-
Hello all.
I have to interface with AD via ldap backend (can not join: it makes large redeploys quite problematic, having to give my own pass on every machine).
Out of the many domains in the AD f…
NdK73 updated
7 months ago
-
When enabling direct AD authentication using realm join, it will fail unless ports are opened. SSSD and realmd will complain and raise errors during this process and tell you which ports are required.…
-
Too many sequential calls to `realm permit` can cause a race condition where realmd tries to restart sssd multiple times. Systemd will detect it as failure and can't start it up.
That means NO ONE …
-
I resolved a PEBKAC in #11 and now have this policy working for Splunkforwarders in RHEL 8!
It seems to be functioning fully despite having `dac_read_search` denials like these:
```
type=PROCTI…
-
This is similar to issue #5589. sss_override shells are completely ignored if an override_shell is specified. The behavior of sssd is now inconsistent: sss_override homedir takes precedence over sssd.…
-
Use realmd instead of Samba to join the domain and generate a keytab.
https://fedorahosted.org/sssd/wiki/Configuring_sssd_with_ad_server#JoiningtheLinuxclientusingrealmd
-
When using sssd to resolve users, /usr/bin/id utility (from coreutils) segfaults:
id[248568]: segfault at 0 ip 00007f1778538fa4 sp 00007ffdc91925d0 error 4 in libnss_sss.so.2[7f1778538000+7000]
…
-
stdlib is at the version 6.4.0 and your dependencies require (>= 5.2.0 < 6.0.0).
# puppet module install --target-dir /etc/puppetlabs/code/modules/ sgnl05-sssd
Notice: Preparing to install into /e…
-
Hello everyone.
```
[sssd]
config_file_version = 2
reconnection_retries = 3
sbus_timeout = 60
services = nss, pam, sudo, autofs
domains = ad.domain.com.br
default_domain_suffix = ad.domain.c…
-
In `sssd::domain`, the `dns_discovery_domain` is being validated as a `Bodgitlib::Domain`. This is problematic as SSSD isn't actually asking for domain but a FQDN or SRV.
```puppet
Optional[Bod…