-
When enabling direct AD authentication using realm join, it will fail unless ports are opened. SSSD and realmd will complain and raise errors during this process and tell you which ports are required.…
-
Too many sequential calls to `realm permit` can cause a race condition where realmd tries to restart sssd multiple times. Systemd will detect it as failure and can't start it up.
That means NO ONE …
-
I resolved a PEBKAC in #11 and now have this policy working for Splunkforwarders in RHEL 8!
It seems to be functioning fully despite having `dac_read_search` denials like these:
```
type=PROCTI…
-
This is similar to issue #5589. sss_override shells are completely ignored if an override_shell is specified. The behavior of sssd is now inconsistent: sss_override homedir takes precedence over sssd.…
-
When using sssd to resolve users, /usr/bin/id utility (from coreutils) segfaults:
id[248568]: segfault at 0 ip 00007f1778538fa4 sp 00007ffdc91925d0 error 4 in libnss_sss.so.2[7f1778538000+7000]
…
-
Use realmd instead of Samba to join the domain and generate a keytab.
https://fedorahosted.org/sssd/wiki/Configuring_sssd_with_ad_server#JoiningtheLinuxclientusingrealmd
-
stdlib is at the version 6.4.0 and your dependencies require (>= 5.2.0 < 6.0.0).
# puppet module install --target-dir /etc/puppetlabs/code/modules/ sgnl05-sssd
Notice: Preparing to install into /e…
-
Hello everyone.
```
[sssd]
config_file_version = 2
reconnection_retries = 3
sbus_timeout = 60
services = nss, pam, sudo, autofs
domains = ad.domain.com.br
default_domain_suffix = ad.domain.c…
-
In `sssd::domain`, the `dns_discovery_domain` is being validated as a `Bodgitlib::Domain`. This is problematic as SSSD isn't actually asking for domain but a FQDN or SRV.
```puppet
Optional[Bod…
-
Hello,
To join a machine to an AD or LDAP domain, SSSD relies on the `realmd` package which is a userspace cli tool to perform the one time join operation (done imperatively).
This is currently …