œ 최신화하는 빈ë„별칭 역참조 방법IP 호스트 항목USN ì†ì„±IP 호스트 ì´ë¦„ ì†ì„±IP 호스트 번호(address) ì†ì„±IP ë„¤íŠ¸ì›Œí¬ í•­ëª©USN ì†ì„±IP ë„¤íŠ¸ì›Œí¬ ì´ë¦„ ì†ì„±IP ë„¤íŠ¸ì›Œí¬ ë²ˆí˜¸(address) ì†ì„±IPA í´ë¼ì´ì–¸íŠ¸ 호스트네임IPA ë„ë©”ì¸IPA 서버 주소sudo ê·œì¹™ì„ í•„í„°ë§í•˜ê¸° 위한 ì´ ì‹œìŠ¤í…œì˜ IPv4 ë˜ëŠ” IPv6 주소 ë˜ëŠ” 네트워í¬ID 공급ìží´ë¼ì´ì–¸íŠ¸ì˜ ìžë™ ì—°ê²° í•´ì œ ì „ 유휴 시간ì‘답ìžì˜ ìžë™ 종료 ì „ 유휴 시간만약 2-Factor-Authentication(2FA)ê°€ 사용ë˜ê³  ìžê²© ì¦ëª…ì„ ì €ìž¥í•´ì•¼ 하는 경우 ì´ ê°’ì€ ì²« 번째 ì¸ì¦ 요소(장기 비밀번호)ê°€ SHA512 해쉬로 ìºì‰¬ì— 저장ë˜ì–´ì•¼ 하는 최소 길ì´ë¥¼ 결정합니다.중앙 ë””ë ‰í† ë¦¬ì— ì €ìž¥ëœ ì‰˜ì´ í—ˆìš©ë˜ì§€ë§Œ 사용할 수 없는 경우 ì´ ëŒ€ì²´ë¥¼ 사용하십시오거짓으로 설정하면, PAMì—ì„œ 제공한 호스트 ì¸ìˆ˜ê°€ 무시ë©ë‹ˆë‹¤trueì¸ ê²½ìš° SSSD는 ë‚®ì€ ìŠ¹ë¥ ì˜ ì£¼ë¬¸ 논리로 다시 전환합니다ì½ì„ 수 없는 LDAP 참조를 무시합니다디버그 기ë¡ì—ì„œ 시간표기ì—는 마ì´í¬ë¡œì´ˆë¥¼ 표시합니다디버그 기ë¡ì— 시간표시 í¬í•¨ìƒ‰ì¸ ë™ìž‘ì´ ì‹¤íŒ¨í•¨: %1$s ë„ë©”ì¸ %1$sì„ ìœ„í•œ 색ì¸: config 파ì¼ì˜ êµ¬ë¬¸ì´ ë¬´ì—‡ì¸ì§€ 나타냅니다. SSSD 0.6.0ê³¼ ê·¸ ì´ìƒì€ 버전 2를 사용합니다.[%s]ì„(를) 사용한 InfoPipe ì‚¬ìš©ìž ê²€ìƒ‰ì— ì‹¤íŒ¨í–ˆìŠµë‹ˆë‹¤. ìºì‰¬ëœ ë‚´ìš©ì— ëŒ€í•œ ì •ë³´:ìºì‰¬ëœ ê·¸ë£¹ì— ëŒ€í•œ ì •ë³´ìºì‰¬ëœ ë„·ê·¸ë£¹ì— ëŒ€í•œ ì •ë³´ìºì‰¬ëœ 사용ìžì— 대한 ì •ë³´ì‘답ìžê°€ dbus-활성화 ë˜ì—ˆìŒì„ 알립니다ì‘답ìžê°€ 소켓-활성화ë˜ì—ˆìŒì„ 알립니다Initgroups 만료 시간ìžì‹ ì˜ 패스키 장치를 넣고, 그런 í›„ì— Enter를 눌러주세요.ìž˜ëª»ëœ ìž…ë ¥, '%s' ë˜ëŠ” '%s'를 입력하십시오. ìž˜ëª»ëœ í¬íŠ¸ ìž˜ëª»ëœ ê²°ê³¼ìž…ë‹ˆë‹¤.모든 SSH 호스트 무효화모든 autofs 맵 무효화ìºì‰¬ëœ 모든 í•­ëª©ì„ ë¬´íš¨í™”í•©ë‹ˆë‹¤ìºì‰¬ëœ 모든 sudo ê·œì¹™ì„ ë¬´íš¨í™”ëª¨ë“  ê·¸ë£¹ì„ ë¬´íš¨í™”í•©ë‹ˆë‹¤ëª¨ë“  netgroupì„ ë¬´íš¨í™”í•©ë‹ˆë‹¤ëª¨ë“  서비스를 무효화합니다모든 사용ìžë¥¼ 무효화합니다ìºì‰¬ëœ ê°ì²´ 무효화특정 SSH 호스트 무효화특정 autofs 맵 무효화특정 ê·¸ë£¹ì„ ë¬´íš¨í™”í•©ë‹ˆë‹¤íŠ¹ì • netgroupì„ ë¬´íš¨í™”í•©ë‹ˆë‹¤íŠ¹ì • 서비스를 무효화합니다특정 sudo ê·œì¹™ì„ ë¬´íš¨í™”íŠ¹ì • 사용ìžë¥¼ 무효화합니다검ì¦ê¸°ë¡œ ì‹ë³„ëœ ë¬¸ì œ: %zu 커버러스 TGT는 ë¡œê·¸ì¸ ì‹œ 허용ë˜ì§€ 않으며, ì‚¬ìš©ìž í™˜ê²½ì— ì˜í–¥ì„ 미칩니다.Kerberos 백업 서버 주소Kerberos ì˜ì—­ì‚¬ìš©í•  Kerberos ì˜ì—­Kerberos 서버 주소Kerberos 서비스 키탭액세스 ê¶Œí•œì„ ê²°ì •í•˜ëŠ” LDAP 필터오프ë¼ì¸ ìƒíƒœì¼ ë•Œ 다시 ì—°ê²°ì„ ì‹œë„하는 간격ìºì‰¬ 정리 사ì´ì˜ 대기 ì‹œê°„ì—´ê±°ëœ ìµœì‹ í™” 사ì´ì˜ ì‹œê°„ì—°ê²°ì„ ì‹œë„í•  시간ë™ê¸°ì‹ LDAP ìž‘ì—…ì„ ì‹œë„하는 시간열거 ìš”ì²­ì„ ëŒ€ê¸°í•  시간검색 요청 대기 시간LDAP ì—°ê²°ì„ ìœ„í•œ TGTì˜ ìˆ˜ëª…TGTì˜ ìˆ˜ëª…ì‚¬ìš© 가능한 ë„ë©”ì¸ì„ 나열합니다GSSAPI ì¸ì¦í•  수 있는 PAM 서비스 목ë¡ìž…니다.PAC ì‘답ìžì— 접근할 수 있는 UID ë˜ëŠ” ì‚¬ìš©ìž ì´ë¦„ 목ë¡ì‹ ë¢°í•  수 없는 사용ìžë„ 액세스할 수 있는 ë„ë©”ì¸ ëª©ë¡ìž…니다.