From 0ec0562257a0a0bde04c149f323c47632071005c Mon Sep 17 00:00:00 2001
From: Micah Anderson <micah@riseup.net>
Date: Wed, 15 Dec 2010 20:38:07 -0500
Subject: remote KerberosGetAFSToken, its actually not a functional
 configuration option, even though it is listed in the man page, and commented
 out in the default config file. I filed a bug with debian (#607238)

---
 manifests/init.pp | 8 --------
 1 file changed, 8 deletions(-)

(limited to 'manifests')

diff --git a/manifests/init.pp b/manifests/init.pp
index 002b927..90b7c64 100644
--- a/manifests/init.pp
+++ b/manifests/init.pp
@@ -84,11 +84,6 @@
 #                               Valid values: yes or no
 #                               Default: no
 #
-# sshd_kerberos_getafstoken:    If AFS is active and user has a Kerberos 5 TGT, attempt to
-#                               acquire an AFS token before accessing the user's home directory.
-#                               Valid values: yes or no
-#                               Default: no
-#
 # sshd_kerberos_orlocalpasswd:  If password authentication through Kerberos fails, then the password
 #                               will be validated via any additional local mechanism.
 #                               Valid values: yes or no
@@ -192,9 +187,6 @@ class sshd {
   case $sshd_kerberos_authentication {
     '': { $sshd_kerberos_authentication = 'no' }
   }
-  case $sshd_kerberos_getafstoken {
-    '': { $sshd_kerberos_getafstoken = 'no' }
-  }
   case $sshd_kerberos_orlocalpasswd {
     '': { $sshd_kerberos_orlocalpasswd = 'yes' }
   }
-- 
cgit v1.2.3