Trying to get courier-imap/courier-authdaemon to run with sssd

[hjheins]

I' m trying to get sssd to play nice with courier-imap/courier-authdaemon.

In authdaemonrc.conf, I set : authpam as authorisation method.

my sssd.conf file: `[sssd] services = pam domains = files debug_level=3

[domain/files] id_provider = files proxy_lib_name = files proxy_pam_target = sssd-shadowutils`

in /etc/pam.d/imap: auth required pam_sss.so account required pam_sss.so password required pam_sss.so session required pam_sss.so

but this fails with: ` * (2024-11-22 23:22:55): [pam] [cache_req_set_domain] (0x0400): [CID#1] CR #1: Using domain [files]

• (2024-11-22 23:22:55): [pam] [cache_req_prepare_domain_data] (0x0400): [CID#1] CR #1: Preparing input data for domain [files] rules
• (2024-11-22 23:22:55): [pam] [cache_req_search_send] (0x0400): [CID#1] CR #1: Looking up @files
• (2024-11-22 23:22:55): [pam] [cache_req_search_ncache] (0x0400): [CID#1] CR #1: Checking negative cache for [@files]
• (2024-11-22 23:22:55): [pam] [sss_ncache_check_str] (0x2000): [CID#1] Checking negative cache for [NCE/USER/files/@files]
• (2024-11-22 23:22:55): [pam] [cache_req_search_ncache] (0x0400): [CID#1] CR #1: [@files] is not present in negative cache
• (2024-11-22 23:22:55): [pam] [cache_req_search_dp] (0x0400): [CID#1] CR #1: Looking up [@files] in data provider
• (2024-11-22 23:22:55): [pam] [sss_domain_get_state] (0x1000): [CID#1] Domain files is Active
• (2024-11-22 23:22:55): [pam] [sss_dp_account_files_params] (0x2000): [CID#1] The entries in the files domain are up-to-date
• (2024-11-22 23:22:55): [pam] [sss_domain_get_state] (0x1000): [CID#1] Domain files is Active
• (2024-11-22 23:22:55): [pam] [cache_req_search_cache] (0x0400): [CID#1] CR #1: Looking up [@files] in cache
• (2024-11-22 23:22:55): [pam] [cache_req_search_ncache_filter] (0x0400): [CID#1] CR #1: This request type does not support filtering result by negative cache
• (2024-11-22 23:22:55): [pam] [cache_req_search_done] (0x0400): [CID#1] CR #1: Returning updated object [@files]
• (2024-11-22 23:22:55): [pam] [cache_req_create_and_add_result] (0x0400): [CID#1] CR #1: Found 1 entries in domain files
• (2024-11-22 23:22:55): [pam] [cache_req_done] (0x0400): [CID#1] CR #1: Finished: Success
• (2024-11-22 23:22:55): [pam] [pd_set_primary_name] (0x0400): [CID#1] User's primary name is @files
• (2024-11-22 23:22:55): [pam] [pam_initgr_check_timeout] (0x4000): [CID#1] User [] not found in PAM cache.
• (2024-11-22 23:22:55): [pam] [pam_initgr_cache_set] (0x2000): [CID#1] [] added to PAM initgroup cache
• (2024-11-22 23:22:55): [pam] [pam_dom_forwarder] (0x0100): [CID#1] pam_dp_send_req returned 0
• (2024-11-22 23:22:55): [pam] [sbus_dispatch] (0x4000): Dispatching.
• (2024-11-22 23:22:55): [pam] [pam_dp_send_req_done] (0x0200): [CID#1] received: [9 (Authentication service cannot retrieve authentication info)][files]
• (2024-11-22 23:22:55): [pam] [pam_reply] (0x4000): [CID#1] pam_reply initially called with result [9]: Authentication service cannot retrieve authentication info. this result might be changed during processing
• (2024-11-22 23:22:55): [pam] [pam_reply] (0x0400): [CID#1] Local auth policy allowed: smartcard [True], passkey [False]
• (2024-11-22 23:22:55): [pam] [pam_reply] (0x0040): [CID#1] Assuming offline authentication setting status for pam call 249 to PAM_SUCCESS`

which leads to this post in the authdaemon logs: imapd[31562]: Connection, ip=[<ip>], port=[<port>] authdaemond[24536]: pam_sss(imap:auth): authentication failure; logname= uid=<uid> euid=<euid> tty= ruser= rhost=<ip> user=<username> authdaemond[24536]: pam_sss(imap:auth): received for user <username>: 9 (Authentication service cannot retrieve authentication info)

sooow, what is wrong?

[sumit-bose]

Hi,

the backend logs file sssd_files.log and the proxy_child.log should have more details about why the authentication didn't work.

Additionally, are you using the given SSSD configuration just for testing and it will change later if authentication works or will this be your final configuration? I'm asking because with the current configuration SSSD will only lookup local users from /etc/passwd and will authenticate them against the password hash stored in /etc/shadow. So it wouldn't be any difference to the default local user authentication without SSSD.

bye, Sumit

[hjheins]

Hi Sumit, thank you for your response. To start with the last question: I am trying to run the imap authentication service with its own user (non-root). However I understood that due to this, PAM will not process authorization requests from the service user for imap authentication (only root is allowed). I am trying to see if I can use SSSD as a pass through/proxy service to get requests on imap authorized with PAM over sssd. (from what I understood from the documentation, this should be possible, right?