하위 ë„ë©”ì¸ìœ¼ë¡œ ìƒì†ë˜ì–´ì•¼ 하는 옵션 목ë¡GSSAPI ì¸ì¦ì„ 사용하여 PAM ì ‘ê·¼ 허용해야 하는 :<ì¸ì¦ 표시기> ìŒ ëª©ë¡ê°€ëŠ¥í•œ 암호화 제품군 목ë¡ì‹ ë¢°í•  수 있는 uid ë˜ëŠ” ì‚¬ìš©ìž ì´ë¦„ 목ë¡InfoPipeê°€ 게시할 수 있는 ì‚¬ìš©ìž ì†ì„± 목ë¡ë¡œì»¬ ì¸ì¦ 방법 ì •ì±…. 로컬 ìžë£Œ ë„구:ì¸ì¦ ì •ë³´ ìœ íš¨ì„±ì„ ê²€ì‚¬í•˜ê¸° 위한 keytabì˜ ìœ„ì¹˜ì‚¬ìš©ìž ì¸ì¦ ì •ë³´ ìºì‰¬ì˜ ìœ„ì¹˜ê¸°ë¡ íŒŒì¼ ë„구:ID ë§¤í•‘ì˜ ë°”ì¸ë”© 하한값ìºì‰¬ 색ì¸ì„ 관리합니다매핑 í•„í„°: %s 맵핑 규칙ì¼ì¹˜ 규칙시스템 계정 암호를 갱신하기 ì „ì˜ ìµœëŒ€ 사용 기간(ì¼)SSSDê°€ 따르는 최대 중첩 수준한 ë²ˆì— ìƒˆë¡œ ê³ ì¹  수 있는 최대 규칙 수입니다. ì´ë¥¼ 초과하면 ì „ì²´ 새로 ê³ ì¹¨ì´ ìˆ˜í–‰ë©ë‹ˆë‹¤.ì—´ê±°ëœ ìµœì‹ í™” 사ì´ì˜ 최대 기간 편차백그ë¼ìš´ë“œì—ì„œ ë§Œë£Œëœ í•­ëª©ì„ ê°±ì‹  í•  ë•Œ 최대 기간 편차하위 ë„ë©”ì¸ ëª©ë¡ì„ 갱신 í•  ë•Œì— ìµœëŒ€ 기간 편차í´ë¼ì´ì–¸íŠ¸ì˜ DNS í•­ëª©ì„ ìµœì‹ í™” í•  ë•Œ 최대 주기 편차ìºì‰¬ 정리 사ì´ì˜ 최대 시간 편차최대 ì‚¬ìš©ìž IDì‚¬ìš©ìž ê³„ì •ì´ ë§Œë£Œë˜ë©´ ì •ë³´ê°€ 출력ë©ë‹ˆë‹¤.ì‚¬ìš©ìž ê³„ì •ì´ ìž ê²¨ ìžˆì„ ë•Œ 출력ë˜ëŠ” 정보입니다.구성 병합 ì¤‘ì— ìƒì„±ëœ 메시지: %zu 최소 ì‚¬ìš©ìž IDì‚¬ìš©ìž ì•”í˜¸ë¥¼ 변경하는 ë° ì‚¬ìš©ë˜ëŠ” 모드수정 시간 ì†ì„±ê·¸ë£¹ì˜ 수정 시간 ì†ì„±netgroupsì˜ ìˆ˜ì • 시간 ì†ì„±ì´ë¦„sudo ê·œì¹™ì˜ ì˜¤ë¸Œì íŠ¸ í´ëž˜ìŠ¤ë¡œ 사용ë˜ëŠ” ì†ì„±ì˜ ì´ë¦„ID ë§¤í•‘ì˜ ê¸°ë³¸ ë„ë©”ì¸ ì´ë¦„네거티브 ìºì‰¬ 시간 초과 길ì´(ì´ˆ)Netgroup ì´ë¦„Netgroup Triple ì†ì„±netgroups 멤버 ì†ì„±ì‹ ê·œ 암호: 서버가 ì´ì™€ ê°™ì€ ë°©ì‹ì„ 지ì›í•˜ì§€ 않으므로 커버러스 TGTê°€ 허용ë˜ì§€ 않습니다. 통합ì¸ì¦(SSO) í™˜ê²½ì´ ì˜í–¥ì„ 받습니다.지정한 검색과 ì¼ì¹˜í•˜ëŠ” ìºì‰¬ 대ìƒì´ 없습니다 서버를 ì°¾ì„ ìˆ˜ 없습니다. 지금까지는 없습니다. 메모리가 충분하지 ì•ŠìŒ ID 매핑 ì‹œ ê° ìŠ¬ë¼ì´ìŠ¤ì— 대한 ID ìˆ˜ë‘ ë²ˆì§¸ 슬ë¼ì´ìŠ¤ 수ìžë£Œ(ë°ì´íƒ€) 공급ìžì— 대한 ì—°ê²° ì‹œë„ íšŸìˆ˜IP 호스트용 오브ì íŠ¸ í´ëž˜ìŠ¤IP 네트워í¬ì˜ 오브ì íŠ¸ í´ëž˜ìŠ¤automounter 맵 í•­ëª©ì˜ ì˜¤ë¸Œì íŠ¸ í´ëž˜ìŠ¤automounter ë§µì˜ ì˜¤ë¸Œì íŠ¸ í´ëž˜ìŠ¤sudo ê·œì¹™ì˜ ì˜¤ë¸Œì íŠ¸ í´ëž˜ìŠ¤ê·¸ë£¹ ë®ì–´ì“°ê¸° ê°ì²´ì˜ ê°ì²´ í´ëž˜ìŠ¤ê·¸ë£¹ìš© 개체 í´ëž˜ìŠ¤netgroupì˜ ì˜¤ë¸Œì íŠ¸ í´ëž˜ìŠ¤ë®ì–´ì“°ê¸° ê°ì²´ì˜ ê°ì²´ í´ëž˜ìŠ¤ì„œë¹„스용 오브ì íŠ¸ í´ëž˜ìŠ¤ì‚¬ìš©ìž ë®ì–´ì“°ê¸° ê°ì²´ì˜ ê°ì²´ í´ëž˜ìŠ¤ì‚¬ìš©ìžë¥¼ 위한 오브ì íŠ¸ í´ëž˜ìŠ¤ë³´ê¸° 컨테ì´ë„ˆì˜ ê°ì²´ í´ëž˜ìŠ¤ì˜¤í”„ë¼ì¸ì„¸ì…˜ ê¸°ë¡ ë²”ìœ„ë¥¼ 지정하는 ë‹¤ìŒ ë¬¸ìžì—´ 중 하나: ì—†ìŒ - 기ë¡ëœ 사용ìžê°€ 없습니다. ì¼ë¶€ - ì‚¬ìš©ìž ë° ê·¸ë£¹ 옵션ì—ì„œ 지정한 사용ìž/ê·¸ë£¹ì´ ê¸°ë¡ë©ë‹ˆë‹¤. all - 모든 사용ìžê°€ 기ë¡ë©ë‹ˆë‹¤.온ë¼ì¸ì˜¨ë¼ì¸ ìƒíƒœ: %s 특정 ë„ë©”ì¸ì˜ 항목만 무효화GPO 기반 액세스 제어를 위한 ìž‘ë™ ëª¨ë“œì˜µì…˜ -g는 -D ë˜ëŠ” -i와 호환ë˜ì§€ 않습니다 옵션 -i|--interactive는 -D|--daemonê³¼ 함께 사용할 수 없습니다. 