English Finnish
Certain option defaults do not match their respective backend provider defaults, these option names and IPA provider-specific defaults are listed below:
krb5_use_fast = try
krb5_canonicalize = true
LDAP Provider - General
ldap_schema = ipa_v1
ldap_sasl_mech = GSSAPI
ldap_sasl_minssf = 56
ldap_account_expire_policy = ipa
LDAP Provider - User options
ldap_user_member_of = memberOf
ldap_user_uuid = ipaUniqueID
ldap_user_ssh_public_key = ipaSshPubKey
ldap_user_auth_type = ipaUserAuthType
LDAP Provider - Group options
ldap_group_object_class = ipaUserGroup
ldap_group_object_class_alt = posixGroup
ldap_group_member = member
ldap_group_uuid = ipaUniqueID
ldap_group_objectsid = ipaNTSecurityIdentifier
ldap_group_external_member = ipaExternalMember