Not sure if I will change the setup afterwards; I guess if this works for authentication and doesn't open up some massive security hole, I will go with it.

This is indeed a local lookup, which should be totaly fine for my purposes.

The logs you requested.

proxy_child_local.log:

(2024-11-22 23:21:37): [proxy_child[local]] [server_setup] (0x3f7c0): [RID#1] Starting with debug level = 0x0070
(2024-11-22 23:21:37): [proxy_child[local]] [main] (0x3f7c0): [RID#1] Proxy child for domain [local] started!
(2024-11-22 23:21:37): [proxy_child[local]] [server_loop] (0x3f7c0): [RID#1] Entering main loop under uid=<uid> (euid=<euid>) : gid=<guid> (egid=<eguid>) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)

sssd_files.log:

(2024-11-22 23:21:34): [be[files]] [orderly_shutdown] (0x3f7c0): SIGTERM: killing children
(2024-11-22 23:21:34): [be[files]] [orderly_shutdown] (0x3f7c0): Shutting down (status = 0)
(2024-11-22 23:21:37): [be[files]] [server_setup] (0x3f7c0): Starting with debug level = 0x0070
(2024-11-22 23:21:37): [be[files]] [server_loop] (0x3f7c0): Entering main loop under uid=<uid> (euid=<euid>) : gid=<guid> (egid=<eguid>) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)

[alexey-tikhonov]

Hi.

You need to add 'debug_level = 9' in sssd.conf 'domain' section (and restart SSSD to apply config) to get detailed logs.

[hjheins]

Hi,

please find the logs with debug_level = 9 below.

sssd_files.log

(2024-11-25 12:21:59): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 12:21:59): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-25 12:21:59): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-25 12:21:59): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_PREAUTH
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:<ip>
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): authtok type: 0 (No authentication token available)
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): cli_pid: 6678
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-25 12:21:59): [be[files]] [dp_attach_req] (0x0400): [RID#3] DP Request [PAM Preauth #3]: REQ_TRACE: New request. [sssd.pam CID #2] Flags [0000].
(2024-11-25 12:21:59): [be[files]] [dp_attach_req] (0x0400): [RID#3] Number of active DP request: 1
(2024-11-25 12:21:59): [be[files]] [sss_domain_get_state] (0x1000): [RID#3] Domain files is Active
(2024-11-25 12:21:59): [be[files]] [dp_req_done] (0x0400): [RID#3] DP Request [PAM Preauth #3]: Request handler finished [0]: Success
(2024-11-25 12:21:59): [be[files]] [dp_req_done] (0x20000): [RID#3] DP Request [PAM Preauth #3]: Handling request took [0.101] milliseconds.
(2024-11-25 12:21:59): [be[files]] [_dp_req_recv] (0x0400): [RID#3] DP Request [PAM Preauth #3]: Receiving request data.
(2024-11-25 12:21:59): [be[files]] [dp_req_destructor] (0x0400): [RID#3] DP Request [PAM Preauth #3]: Request removed.
(2024-11-25 12:21:59): [be[files]] [dp_req_destructor] (0x0400): [RID#3] Number of active DP request: 0
(2024-11-25 12:21:59): [be[files]] [dp_method_enabled] (0x0400): [RID#3] Target selinux is not configured
(2024-11-25 12:21:59): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-25 12:21:59): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 12:21:59): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-25 12:21:59): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-25 12:21:59): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:<ip>
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): cli_pid: 6678
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-25 12:21:59): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-25 12:21:59): [be[files]] [dp_attach_req] (0x0400): [RID#4] DP Request [PAM Authenticate #4]: REQ_TRACE: New request. [sssd.pam CID #2] Flags [0000].
(2024-11-25 12:21:59): [be[files]] [dp_attach_req] (0x0400): [RID#4] Number of active DP request: 1
(2024-11-25 12:21:59): [be[files]] [sss_domain_get_state] (0x1000): [RID#4] Domain files is Active
(2024-11-25 12:21:59): [be[files]] [dp_req_done] (0x0400): [RID#4] DP Request [PAM Authenticate #4]: Request handler finished [0]: Success
(2024-11-25 12:21:59): [be[files]] [dp_req_done] (0x20000): [RID#4] DP Request [PAM Authenticate #4]: Handling request took [0.098] milliseconds.
(2024-11-25 12:21:59): [be[files]] [_dp_req_recv] (0x0400): [RID#4] DP Request [PAM Authenticate #4]: Receiving request data.
(2024-11-25 12:21:59): [be[files]] [dp_req_destructor] (0x0400): [RID#4] DP Request [PAM Authenticate #4]: Request removed.
(2024-11-25 12:21:59): [be[files]] [dp_req_destructor] (0x0400): [RID#4] Number of active DP request: 0
(2024-11-25 12:21:59): [be[files]] [dp_method_enabled] (0x0400): [RID#4] Target selinux is not configured
(2024-11-25 12:21:59): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success

Looks good, however authdaemon tells me it gets the following back:

Nov 25 12:21:51 Exynos.local imapd[6656]: Connection, ip=[<ip>], port=[<port>]
Nov 25 12:21:59 Exynos.local authdaemond[6678]: pam_sss(imap:auth): authentication failure; logname= uid=<uid> euid=<euid> tty= ruser= rhost=<ip> user=<username>
Nov 25 12:21:59 Exynos.local authdaemond[6678]: pam_sss(imap:auth): received for user <username>: 9 (Authentication service cannot retrieve authentication info)

sssd_pam.log

   *  (2024-11-25 12:20:25): [pam] [setup_client_idle_timer] (0x4000): Idle timer re-set for client [0x9f7a70][18]
   *  (2024-11-25 12:20:25): [pam] [accept_fd_handler] (0x0400): [CID#1] Client [cmd /usr/lib/courier-authlib/authdaemond][uid <uid>][0x9f7a70][18] connected!
   *  (2024-11-25 12:20:25): [pam] [sss_cmd_get_version] (0x0200): [CID#1] Received client version [3].
   *  (2024-11-25 12:20:25): [pam] [sss_cmd_get_version] (0x0200): [CID#1] Offered version [3].
   *  (2024-11-25 12:20:25): [pam] [pam_cmd_preauth] (0x0100): [CID#1] entering pam_cmd_preauth
   *  (2024-11-25 12:20:25): [pam] [sss_parse_name] (0x0200): [CID#1] Domain not provided!
   *  (2024-11-25 12:20:25): [pam] [sss_parse_name_for_domains] (0x0200): [CID#1] name '<username>' matched without domain, user is <username>
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] command: SSS_PAM_PREAUTH
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] domain: not set
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] user: <username>
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] service: imap
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] tty: not set
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] ruser: not set
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] rhost: ::ffff:54.91.253.149
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] authtok type: 0 (No authentication token available)
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] newauthtok type: 0 (No authentication token available)
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] priv: 0
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] cli_pid: 6660
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] child_pid: 0
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] logon name: <username>
   *  (2024-11-25 12:20:25): [pam] [pam_print_data] (0x0100): [CID#1] flags: 0
   *  (2024-11-25 12:20:25): [pam] [cache_req_set_plugin] (0x2000): [CID#1] CR #0: Setting "Initgroups by name" plugin
   *  (2024-11-25 12:20:25): [pam] [cache_req_send] (0x0400): [CID#1] CR #0: REQ_TRACE: New request [CID #1] '(null)'
   *  (2024-11-25 12:20:25): [pam] [cache_req_process_input] (0x0400): [CID#1] CR #0: Parsing input name [<username>]
   *  (2024-11-25 12:20:25): [pam] [sss_parse_name] (0x0200): [CID#1] Domain not provided!
   *  (2024-11-25 12:20:25): [pam] [sss_parse_name_for_domains] (0x0200): [CID#1] name '<username>' matched without domain, user is <username>
   *  (2024-11-25 12:20:25): [pam] [cache_req_set_name] (0x0400): [CID#1] CR #0: Setting name [<username>]
   *  (2024-11-25 12:20:25): [pam] [cache_req_select_domains] (0x0400): [CID#1] CR #0: Performing a multi-domain search
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_domains] (0x0400): [CID#1] CR #0: Search will check the cache and bypass the data provider
   *  (2024-11-25 12:20:25): [pam] [cache_req_validate_domain_type] (0x2000): [CID#1] Request type POSIX-only for domain files type POSIX is valid
   *  (2024-11-25 12:20:25): [pam] [cache_req_set_domain] (0x0400): [CID#1] CR #0: Using domain [files]
   *  (2024-11-25 12:20:25): [pam] [cache_req_prepare_domain_data] (0x0400): [CID#1] CR #0: Preparing input data for domain [files] rules
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_send] (0x0400): [CID#1] CR #0: Looking up <username>@files
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_ncache] (0x0400): [CID#1] CR #0: Checking negative cache for [<username>@files]
   *  (2024-11-25 12:20:25): [pam] [sss_ncache_check_str] (0x2000): [CID#1] Checking negative cache for [NCE/USER/files/<username>@files]
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_ncache] (0x0400): [CID#1] CR #0: [<username>@files] is not present in negative cache
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_cache] (0x0400): [CID#1] CR #0: Looking up [<username>@files] in cache