시스템 계정 갱신 ìž‘ì—… ì¡°ì • 옵션메모리 부족! ì´ ê°’ìœ¼ë¡œ ID 공급ìžì˜ GID ê°’ 재정ì˜ê¸°ì¡´ 백업 ë®ì–´ì“°ê¸°ì´ 값으로 ì‹ë³„ 공급ìžì—ì„œ homedir ê°’ì„ ìž¬ì •ì˜í•©ë‹ˆë‹¤ì´ ê°’ê³¼ 함께 ì‹ë³„ 공급ìžì—ì„œ 쉘 ê°’ì„ ìž¬ì •ì˜ í•©ë‹ˆë‹¤DNS 최신화를 수행하는 ë° ì‚¬ìš©ë˜ëŠ” DNS 서버 재정ì˜PAM 환경: PAM ë™ìž‘ [auth|acct|setc|chau|open|clos], 기본설정: GPO 기반 액세스가 í•­ìƒ ê±°ë¶€ë˜ëŠ” PAM 서비스 ì´ë¦„GPO 기반 액세스가 í•­ìƒ ë¶€ì—¬ë˜ëŠ” PAM 서비스 ì´ë¦„GPO (거부)BatchLogonRight ì •ì±… ì„¤ì •ì— ë§¤í•‘ë˜ëŠ” PAM 서비스 ì´ë¦„GPO(거부)InteractiveLogonRight ì •ì±… ì„¤ì •ì— ë§¤í•‘ë˜ëŠ” PAM 서비스 ì´ë¦„GPO(거부)NetworkLogonRight ì •ì±… ì„¤ì •ì— ë§¤í•‘ë˜ëŠ” PAM 서비스 ì´ë¦„GPO(거부)RemoteInteractiveLogonRight ì •ì±… ì„¤ì •ì— ë§¤í•‘ë˜ëŠ” PAM 서비스 ì´ë¦„GPO (거부)ServiceLogonRight ì •ì±… ì„¤ì •ì— ë§¤í•‘ë˜ëŠ” PAM 서비스 ì´ë¦„PAM 서버스, 기본설정: 사용할 PAM 스íƒPIN 잠금스마트 ì¹´ë“œ ì¸ì¦ì„ 위한 장치 ì„ íƒì„ 제한하는 PKCS#11 URIPasskey와 ì—°ê´€ëœ ë„구:비밀번호 ë³€ê²½ì— ì‹¤íŒ¨í•¨. 비밀번호 변경 공급ìžì•”호가 만료ë˜ì—ˆìŠµë‹ˆë‹¤. 지금 암호를 변경하십시오.rootë¡œ 재설정한 암호는 지ì›ë˜ì§€ 않습니다.비밀번호: 암호가 ì¼ì¹˜í•˜ì§€ 않습니다그룹 íŒŒì¼ ì†ŒìŠ¤ì˜ ê²½ë¡œìž…ë‹ˆë‹¤.passwd íŒŒì¼ ì†ŒìŠ¤ 경로입니다.CA ì¸ì¦ì„œ ë””ë ‰í† ë¦¬ì˜ ê²½ë¡œPKCS#11 ëª¨ë“ˆì€ ì¸ì¦ì„œê°€ 있는 ë°ì´í„°ë² ì´ìŠ¤ì˜ 경로입니다.신뢰할 수 있는 CA ì¸ì¦ì„œ 저장 경로ìºì‰¬ í–¥ìƒì„ 수행합니다패스키 등ë¡ì„ 수행합니다SSSD êµ¬ì„±ì˜ í†µê³„ 분ì„ì„ ìˆ˜í–‰í•©ë‹ˆë‹¤ê¶Œí•œì´ ê±°ë¶€ë˜ì—ˆìŠµë‹ˆë‹¤. 다른 스마트카드를 (다시)입력해 주세요무효화할 개체를 하나 ì´ìƒ ì„ íƒí•˜ì‹­ì‹œì˜¤. 암호 만료 í‰ê°€ 정책기본 GID ì†ì„±ì‚¬ìš©ìžì— 대한 ì •ë³´ 출력과 ì¸ì¦ ì ê²€ë„ë©”ì¸ì— 대한 ì •ë³´ 출력ì¸ì¦ì„œì— 대한 ì •ë³´ 출력호스트 ssh 공개 키 ì¸ì‡„버전 번호를 ì¸ì‡„하고 종료합니다완전히-ì¸ì¦ëœ ì´ë¦„ì„ í‘œì‹œí•˜ê¸° 위한 출력-호환 형ì‹ê¶Œí•œ 있는 ì†Œì¼“ì— ìž˜ëª»ëœ ì†Œìœ ê¶Œ ë˜ëŠ” ê¶Œí•œì´ ìžˆìŠµë‹ˆë‹¤.공용 ì†Œì¼“ì— ìž˜ëª»ëœ ì†Œìœ ê¶Œ ë˜ëŠ” ê¶Œí•œì´ ìžˆìŠµë‹ˆë‹¤.ì‹ ê·œ 암호 재입력: 설정 ë°ì´í„°ë² ì´ìŠ¤ë¥¼ 새로 고친 ë‹¤ìŒ ì¢…ë£Œí•©ë‹ˆë‹¤ì‚¬ìš©ìž ì´ë¦„ê³¼ ë„ë©”ì¸ì„ 구문 분ì„하는 ì •ê·œì‹ê¸°ì¡´ SSSD ê¸°ë¡ íŒŒì¼ ì œê±°ìºì‰¬ íŒŒì¼ ì œê±° 중... TGTì˜ ìž¬ìƒ ê°€ëŠ¥ ìˆ˜ëª…í‹°ì¼“ì˜ ìš”ì²­ëœ ìˆ˜ëª…í‹°ì¼“ì˜ ìš”ì²­ëœ ìž¬ìƒ ê°€ëŠ¥ 수명주체 ì´ë¦„ì˜ ì •ê·œí™” 요청TLS ì¸ì¦ì„œ í™•ì¸ í•„ìš”ID ê²€ìƒ‰ì— TLS 필요해결 공급ìžë°ì´í„° 가져 오기 후 SSSD 재시작백업ì—ì„œ 로컬 ìžë£Œ ë³µì›ë¡œì»¬ ë°ì´í„° ë³µì› ì¤‘... DNS ê²€ìƒ‰ì„ ìˆ˜í–‰í•  ë•Œ 특정 주소 ê³„ì—´ì„ ì œí•œí•˜ê±°ë‚˜ 선호합니다AD와 IPA 공급ìžë¥¼ 위해 ìžë™ìœ¼ë¡œ PAC ì‘ë‹µìž ì‹¤í–‰ëŒ€í™”ì‹ ì‹¤í–‰ (ë°ëª¬ì´ 아님)SELinux 공급ìžID ë§¤í•‘ì„ ìœ„í•œ 기본 ë„ë©”ì¸ì˜ SIDSSH 공개 키 ì†ì„±ì‹œìž‘하려는 SSSD ë„ë©”ì¸SSSD InfoPipe ì‚¬ìš©ìž ê²€ìƒ‰ ê²°ê³¼: 시작 하려는 SSD 서비스SSSD ìƒíƒœ:로컬 ë°ì´í„°ì˜ SSSD ë°±ì—…ì´ ì´ë¯¸ 존재합니다. ë®ì–´ì“°ì‹œê² ìŠµë‹ˆê¹Œ?SSSDê°€ ì´ë¯¸ 실행ë˜ê³  있습니다 SSSD는 ë£¨íŠ¸ì— ì˜í•´ 실행ë˜ì§€ 않습니다.SSSDê°€ 실행 ì¤‘ì´ ì•„ë‹™ë‹ˆë‹¤. SSSD는 내부 DNS resolver를 최신화가 í•„ìš” í•  때를 ì‹ë³„하기 위해 resolv.confì˜ ìƒíƒœë¥¼ 관리합니다. 