Enumeration feature has been deprecated in SSSD 2.10.0

[FroggyFlox]

Since SSSD 2.10.0, the enumeration feature has been deprecated and might be removed in future release. The notes (https://sssd.io/release-notes/sssd-2.10.0.html) read:

Support of enumeration feature (i.e. ability to list all users/groups using getent passwd/group without argument) for AD/IPA providers is deprecated and might be removed in further releases. Those who are interested to keep using it awhile should configure its build explicitly using --with-extended-enumeration-support ./configure option.

This change has landed in Factory (and thus Tumbleweed) since Oct 2024 (https://build.opensuse.org/projects/openSUSE:Factory/packages/sssd/files/sssd.changes?expand=1). Leap 15.6 is currently still using SSSD 2.9.3 and does not yet have that change (https://build.opensuse.org/package/show/openSUSE:Leap:15.6/sssd).

As a reminder, enabling enumeration for SSSD (LDAP/AD) is one option surfaced in Rockstor's webUI so we will have to consider removing it (probably after a period of warning for those enabling it). I haven't had time to test how it currently behaves if it is enabled.

Note the definition of enumeration above: ability to list all users/groups using getent passwd/group without argument). It thus seems that we should still be able to use something akin to getent -s sss. Note that we also have InfoPipe (the SSSD DBus responder) to list all users so we may "transition" to using that directly if one enables "enumeration" in Rockstor's webUI.