   *  (2024-11-25 12:20:25): [pam] [cache_req_process_result] (0x0400): [CID#1] CR #0: Finished: Not found
   *  (2024-11-25 12:20:25): [pam] [pam_check_user_search_next] (0x4000): [CID#1] PAM initgroups scheme [no_session].
   *  (2024-11-25 12:20:25): [pam] [cache_req_set_plugin] (0x2000): [CID#1] CR #1: Setting "Initgroups by name" plugin
   *  (2024-11-25 12:20:25): [pam] [cache_req_send] (0x0400): [CID#1] CR #1: REQ_TRACE: New request [CID #1] '(null)'
   *  (2024-11-25 12:20:25): [pam] [cache_req_process_input] (0x0400): [CID#1] CR #1: Parsing input name [<username>]
   *  (2024-11-25 12:20:25): [pam] [sss_parse_name] (0x0200): [CID#1] Domain not provided!
   *  (2024-11-25 12:20:25): [pam] [sss_parse_name_for_domains] (0x0200): [CID#1] name '<username>' matched without domain, user is <username>
   *  (2024-11-25 12:20:25): [pam] [cache_req_set_name] (0x0400): [CID#1] CR #1: Setting name [<username>]
   *  (2024-11-25 12:20:25): [pam] [cache_req_select_domains] (0x0400): [CID#1] CR #1: Performing a multi-domain search
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_domains] (0x0400): [CID#1] CR #1: Search will bypass the cache and check the data provider
   *  (2024-11-25 12:20:25): [pam] [cache_req_validate_domain_type] (0x2000): [CID#1] Request type POSIX-only for domain files type POSIX is valid
   *  (2024-11-25 12:20:25): [pam] [cache_req_set_domain] (0x0400): [CID#1] CR #1: Using domain [files]
   *  (2024-11-25 12:20:25): [pam] [cache_req_prepare_domain_data] (0x0400): [CID#1] CR #1: Preparing input data for domain [files] rules
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_send] (0x0400): [CID#1] CR #1: Looking up <username>@files
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_ncache] (0x0400): [CID#1] CR #1: Checking negative cache for [<username>@files]
   *  (2024-11-25 12:20:25): [pam] [sss_ncache_check_str] (0x2000): [CID#1] Checking negative cache for [NCE/USER/files/<username>@files]
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_ncache] (0x0400): [CID#1] CR #1: [<username>@files] is not present in negative cache
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_dp] (0x0400): [CID#1] CR #1: Looking up [<username>@files] in data provider
   *  (2024-11-25 12:20:25): [pam] [sss_domain_get_state] (0x1000): [CID#1] Domain files is Active
   *  (2024-11-25 12:20:25): [pam] [sss_dp_account_files_params] (0x2000): [CID#1] The entries in the files domain are up-to-date
   *  (2024-11-25 12:20:25): [pam] [sss_domain_get_state] (0x1000): [CID#1] Domain files is Active
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_cache] (0x0400): [CID#1] CR #1: Looking up [<username>@files] in cache
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_ncache_filter] (0x0400): [CID#1] CR #1: This request type does not support filtering result by negative cache
   *  (2024-11-25 12:20:25): [pam] [cache_req_search_done] (0x0400): [CID#1] CR #1: Returning updated object [<username>@files]
   *  (2024-11-25 12:20:25): [pam] [cache_req_create_and_add_result] (0x0400): [CID#1] CR #1: Found 1 entries in domain files
   *  (2024-11-25 12:20:25): [pam] [cache_req_done] (0x0400): [CID#1] CR #1: Finished: Success
   *  (2024-11-25 12:20:25): [pam] [pd_set_primary_name] (0x0400): [CID#1] User's primary name is <username>@files
   *  (2024-11-25 12:20:25): [pam] [pam_initgr_check_timeout] (0x4000): [CID#1] User [<username>] not found in PAM cache.
   *  (2024-11-25 12:20:25): [pam] [pam_initgr_cache_set] (0x2000): [CID#1] [<username>] added to PAM initgroup cache
   *  (2024-11-25 12:20:25): [pam] [pam_dom_forwarder] (0x0100): [CID#1] pam_dp_send_req returned 0
   *  (2024-11-25 12:20:25): [pam] [sbus_dispatch] (0x4000): Dispatching.
   *  (2024-11-25 12:20:25): [pam] [pam_dp_send_req_done] (0x0200): [CID#1] received: [9 (Authentication service cannot retrieve authentication info)][files]
   *  (2024-11-25 12:20:25): [pam] [pam_reply] (0x4000): [CID#1] pam_reply initially called with result [9]: Authentication service cannot retrieve authentication info. this result might be changed during processing
   *  (2024-11-25 12:20:25): [pam] [pam_reply] (0x0400): [CID#1] Local auth policy allowed: smartcard [True], passkey [False]
   *  (2024-11-25 12:20:25): [pam] [pam_reply] (0x0040): [CID#1] Assuming offline authentication setting status for pam call 249 to PAM_SUCCESS.