기본ì ìœ¼ë¡œ, 우리는 ì´ë¥¼ 위해 inotify를 사용하려고 ì‹œë„하고, 만약 inotify를 사용 í•  수 없는 ê²½ìš°ì— ë§¤ 5초마다 resolv.conf 투표로 ë˜ëŒì•„ ê°ˆ 것입니다.SSSDê°€ 실행ë˜ê³  있지 않아야 합니다. 지금 SSSD를 중지하시겠습니까?SSSD를 다시 시작해야 합니다. 지금 SSSD를 다시 시작하시겠습니까?SSSD를 실행해야 합니다. 지금 SSSD를 시작하시겠습니까?SSSD nss ì‚¬ìš©ìž ê²€ìƒ‰ ê²°ê³¼: SSSD ì†Œì¼“ì´ ì¡´ìž¬í•˜ì§€ 않습니다.SUDO 공급ìžê·¸ë£¹ 검색 ë²”ìœ„ì‚¬ìš©ìž ê²€ìƒ‰ 범위ë°ìŠ¤í¬íƒ‘ 프로필 관련 개체 검색 기준HBAC와 ì—°ê´€ëœ ê°ì²´ë¥¼ 위한 검색 기반SUBID 범위를 위한 기반 검색IPA ë„ë©”ì¸ì— 대한 ì •ë³´ê°€ í¬í•¨ëœ ê°ì²´ 검색 기반ID ë²”ìœ„ì— ëŒ€í•œ ì •ë³´ê°€ í¬í•¨ëœ ê°ì²´ 검색 기반보기 컨테ì´ë„ˆì˜ 검색 기준SIDë¡œ 검색그룹 IDë¡œ ê²€ìƒ‰ì‚¬ìš©ìž IDë¡œ ê²€ìƒ‰ë‘ ë²ˆì§¸ ìš”ì¸(ì„ íƒ ì‚¬í•­): ë‘ ë²ˆì§¸ ìš”ì¸: FASTì— ì‚¬ìš©í•  주체를 ì„ íƒì„œë²„ 메시지: KDCê°€ ì•„ë‹Œ 경우 변경 암호 서비스가 실행 ì¤‘ì¸ ì„œë²„ì„œë¹„ìŠ¤ ì´ë¦„ ì†ì„±DNS 서비스 ê²€ìƒ‰ì„ ìœ„í•œ 서비스 ì´ë¦„서비스 í¬íŠ¸ ì†ì„±ì„œë¹„스 프로토콜 ì†ì„±ì„¸ì…˜ 관리 공급ìžlibldap 디버그 수준 설정LDAP 서버ì—ì„œ í—ˆìš©ëœ IDì˜ í•˜í•œ 경계 설정디버그 ë¡œê¹…ì˜ ìžì„¸í•œ ì •ë³´ 설정LDAP 서버ì—ì„œ í—ˆìš©ëœ IDì˜ ìƒí•œ 경계 설정쉘 ì†ì„±ê³µê¸‰ìžê°€ 목ë¡ì„ 나열하지 않는 경우 사용할 쉘그룹ì—ì„œ í•„í„°ë§ëœ 사용ìžê°€ 표시ë˜ì–´ì•¼ 합니다디버그 정보를 í‘œì‹œí•©ë‹ˆë‹¤ë©”ì¸ ë˜ëŠ” 신뢰할 수 있는 ë„ë©”ì¸ ìœ í˜•ì„ í¬í•¨í•œ ë„ë©”ì¸ ëª©ë¡ í‘œì‹œí™œì„± ì„œë²„ì— ëŒ€í•œ ì •ë³´ í‘œì‹œê²€ìƒ‰ëœ ì„œë²„ ëª©ë¡ í‘œì‹œì˜¨ë¼ì¸ ìƒíƒœ 표시ì¸ì¦ì„œì— 대ì‘ëœ ì‚¬ìš©ìž í‘œì‹œ--genconf와 유사하지만 ì§€ì •ëœ ì„¹ì…˜ë§Œ 새로 고침합니다그룹 ìš”ì²­ì„ ìœ„í•œ ê³ ì† ìºì‰¬ ë©”ëª¨ë¦¬ì— ë‚´ë¶€ì— í• ë‹¹ëœìžë£Œ í…Œì´ë¸”ì˜ í¬ê¸°(MB)initgroups ìš”ì²­ì„ ìœ„í•´ 빠른 ìºì‰¬ ë©”ëª¨ë¦¬ì— í• ë‹¹ëœ ìžë£Œ í…Œì´ë¸”ì˜ í¬ê¸°(MB)비밀번호 ìš”ì²­ì„ ìœ„í•´ 빠른 ìºì‰¬ ë©”ëª¨ë¦¬ì— í• ë‹¹ëœ ìžë£Œ í…Œì´ë¸”ì˜ í¬ê¸°(MB)스마트 ë° ì „ì²´ 새로 고침 ìž„ì˜ ì˜¤í”„ì…‹FASTì— ì‚¬ìš©í•  서버 주체를 지정하위 ë„ë©”ì¸ ëª©ë¡ì´ 유효한 것으로 간주ë˜ëŠ” 시간(ì´ˆ) 지정합니다.ê¸°ë³¸ì´ ì•„ë‹Œ config íŒŒì¼ ì§€ì •ê¸°ë³¸ì´ ì•„ë‹Œ 스니펫 디렉토리를 지정합니다(ê¸°ë³¸ê°’ì€ ê¸°ë³¸ 설정 파ì¼ì´ 있는 ë™ì¼í•œ 위치를 검색하는 것입니다. 예를 들어 êµ¬ì„±ì´ "/my/path/sssd.conf"ë¡œ ì„¤ì •ëœ ê²½ìš° 스니펫 디렉토리 "/my/path/conf.d"ê°€ 사용ë¨)base64ë¡œ ì¸ì½”ë”©ëœ ì¸ì¦ì„œë¥¼ 지정합니다.설정할 디버그 수준 지정ë„ë©”ì¸ ì´ë¦„ì„ ì§€ì •í•©ë‹ˆë‹¤.