what am I missing?

[sumit-bose]

Hi,

I think I didn't read your sssd.conf carefully enough. I guess you want to use id_provider = proxy which will enabled auth_provider = proxy automatically as well. id_provider = files is deprecated and has no auth_provider on its own.

HTH

bye, Sumit

[hjheins]

right I modified my sssd.conf like such:

[sssd]
services = pam
domains = files
debug_level = 9

[domain/files]
debug_level = 9
id_provider = proxy
proxy_lib_name = files
proxy_pam_target = sssd-shadowutils

proxy_child_files.log

(2024-11-25 13:35:10): [proxy_child[files]] [ldb] (0x0400): [RID#1] server_sort:Unable to register control with rootdse!
(2024-11-25 13:35:10): [proxy_child[files]] [server_setup] (0x3f7c0): [RID#1] Starting with debug level = 0x2f7f0
(2024-11-25 13:35:10): [proxy_child[files]] [server_setup] (0x0400): [RID#1] CONFDB: /var/lib/sss/db/config.ldb
(2024-11-25 13:35:10): [proxy_child[files]] [confdb_init_domain_provider_and_enum] (0x0400): [RID#1] No enumeration for [files]
(2024-11-25 13:35:10): [proxy_child[files]] [confdb_init_domain_pwd_expire] (0x1000): [RID#1] pwd_expiration_warning is -1
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_dbus_connect_address] (0x0400): [RID#1] Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.proxy_1
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_watch_add] (0x2000): [RID#1] Created a disabled -/W watch on 14
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_watch_toggle] (0x4000): [RID#1] Toggle to enabled R/- watch on 14
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface sssd.ProxyChild.Auth on path /sssd
(2024-11-25 13:35:10): [proxy_child[files]] [proxy_cli_init] (0x0400): [RID#1] Sending ID to Proxy Backend: (1)
(2024-11-25 13:35:10): [proxy_child[files]] [main] (0x3f7c0): [RID#1] Proxy child for domain [files] started!
(2024-11-25 13:35:10): [proxy_child[files]] [server_loop] (0x3f7c0): [RID#1] Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: :1.4
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: sssd.proxy_1
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_method_handler] (0x2000): [RID#1] Received D-Bus method sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-25 13:35:10): [proxy_child[files]] [proxy_cli_init_done] (0x0400): [RID#1] Got id ack from proxy child
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-25 13:35:10): [proxy_child[files]] [sbus_senders_add] (0x2000): [RID#1] Inserting identity of sender [sssd.domain_files]: 964
(2024-11-25 13:35:10): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Got request with the following data
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] command: SSS_PAM_AUTHENTICATE
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] domain: files
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] user: <username>@files
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] service: imap
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] tty: 
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] ruser: 
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] rhost: ::ffff:192.168.178.2
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] authtok type: 1 (Password)
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] newauthtok type: 0 (No authentication token available)
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] priv: 0
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] cli_pid: 25555
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] child_pid: 0
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] logon name: not set
(2024-11-25 13:35:10): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] flags: 0
(2024-11-25 13:35:10): [proxy_child[files]] [call_pam_stack] (0x1000): [RID#1] Pam transaction started with service name [sssd-shadowutils].
(2024-11-25 13:35:10): [proxy_child[files]] [proxy_internal_conv] (0x0100): [RID#1] Conversation message: [Password: ]
(2024-11-25 13:35:11): [proxy_child[files]] [call_pam_stack] (0x0100): [RID#1] Pam result: [7][Authentication failure]
(2024-11-25 13:35:11): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Sending result [7][files]
(2024-11-25 13:35:11): [proxy_child[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files: Success

sssd_files.log

(2024-11-25 13:33:37): [be[files]] [server_setup] (0x3f7c0): Starting with debug level = 0x2f7f0
(2024-11-25 13:33:37): [be[files]] [server_setup] (0x0400): CONFDB: /var/lib/sss/db/config.ldb
(2024-11-25 13:33:37): [be[files]] [dp_get_options] (0x0400): Option lookup_family_order has value ipv4_first
(2024-11-25 13:33:37): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_timeout has value 6
(2024-11-25 13:33:37): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_op_timeout has value 3
(2024-11-25 13:33:37): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_server_timeout has value 1000
(2024-11-25 13:33:37): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_use_search_list is TRUE
(2024-11-25 13:33:37): [be[files]] [dp_get_options] (0x0400): Option dns_discovery_domain has no value 
(2024-11-25 13:33:37): [be[files]] [dp_get_options] (0x0400): Option failover_primary_timeout has value 31
(2024-11-25 13:33:37): [be[files]] [be_res_get_opts] (0x0100): Lookup order: ipv4_first
(2024-11-25 13:33:37): [be[files]] [recreate_ares_channel] (0x0100): Initializing new c-ares channel
(2024-11-25 13:33:37): [be[files]] [fo_context_init] (0x0400): Created new fail over context, retry timeout is 30
(2024-11-25 13:33:37): [be[files]] [confdb_init_domain_provider_and_enum] (0x0400): No enumeration for [files]
(2024-11-25 13:33:37): [be[files]] [confdb_init_domain_pwd_expire] (0x1000): pwd_expiration_warning is -1
(2024-11-25 13:33:37): [be[files]] [sysdb_domain_init_internal] (0x0200): DB File for files: /var/lib/sss/db/cache_files.ldb
(2024-11-25 13:33:37): [be[files]] [sysdb_domain_init_internal] (0x0200): Timestamp file for files: /var/lib/sss/db/timestamps_files.ldb
(2024-11-25 13:33:37): [be[files]] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-25 13:33:37): [be[files]] [ldb] (0x0400): asq: Unable to register control with rootdse!
(2024-11-25 13:33:37): [be[files]] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-25 13:33:37): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-25 13:33:37): [be[files]] [sss_names_init_from_args] (0x0100): Using re [^((?P<name>.+)@(?P<domain>[^@]+)|(?P<name>[^@]+))$].
(2024-11-25 13:33:37): [be[files]] [sss_fqnames_init] (0x0100): Using fq format [%1$s@%2$s].
(2024-11-25 13:33:37): [be[files]] [sbus_dbus_connect_address] (0x0400): Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.domain_files
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-25 13:33:37): [be[files]] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 15
(2024-11-25 13:33:37): [be[files]] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-25 13:33:37): [be[files]] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-25 13:33:37): [be[files]] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [id]
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [auth]
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [permit] provider for [access]
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [chpass]
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [sudo]
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [autofs]
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [selinux]
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [hostid]
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [subdomains]
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [session]
(2024-11-25 13:33:37): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [resolver]
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [id] with module [proxy]
(2024-11-25 13:33:37): [be[files]] [dp_load_module] (0x0400): About to load module [proxy].
(2024-11-25 13:33:37): [be[files]] [dp_module_open_lib] (0x1000): Loading module [proxy] with path [/usr/lib/sssd/libsss_proxy.so]
(2024-11-25 13:33:37): [be[files]] [dp_module_run_constructor] (0x0400): Executing module [proxy] constructor.
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.ProxyChild.Client on path /sssd
(2024-11-25 13:33:37): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [id] constructor
(2024-11-25 13:33:37): [be[files]] [sysdb_merge_res_ts_attrs] (0x2000): TS cache doesn't handle this DN type, skipping
(2024-11-25 13:33:37): [be[files]] [sysdb_delete_recursive_with_filter] (0x4000): Found [1] items to delete.
(2024-11-25 13:33:37): [be[files]] [sysdb_delete_recursive_with_filter] (0x4000): Trying to delete [cn=certmap,cn=sysdb].
(2024-11-25 13:33:37): [be[files]] [sysdb_get_certmap] (0x0400): No certificate maps found.
(2024-11-25 13:33:37): [be[files]] [proxy_init_certmap] (0x4000): No certmap data, nothing to do.
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [auth] with module [proxy]
(2024-11-25 13:33:37): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-25 13:33:37): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [auth] constructor
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [access] with module [permit]
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [chpass] with module [proxy]
(2024-11-25 13:33:37): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-25 13:33:37): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [chpass] constructor
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [sudo] with module [proxy]
(2024-11-25 13:33:37): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0100): Target [sudo] is not supported by module [proxy].
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [autofs] with module [proxy]
(2024-11-25 13:33:37): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0100): Target [autofs] is not supported by module [proxy].
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [selinux] with module [proxy]
(2024-11-25 13:33:37): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0100): Target [selinux] is not supported by module [proxy].
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [hostid] with module [proxy]
(2024-11-25 13:33:37): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0100): Target [hostid] is not supported by module [proxy].
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [subdomains] with module [proxy]
(2024-11-25 13:33:37): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0100): Target [subdomains] is not supported by module [proxy].
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [session] with module [proxy]