ì´ë¦„ì„ ì§€ì •í•©ë‹ˆë‹¤.LDAP sasl 권한 ë¶€ì—¬ì— ëŒ€í•œ 최대 SSF를 지정LDAP sasl 권한 ë¶€ì—¬ì— ëŒ€í•œ 최소 SSF를 지정사용할 sasl 권한 부여 ID를 지정사용할 sasl 권한 부여 ì˜ì—­ì„ 지정사용할 sasl 메커니즘 ì§€ì •ì‚¬ìš©ìž ì´ë¦„ì„ ì§€ì •í•©ë‹ˆë‹¤.SSSDê°€ 실행 ì¤‘ì´ ì•„ë‹Œ 경우 시작ìºì‰¬ê°€ ì œê±°ë  ë•Œ SSSD를 시작합니다ìºì‰¬ë¥¼ 제거하기 ì „ì— SSSD ì¤‘ì§€ë‚˜ì¤‘ì— ì˜¨ë¼ì¸ ì¸ì¦ì„ 위해 오프ë¼ì¸ì¼ 경우 암호 ì €ìž¥ì´ ê°’ê³¼ 함께 ì‹ë³„ 공급ìžì—ì„œ 빈 homedir ê°’ì„ ì´ ê°’ìœ¼ë¡œ 대체합니다sudo 규칙 명령 ì†ì„±sudo 규칙 호스트 ì†ì„±sudo 규칙 ì´ë¦„sudo 규칙 notafter ì†ì„±sudo 규칙 notfore ì†ì„±sudo 규칙 옵션 ì†ì„±sudo 규칙 순서 ì†ì„±sudo 규칙 runas ì†ì„±sudo 규칙 runasgroup ì†ì„±sudo 규칙 runasuser ì†ì„±sudo 규칙 ì‚¬ìš©ìž ì†ì„±ì‹œìŠ¤í…œì´ 오프ë¼ì¸ ìƒíƒœì´ë©° 암호가 ë³€ê²½ë  ìˆ˜ ì—†ìŠµë‹ˆë‹¤ëŒ€ìƒ ì§€ì • ë„ë©”ì¸ëŒ€ìƒ AUTOFS ì„œë¹„ìŠ¤ëŒ€ìƒ IFP ì„œë¹„ìŠ¤ëŒ€ìƒ NSS ì„œë¹„ìŠ¤ëŒ€ìƒ PAC ì„œë¹„ìŠ¤ëŒ€ìƒ PAM ì„œë¹„ìŠ¤ëŒ€ìƒ SSH ì„œë¹„ìŠ¤ëŒ€ìƒ SSSD ì„œë¹„ìŠ¤ëŒ€ìƒ SUDO 서비스로깅 목ì ì„ 위해 사용ë˜ëŠ” Tì´ë²¤íŠ¸ ì²´ì¸ IDmemberUser ë° memberHost 대신 ì¼ì¹˜í•˜ëŠ” ë° ì‚¬ìš©í•  수 있는 HBAC ê·œì¹™ì˜ DNì´ í¬í•¨ëœ LDAP ì†ì„±ìž…니다.í˜¸ìŠ¤íŠ¸ì˜ FQDNì´ í¬í•¨ëœ LDAP ì†ì„±ìž…니다.netgroupì˜ NIS ë„ë©”ì¸ ì´ë¦„ì„ í¬í•¨í•˜ëŠ” LDAP ì†ì„±ìž…니다.SELinux ì‚¬ìš©ìž ë¬¸ìžì—´ ìžì²´ë¥¼ í¬í•¨í•˜ëŠ” LDAP ì†ì„±ìž…니다.ì´ ê·œì¹™ì´ ì¼ì¹˜í•˜ëŠ” 모든 호스트/í˜¸ìŠ¤íŠ¸ê·¸ë£¹ì´ í¬í•¨ëœ LDAP ì†ì„±ìž…니다.ì´ ê·œì¹™ì´ ì¼ì¹˜í•˜ëŠ” 모든 ì‚¬ìš©ìž / ê·¸ë£¹ì´ í¬í•¨ëœ LDAP ì†ì„±ìž…니다.호스트 범주(예: 'all')ê°€ í¬í•¨ëœ LDAP ì†ì„±ìž…니다.LDAP netgroup ê°œì²´ì˜ UUID/GUIDê°€ í¬í•¨ëœ LDAP ì†ì„±ìž…니다.í˜¸ìŠ¤íŠ¸ì˜ SSH 공개 키가 í¬í•¨ëœ LDAP ì†ì„±ìž…니다.SELinux ì‚¬ìš©ìž ë§µì˜ ì´ë¦„ì´ í¬í•¨ëœ LDAP ì†ì„±ìž…니다.netgroup ë©¤ë²„ì˜ ì´ë¦„ì´ í¬í•¨ëœ LDAP ì†ì„±ìž…니다.ì‚¬ìš©ìž ë§µì˜ ê³ ìœ  IDê°€ í¬í•¨ëœ LDAP ì†ì„±ìž…니다.'all'ê³¼ ê°™ì€ ì‚¬ìš©ìž ë²”ì£¼ê°€ í¬í•¨ëœ LDAP ì†ì„±ìž…니다.ì‚¬ìš©ìž ë§µì´ ì‚¬ìš© 가능한지 여부를 í¬í•¨í•˜ëŠ” LDAP ì†ì„±ìž…니다.netgroup ì´ë¦„ì— í•´ë‹¹í•˜ëŠ” LDAP ì†ì„±ìž…니다.netgroupì˜ ë©¤ë²„ì¸ í˜¸ìŠ¤íŠ¸ ë° í˜¸ìŠ¤íŠ¸ ê·¸ë£¹ì˜ FQDNì„ ë‚˜ì—´í•˜ëŠ” LDAP ì†ì„±ìž…니다.netgroupì˜ ì§ì ‘ 구성ì›ì¸ 호스트 ë° í˜¸ìŠ¤íŠ¸ ê·¸ë£¹ì„ ë‚˜ì—´í•˜ëŠ” LDAP ì†ì„±ìž…니다.netgroupì˜ ë©¤ë²„ì‹­ì„ ë‚˜ì—´í•˜ëŠ” LDAP ì†ì„±ìž…니다.netgroupì˜ ì§ì ‘ 구성ì›ì¸ 시스템 ì‚¬ìš©ìž ë° ê·¸ë£¹ì„ ë‚˜ì—´í•˜ëŠ” LDAP ì†ì„±ìž…니다.LDAP 그룹 외부 멤버 ì†ì„±ì‚¬ìš©í•  SSSD ë„ë©”ì¸LDAP 서버ì—ì„œ 사용ë˜ëŠ” 스키마 유형 rfc2307최신화 후 í´ë¼ì´ì–¸íŠ¸ì˜ DNS í•­ëª©ì— ì ìš© 하려는 TTLAD ì„œë²„ì— ëŒ€ì‘하는 GPO ì •ì±… 파ì¼ì˜ 검색 사ì´ì—ì„œ ì‹œê°„ì˜ ì–‘IPA ì„œë²„ì— ëŒ€ì‘하는 HBAC ê·œì¹™ì˜ ê²€ìƒ‰ 사ì´ì—ì„œ ì‹œê°„ì˜ ì–‘ë§ˆì§€ë§‰ ìš”ì²­ì´ ê·œì¹™ì„ ì°¾ì§€ 못한 경우 IPA