(2024-11-25 13:33:37): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0100): Target [session] is not supported by module [proxy].
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0400): Initializing target [resolver] with module [proxy]
(2024-11-25 13:33:37): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-25 13:33:37): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [resolver] constructor
(2024-11-25 13:33:37): [be[files]] [proxy_resolver_conf] (0x0100): No resolver library name given
(2024-11-25 13:33:37): [be[files]] [dp_target_init] (0x0100): Target [resolver] is not supported by module [proxy].
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.Backend on path /sssd
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.Failover on path /sssd
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.AccessControl on path /sssd
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.dataprovider on path /sssd
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.Autofs on path /sssd
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.Responder.Domain on path /sssd
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.Responder.NegativeCache on path /sssd
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.nss.MemoryCache on path /sssd
(2024-11-25 13:33:37): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.service on path /sssd
(2024-11-25 13:33:37): [be[files]] [snotify_watch] (0x2000): Opened inotify fd 16
(2024-11-25 13:33:37): [be[files]] [snotify_watch] (0x2000): Opened file watch 1
(2024-11-25 13:33:37): [be[files]] [snotify_watch] (0x2000): Opened directory watch 2
(2024-11-25 13:33:37): [be[files]] [_snotify_create] (0x0400): Added a watch for /etc/resolv.conf with inotify flags 0x8D88 internal flags 0x1 using function watched_file_inotify_cb after delay 1.0
(2024-11-25 13:33:37): [be[files]] [watch_update_resolv] (0x0400): Reloading /etc/resolv.conf.
(2024-11-25 13:33:37): [be[files]] [recreate_ares_channel] (0x0100): Initializing new c-ares channel
(2024-11-25 13:33:37): [be[files]] [recreate_ares_channel] (0x0100): Destroying the old c-ares channel
(2024-11-25 13:33:37): [be[files]] [check_if_online] (0x2000): ID providers does not provide a check_online method.
(2024-11-25 13:33:37): [be[files]] [fo_reset_services] (0x1000): Resetting all servers in all services
(2024-11-25 13:33:37): [be[files]] [reactivate_subdoms] (0x1000): Resetting all subdomains
(2024-11-25 13:33:37): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-25 13:33:37): [be[files]] [netlink_watch] (0x1000): Netlink watching is enabled
(2024-11-25 13:33:37): [be[files]] [be_process_init] (0x0400): Backend provider (files) started!
(2024-11-25 13:33:37): [be[files]] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
(2024-11-25 13:33:37): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:33:37): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-25 13:33:37): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:33:37): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-25 13:33:37): [be[files]] [sbus_name_acquired] (0x0400): D-Bus name acquired: :1.2
(2024-11-25 13:33:37): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-25 13:33:37): [be[files]] [sbus_name_acquired] (0x0400): D-Bus name acquired: sssd.domain_files
(2024-11-25 13:33:37): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-25 13:33:37): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:33:37): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:33:37): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:33:37): [be[files]] [sss_monitor_register_service_done] (0x0100): Got id ack and version (1) from Monitor
(2024-11-25 13:33:38): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:33:38): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-25 13:33:38): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.3 has changed from [] to [:1.3]
(2024-11-25 13:33:38): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-25 13:33:38): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:33:38): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-25 13:33:38): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.pam has changed from [] to [sssd.pam]
(2024-11-25 13:33:38): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-25 13:33:38): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:33:38): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.getDomains on /sssd from sssd.pam
(2024-11-25 13:33:38): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-25 13:33:38): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:33:38): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-25 13:33:38): [be[files]] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.pam]: 964
(2024-11-25 13:33:38): [be[files]] [dp_attach_req] (0x0400): [RID#1] DP Request [Subdomains #1]: REQ_TRACE: New request. Flags [0000].
(2024-11-25 13:33:38): [be[files]] [dp_attach_req] (0x0400): [RID#1] Number of active DP request: 1
(2024-11-25 13:33:38): [be[files]] [dp_find_method] (0x0100): [RID#1] Target [subdomains] is not initialized
(2024-11-25 13:33:38): [be[files]] [_dp_req_recv] (0x0400): DP Request [Subdomains #1]: Receiving request data.
(2024-11-25 13:33:38): [be[files]] [dp_req_destructor] (0x0400): DP Request [Subdomains #1]: Request removed.
(2024-11-25 13:33:38): [be[files]] [dp_req_destructor] (0x0400): Number of active DP request: 0
(2024-11-25 13:33:38): [be[files]] [sbus_issue_request_done] (0x0200): sssd.dataprovider.getDomains: Error [1432158215]: DP target is not configured
(2024-11-25 13:34:09): [be[files]] [process_dir_event] (0x4000): inotify name: ld.so.cache~
(2024-11-25 13:34:09): [be[files]] [process_dir_event] (0x0400): Not interested in ld.so.cache~
(2024-11-25 13:34:09): [be[files]] [snotify_internal_cb] (0x2000): All inotify events processed
(2024-11-25 13:34:10): [be[files]] [process_dir_event] (0x4000): inotify name: ld.so.cache
(2024-11-25 13:34:10): [be[files]] [process_dir_event] (0x0400): Not interested in ld.so.cache
(2024-11-25 13:34:10): [be[files]] [snotify_internal_cb] (0x2000): All inotify events processed
(2024-11-25 13:34:10): [be[files]] [process_dir_event] (0x4000): inotify name: ld.so.cache~
(2024-11-25 13:34:10): [be[files]] [process_dir_event] (0x0400): Not interested in ld.so.cache~