ì„œë²„ì— ëŒ€í•œ ë°ìŠ¤í¬íƒ‘ 프로필 규칙 검색 간격(분)입니다IPA ì„œë²„ì— ëŒ€ì‘하는 ë°ìŠ¤í¬íƒ‘ í”„ë¡œíŒŒì¼ ê·œì¹™ì˜ ê²€ìƒ‰ 사ì´ì—ì„œ ì´ˆ 단위 ì‹œê°„ì˜ ì–‘IPA ì„œë²„ì— ëŒ€ì‘하는 SELinux ë§µì˜ ê²€ìƒ‰ 사ì´ì—ì„œ ì´ˆ 단위 ì‹œê°„ì˜ ì–‘ê¸°ë³¸ ë°”ì¸ë“œ DNì˜ ì¸ì¦ 토í°ì´ì™€ ê°™ì€ IPA í´ë¼ì´ì–¸íŠ¸ê°€ 사용 ì¤‘ì¸ ì˜¤í† ë§ˆìš´í„° 위치실행할 디버그 수준기본 DNì˜ ê¸°ë³¸ê°’ê¸°ë³¸ ë°”ì¸ë”© DN서비스 검색 DNS ì¿¼ë¦¬ì˜ ë„ë©”ì¸ ë¶€ë¶„í•­ëª© ìºì‰¬ëŠ” ë„ë©”ì¸ì— 대한 entry_cache_timeout ê°’ì˜ ë°±ë¶„ìœ¨ì„ ì´ˆê³¼í•˜ì—¬ 요청ë˜ëŠ” 경우 백그ë¼ìš´ë“œì—ì„œ í•­ëª©ì„ ìžë™ìœ¼ë¡œ 최신화 하ë„ë¡ ì„¤ì • í•  수 있습니다.서버를 실행 í•  그룹 IDFAST ccache를 ìƒì„±í•  그룹ë™ì  DNS ìµœì‹ í™”ì— IP를 사용해야 하는 연결장치거부ë˜ì–´ì„œ ëŒ€ì²´ë  ì‰˜ 목ë¡ì‚¬ìš©ìžê°€ ì ‘ì†í•  수 있는 shells 목ë¡ì‚¬ìš©í•  NSS ë¼ì´ë¸ŒëŸ¬ë¦¬ì˜ ì´ë¦„호스트 ë° ë„¤íŠ¸ì›Œí¬ ê²€ìƒ‰ì— ì‚¬ìš©í•  NSS ë¼ì´ë¸ŒëŸ¬ë¦¬ì˜ ì´ë¦„LDAPì˜ automounter 마스터 ë§µì˜ ì´ë¦„입니다.ì´ ì‘답ìžì— ì˜í•´ ì—´ 수 있는 íŒŒì¼ ì„¤ëª…ìž ìˆ˜ì „ì²´ 참조 해제를 트리거하려면 누ë½ë˜ì–´ì•¼ 하는 êµ¬ì„±ì› ìˆ˜ë¯¸ë¦¬ ì •ë ¬ëœ í”„ë½ì‹œ 하위 항목 수입니다.ë‹¨ì¼ LDAP 쿼리ì—ì„œ 검색할 레코드 수LDAPì—ì„œ 호스트 í•­ëª©ì˜ ê°œì²´ í´ëž˜ìŠ¤ìž…니다.LDAPì—ì„œ netgroup í•­ëª©ì˜ ê°œì²´ í´ëž˜ìŠ¤ìž…니다.ì´ ì˜µì…˜ì€ SSSDê°€ IPA 서버ì—ì„œ 실행 ì¤‘ìž„ì„ ë‚˜íƒ€ë‚´ë©° 신뢰할 수 있는 ë„ë©”ì¸ì—ì„œ ì‚¬ìš©ìž ë° ê·¸ë£¹ì˜ ê²€ìƒ‰ì„ ë‹¤ë¥´ê²Œ 수행해야 í•¨ì„ ë‚˜íƒ€ëƒ…ë‹ˆë‹¤.프ë½ì‹œ ëª…ë ¹ì˜ ê²½ë¡œëŠ” 절대 경로여야 합니다. í˜¸ìŠ¤íŠ¸ì— ì—°ê²°í•˜ëŠ” ë° ì‚¬ìš©í•  í¬íŠ¸í•˜ìœ„ ë„ë©”ì¸ ê°€ì ¸ì˜¤ê¸°ë¥¼ 처리해야 하는 공급ìž. ì´ì™€ ê°™ì€ ê°’ì€ í•­ìƒ id_provider와 같아야 합니다.기본 ë°”ì¸ë“œ DNì˜ ì¸ì¦ í† í° ìœ í˜•ì„œë²„ë¥¼ 실행 í•  ì‚¬ìš©ìž IDFAST ccache를 ìƒì„±í•  사용ìžì‚¬ìš©ìžì˜ ê¶Œí•œì„ ì œê±°í•˜ëŠ”NSS 공급ìžê°€ 반환해야 하는 비밀번호 ìž…ë ¥ ê°’í…œí”Œë¦¿ì— í˜•ì‹ ë¬¸ìžì—´ %Hê°€ í¬í•¨ëœ 경우 ì´ ì˜µì…˜ì˜ ê°’ì€ override_homedir ì˜µì…˜ì˜ í™•ìž¥ì— ì‚¬ìš©ë©ë‹ˆë‹¤.êµ¬ì„±ì´ ì—†ìŠµë‹ˆë‹¤. ì´ ë„ë©”ì¸ì—는 활성 서버가 없습니다. ë‘ ê²€ì‚¬ 사ì´ì˜ 갱신 ê¸°ê°„ì‚¬ìš©ìž ì´ë¦„ì„ ëŒ€ì†Œë¬¸ìž êµ¬ë¶„ë¡œê·¸ íŒŒì¼ ìžë¥´ëŠ” 중... ì¸ì¦ 확ì¸ì„ 조정합니다PAM ì¸ì¦í•˜ê¸° 위해서 ì¸ì¦ì„œë¥¼ í™•ì¸ ì¡°ì •í•©ë‹ˆë‹¤.패스키 í™•ì¸ ë™ìž‘ì„ ì¡°ì •í•©ë‹ˆë‹¤sssd를 netlink ìƒíƒœ ë³€ê²½ì„ ì¡´ì¤‘í•˜ê±°ë‚˜ 무시하ë„ë¡ ì¡°ì •í•©ë‹ˆë‹¤ê·¸ë£¹ 유형 ë° ê¸°íƒ€ 플래그UID ì†ì„±ì•”호 ë³€ê²½ì´ í—ˆìš©ë˜ëŠ” 백업 LDAP ì„œë²„ì˜ URI암호 ë³€ê²½ì´ í—ˆìš©ë˜ëŠ” LDAP ì„œë²„ì˜ URIUUID ì†ì„±ë¡œê·¸ 파ì¼ì„ 보관할 수 없습니다 시스템 ë²„ìŠ¤ì— ì—°ê²°í•  수 없습니다! 백업 디렉토리 [%d]를 ìƒì„± í•  수 ì—†ìŒ: %s로컬 ë°ì´í„°ì˜ ë°±ì—…ì„ ìƒì„± í•  수 없으며, ìºì‰¬ë¥¼ 제거 í•  수 없습니다. 그룹 ë®ì–´ì“°ê¸°ë¥¼ 내보낼 수 없습니다 ì‚¬ìš©ìž ë®ì–´ì“°ê¸°ë¥¼ 내보낼 수 없습니다 온ë¼ì¸ ìƒíƒœë¥¼ 얻는 ë° ì‹¤íŒ¨ 서버 목ë¡ì„ 가져올 수 없습니다 그룹 ë®ì–´ì“°ê¸°ë¥¼ 가져올 수 없습니다 ì‚¬ìš©ìž ë®ì–´ì“°ê¸°ë¥¼ 가져올 수 없습니다 명령 ì¸ìˆ˜ë¥¼ 구문 ë¶„ì„ í•  수 없습니다 %s ì´ë¦„ì„ êµ¬ë¬¸ 분ì„í•  수 없습니다. ì‚¬ìš©ìž ìž…ë ¥ì„ ì½ì„ 수 없습니다 ìºì‰¬ 파ì¼ì„ 제거 í•  수 없습니다 로그 파ì¼ì„ 제거 í•  수 없습니다 로그 파ì¼ì„ ìžë¥¼ 수 없습니다 예기치 ì•Šì€ ì¸ìˆ˜ê°€ 제공ë˜ì—ˆìŠµë‹ˆë‹¤. ë‹¨ì¼ ì˜¤ë¸Œì íŠ¸ë¥¼ 무효화하는 ì˜µì…˜ì€ ì œê³µëœ ë‹¨ì¼ ì¸ìˆ˜ë§Œ 허용합니다. 오류 ì„¤ëª…ì„ ì°¾ëŠ” ë™ì•ˆ 예기치 ì•Šì€ ì˜¤ë¥˜ ë°œìƒì„œë²„ ì¸ì¦ ì •ë³´ ë©”ì‹œì§€ì˜ ì˜ˆê¸°ì¹˜ ì•Šì€ í˜•ì‹ìž…니다.알지 못하는 ë™ìž‘: %1$s 유효한 ë™ìž‘ì€ "%2$s", "%3$s ë° "%4$s"입니다 ID ë§¤í•‘ì˜ ë°”ì¸ë”© ìƒí•œê°’사전 ì„¤ì •ëœ ID 대신 objectSIDì˜ ID 매핑 사용LDAP ì—°ê²°ì— Kerberos ì¸ì¦ 사용LDAP ë° ê¸€ë¡œë²Œ 카탈로그 ìš”ì²­ì— LDAPS í¬íŠ¸ 사용ìµëª…ì˜ PKINIT를 사용하여 FAST ê°•í™”ëœ í‹°ì¼“ì„ ìš”ì²­í•©ë‹ˆë‹¤ìµëª… PKINIT를 사용하여 FAST ì¸ì¦ì„œë¥¼ 요청합니다ID ë§¤í•‘ì„ ìœ„í•œ autorid-compatible 알고리즘 사용krb5_get_init_creds_passwordì˜ ì‚¬ìš©ìž ì§€ì • 버전 사용ì˜ì—­ ì´ë¦„ì— ëŒ€í•´ 대문ìžë§Œ ì‚¬ìš©í•˜ì‹­ì‹œì˜¤ë‹¤ìŒ ì¼ì¹˜ ê·œì¹™ì„ ì‚¬ìš©í•˜ì—¬ ssh 키 ìƒì„±ì„ 위한 ì¸ì¦ì„œë¥¼ í•„í„°ë§í•©ë‹ˆë‹¤ì§€ì •ëœ 문ìžì—´ì„ 호스트 오브ì íŠ¸ì˜ 검색 기준으로 사용합니다.주어진 문ìžì—´ì„ 신뢰할 수 있는 ë„ë©”ì¸ì˜ 검색 기반으로 사용합니다.ì‚¬ìš©ëœ êµ¬ì„± 스니펫 파ì¼: %zu [%s]ì„/를 사용한 ì‚¬ìš©ìž ì´ë¦„ ê²€ìƒ‰ì— ì‹¤íŒ¨í–ˆìŠµë‹ˆë‹¤. 사용ìžê°€ 지정ë˜ì§€ 않았습니다 ì‚¬ìš©ìž ì£¼ì²´ ì†ì„±(Kerberosìš©)ì‚¬ìš©ìž ì´ë¦„ ì†ì„±SSSDê°€ 명시ì ìœ¼ë¡œ 무시해야 하는 사용ìžPAC ê²€ì¦ì´ ë„ë©”ì¸ì„ 위한 realmd 구성 ì„œë¹„ìŠ¤ì— ì˜í•´ ì €ìž¥ëœ ë‹¤ì–‘í•œ 태그.서비스를 재시작 하기 ì „ì— ì™€ì¹˜ë… ì‹œê°„ì´ˆê³¼DNS 최신화를 수행하기 위해 ì–´ë–¤ ì¢…ë¥˜ì˜ ì¸ì¦ì„ 사용해야 하는지ì¸ì¦ ì‹œ 사용ìžì—게 표시ë˜ëŠ” ì •ë³´ì˜ ì¢…ë¥˜SSSDê°€ 오프ë¼ì¸ ë°©ì‹ìœ¼ë¡œ 전환ë˜ë©´ ì—°ê²°ì´ ëŠê¸´ ì‹œê°„ì— ë”°ë¼ ì˜¨ë¼ì¸ìœ¼ë¡œ ëŒì•„가기 ì „ì— ì‹œê°„ì´ ëŠ˜ì–´ë‚©ë‹ˆë‹¤. ì´ ê°’ì€ ì´ˆ 단위ì´ë©° 다ìŒì— ì˜í•´ 계산ë©ë‹ˆë‹¤: offline_timeout + random_offset.PAM ì‘답ìžëŠ” 언제 initgroups ìš”ì²­ì„ ê°•ì œ 실행합니까krb5 구성 ìŠ¤ë‹ˆíŽ«ì„ ë“œë¡­í•  위치LDAP ë¼ì´ë¸ŒëŸ¬ë¦¬ì—ì„œ SASL ë°”ì¸ë“œ ì¤‘ì— í˜¸ìŠ¤íŠ¸ ì´ë¦„ì„ ì •ì‹í™”하기 위해 ì—­ë°©í–¥ ê²€ìƒ‰ì„ ìˆ˜í–‰í•´ì•¼ 하는지 여부ë„ë©”ì¸ì´ OS ë˜ëŠ” ì‘용프로그램ì—ì„œ 사용 가능한지 여부nsupdate 유틸리티가 기본ì ìœ¼ë¡œ TCP를 사용하ë„ë¡ í• ì§€ 여부공급ìžê°€ PTR ë ˆì½”ë“œë„ ëª…ì‹œì ìœ¼ë¡œ 최신화해야 하는지 여부사용ìžë¥¼ 위한 비공개 ê·¸ë£¹ì„ ìžë™ìœ¼ë¡œ ìƒì„±í• ì§€ 여부í´ë¼ì´ì–¸íŠ¸ì˜ DNS í•­ëª©ì„ ìžë™ìœ¼ë¡œ 최신화 할지 여부FreeIPAì—ì„œ í´ë¼ì´ì–¸íŠ¸ì˜ DNS í•­ëª©ì„ ìžë™ìœ¼ë¡œ 최신화 할지 여부kdcinfo 파ì¼ì„ ìƒì„±í• ì§€ 여부sudo 규칙ì—ì„œ 시간 기반 ì†ì„±ì„ í‰ê°€í• ì§€ 여부호스트 ì´ë¦„, IP 주소 ë° ë„¤íŠ¸ì›Œí¬ë¡œ ê·œì¹™ì„ í•„í„°ë§í• ì§€ 여부known_hosts 파ì¼ì—ì„œ 호스트 ì´ë¦„ê³¼ 주소를 í•´ì‹œ(hash)할지 여부호스트 ì†ì„±ì— netgroupì„ í¬í•¨í•˜ëŠ” ê·œì¹™ì„ í¬í•¨í• ì§€ 여부호스트 ì†ì„±ì— ì •ê·œ 표현ì‹ì„ í¬í•¨í•˜ëŠ” ê·œì¹™ì„ í¬í•¨í• ì§€ 여부가능한 경우 ìºì‰¬ì—ì„œ ì •ì‹ ê·¸ë£¹ ì´ë¦„ì„ ê²€ìƒ‰í• ì§€ 여부ì¸ì¦ëœ UPNê³¼ ëŒ€ìƒ ì‚¬ìš©ìžì™€ ì¼ì¹˜ì‹œí‚¬ì§€ 여부비밀번호 변경 í›„ì— ldap_user_shadow_last_change ì†ì„±ì„ 최신화 할지 여부삼바 ë°ì´í„°ë² ì´ìŠ¤ì—ì„œ 시스템 계정 비밀번호를 최신화 할지 여부Token-Groups 사용 ì—¬ë¶€ê²€ìƒ‰ì— Global Catalog 사용 여부ì‘용프로그램 ë„ë©”ì¸ì— ì ‘ì† í•  수 있는 PAM ì„œë¹„ìŠ¤ê³„ì •ì´ ë§Œë£Œë˜ì—ˆëŠ”지 í‰ê°€í•˜ê¸° 위해 사용할 ì†ì„±ì•¡ì„¸ìŠ¤ 제어를 í‰ê°€í•˜ê¸° 위해 사용해야 하는 ê·œì¹™ë‹¹ì‹ ì˜ ë¹„ë°€ë²ˆí˜¸ê°€ 만료ë˜ì—ˆìŠµë‹ˆë‹¤.암호가 만료ë˜ì—ˆìŠµë‹ˆë‹¤. %1$d 유예 로그ì¸ì´ 남아 있습니다.암호는 %1$d %2$sì— ë§Œë£Œë©ë‹ˆë‹¤.í´ë¼ì´ì–¸íŠ¸ê°€ 사용할 특정 사ì´íŠ¸ADì˜ accountExpires ì†ì„±ì†ì„±ì‚¬ìš©ìžì˜ X509 ì¸ì¦ì„œê°€ í¬í•¨ëœ ì†ì„±ì‚¬ìš©ìžì˜ ì´ë©”ì¼ ì£¼ì†Œë¥¼ í¬í•¨í•˜ëŠ” ì†ì„±ì‚¬ìš©ìžì˜ 패스키 ëŒ€ì‘ ìžë£Œë¥¼ í¬í•¨í•˜ëŠ” ì†ì„±ì‚¬ìš©ìžì— í—ˆìš©ëœ ì¸ì¦ ìœ í˜•ì„ ë‚˜ì—´í•˜ëŠ” ì†ì„±[%s]ì„(를) 사용하여 dlopenì— ì‹¤íŒ¨í–ˆìŠµë‹ˆë‹¤. [%s]ì„(를) 사용하여 dlsymì— ì‹¤íŒ¨í–ˆìŠµë‹ˆë‹¤. ë„ë©”ì¸entryUSN ì†ì„±ì˜¤ë¥˜krbLastPwdChange ì†ì„±krbPasswordExpiration ì†ì„±lastUSN ì†ì„±ldap_backup_uri, LDAP ì„œë²„ì˜ URIldap_uri, LDAP ì„œë²„ì˜ URINDSì˜ loginAllowedTimeMap ì†ì„±NDSì˜ loginDisabled ì†ì„±NDSì˜ loginExpirationTime ì†ì„±mallocì— ì‹¤íŒ¨í–ˆìŠµë‹ˆë‹¤. memberOf ì†ì„±ì•„니요연결ë˜ì§€ ì•ŠìŒnsAccountLock ì†ì„±objectSID ì†ì„±pam_acct_mgmt: %s [%s] 사용ìžì— 대한 pam_authenticate: %s pam_chauthtok: %s pam_close_session: %s pam_get_itemì— ì‹¤íŒ¨: %s pam_open_session: %s pam_setcred: [%s] pam_startì— ì‹¤íŒ¨: %s set_debug_file_from_fdê°€ 실패했습니다. shadowExpire ì†ì„±shadowFlag ì†ì„±shadowInactive ì†ì„±shadowLastChange ì†ì„±ShadowMax ì†ì„±shadowMin ì†ì„±shadowWarning ì†ì„±[%d]ì„(를) 사용하여 sss_getpwnam_rì— ì‹¤íŒ¨í–ˆìŠµë‹ˆë‹¤. sss_ssh_knownhostsproxy: 호스트 ì´ë¦„ì„ í™•ì¸í•  수 없습니다 %s sss_ssh_knownhostsproxy: 호스트 %s í¬íŠ¸ %dì— ì—°ê²°: %s sss_ssh_knownhostsproxy: 프ë½ì‹œ ìžë£Œì— ì—°ê²° í•  수 없습니다: %s blockoc_asprintfì— ì‹¤íŒ¨í–ˆìŠµë‹ˆë‹¤. pam_acct_mgmt 테스트 pam_authenticate 테스트 pam_chauthtok 테스트 pam_close_session 테스트 pam_open_session 테스트 pam_setcred 테스트 ì•Œ 수 없는 ë™ìž‘ 사용ìž: %s ë™ìž‘: %s 서비스: %s ADì˜ UserAccountControl ì†ì„±ì˜ˆPRIu64Running under %, must be root % ì—ì„œ 실행 중, root여야 합니다