(2024-11-25 13:34:10): [be[files]] [snotify_internal_cb] (0x2000): All inotify events processed
(2024-11-25 13:34:10): [be[files]] [process_dir_event] (0x4000): inotify name: ld.so.cache
(2024-11-25 13:34:10): [be[files]] [process_dir_event] (0x0400): Not interested in ld.so.cache
(2024-11-25 13:34:10): [be[files]] [snotify_internal_cb] (0x2000): All inotify events processed
(2024-11-25 13:34:21): [be[files]] [process_dir_event] (0x4000): inotify name: ld.so.cache~
(2024-11-25 13:34:21): [be[files]] [process_dir_event] (0x0400): Not interested in ld.so.cache~
(2024-11-25 13:34:21): [be[files]] [snotify_internal_cb] (0x2000): All inotify events processed
(2024-11-25 13:34:21): [be[files]] [process_dir_event] (0x4000): inotify name: ld.so.cache
(2024-11-25 13:34:21): [be[files]] [process_dir_event] (0x0400): Not interested in ld.so.cache
(2024-11-25 13:34:21): [be[files]] [snotify_internal_cb] (0x2000): All inotify events processed
(2024-11-25 13:34:22): [be[files]] [process_dir_event] (0x4000): inotify name: ld.so.cache~
(2024-11-25 13:34:22): [be[files]] [process_dir_event] (0x0400): Not interested in ld.so.cache~
(2024-11-25 13:34:22): [be[files]] [snotify_internal_cb] (0x2000): All inotify events processed
(2024-11-25 13:34:22): [be[files]] [process_dir_event] (0x4000): inotify name: ld.so.cache
(2024-11-25 13:34:22): [be[files]] [process_dir_event] (0x0400): Not interested in ld.so.cache
(2024-11-25 13:34:22): [be[files]] [snotify_internal_cb] (0x2000): All inotify events processed
(2024-11-25 13:34:22): [be[files]] [process_dir_event] (0x4000): inotify name: .#group8c006b0bf5254a3f
(2024-11-25 13:34:22): [be[files]] [process_dir_event] (0x0400): Not interested in .#group8c006b0bf5254a3f
(2024-11-25 13:34:22): [be[files]] [snotify_internal_cb] (0x2000): All inotify events processed
(2024-11-25 13:34:22): [be[files]] [process_dir_event] (0x4000): inotify name: .#gshadow33989630f999081c
(2024-11-25 13:34:22): [be[files]] [process_dir_event] (0x0400): Not interested in .#gshadow33989630f999081c
(2024-11-25 13:34:22): [be[files]] [snotify_internal_cb] (0x2000): All inotify events processed
(2024-11-25 13:35:09): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:35:09): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.getAccountInfo on /sssd from sssd.pam
(2024-11-25 13:35:09): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-25 13:35:09): [be[files]] [dp_get_account_info_send] (0x0200): Got request for [0x3][BE_REQ_INITGROUPS][name=<username>@files]
(2024-11-25 13:35:09): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-25 13:35:09): [be[files]] [dp_attach_req] (0x0400): [RID#2] DP Request [Initgroups #2]: REQ_TRACE: New request. [sssd.pam CID #1] Flags [0x0001].
(2024-11-25 13:35:09): [be[files]] [dp_attach_req] (0x0400): [RID#2] Number of active DP request: 1
(2024-11-25 13:35:09): [be[files]] [sss_domain_get_state] (0x1000): [RID#2] Domain files is Active
(2024-11-25 13:35:09): [be[files]] [handle_getpw_result] (0x0400): [RID#2] User found: (<username>, 1001, 985)
(2024-11-25 13:35:09): [be[files]] [handle_getpw_result] (0x0400): [RID#2] User found: (<username>, 1001, 985)
(2024-11-25 13:35:09): [be[files]] [sysdb_ldb_msg_difference] (0x2000): [RID#2] Added attr [nameAlias] to entry [name=<username>@files,cn=users,cn=files,cn=sysdb]
(2024-11-25 13:35:09): [be[files]] [sysdb_set_entry_attr] (0x0200): [RID#2] Entry [name=<username>@files,cn=users,cn=files,cn=sysdb] has set [cache, ts_cache] attrs.
(2024-11-25 13:35:09): [be[files]] [sysdb_store_user] (0x0400): [RID#2] User "<username>@files" has been stored
(2024-11-25 13:35:09): [be[files]] [get_initgr_groups_process] (0x0200): [RID#2] The initgroups call returned 'NOTFOUND'. Assume the user is only member of its primary group (985)
(2024-11-25 13:35:09): [be[files]] [get_initgr_groups_process] (0x0100): [RID#2] User [<username>] appears to be member of 1 groups
(2024-11-25 13:35:09): [be[files]] [sss_domain_get_state] (0x1000): [RID#2] Domain files is Active
(2024-11-25 13:35:09): [be[files]] [sss_domain_get_state] (0x1000): [RID#2] Domain files is Active
(2024-11-25 13:35:09): [be[files]] [get_gr_gid] (0x0400): [RID#2] Searching group by gid (985)
(2024-11-25 13:35:09): [be[files]] [handle_getgr_result] (0x0200): [RID#2] Group found: (users, 985)
(2024-11-25 13:35:09): [be[files]] [save_group] (0x1000): [RID#2] Group users has 1 members!
(2024-11-25 13:35:09): [be[files]] [sysdb_attrs_users_from_str_list] (0x4000): [RID#2] Adding 1 members to existing 0 ones
(2024-11-25 13:35:09): [be[files]] [sysdb_attrs_users_from_str_list] (0x1000): [RID#2]     member #0: [name=<username>@files,cn=users,cn=files,cn=sysdb]
(2024-11-25 13:35:09): [be[files]] [proxy_process_missing_users] (0x2000): [RID#2] Member [<username>@files] already cached
(2024-11-25 13:35:09): [be[files]] [sysdb_ldb_msg_difference] (0x2000): [RID#2] Added attr [member] to entry [name=users@files,cn=groups,cn=files,cn=sysdb]
(2024-11-25 13:35:09): [be[files]] [sysdb_set_entry_attr] (0x0200): [RID#2] Entry [name=users@files,cn=groups,cn=files,cn=sysdb] has set [cache, ts_cache] attrs.
(2024-11-25 13:35:09): [be[files]] [sysdb_store_group] (0x0400): [RID#2] Group "users@files" has been stored
(2024-11-25 13:35:09): [be[files]] [dp_req_done] (0x0400): [RID#2] DP Request [Initgroups #2]: Request handler finished [0]: Success
(2024-11-25 13:35:09): [be[files]] [dp_req_done] (0x20000): [RID#2] DP Request [Initgroups #2]: Handling request took [182.349] milliseconds.
(2024-11-25 13:35:09): [be[files]] [_dp_req_recv] (0x0400): [RID#2] DP Request [Initgroups #2]: Receiving request data.
(2024-11-25 13:35:09): [be[files]] [dp_req_destructor] (0x0400): [RID#2] DP Request [Initgroups #2]: Request removed.
(2024-11-25 13:35:09): [be[files]] [dp_req_destructor] (0x0400): [RID#2] Number of active DP request: 0
(2024-11-25 13:35:09): [be[files]] [sysdb_set_entry_attr] (0x0200): [RID#2] Entry [name=<username>@files,cn=users,cn=files,cn=sysdb] has set [ts_cache] attrs.
(2024-11-25 13:35:09): [be[files]] [dp_get_account_info_initgroups_resolv_done] (0x0400): [RID#2] Ordering NSS responder to update memory cache
(2024-11-25 13:35:09): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:35:09): [be[files]] [sbus_reply_check] (0x4000): D-Bus error [org.freedesktop.DBus.Error.ServiceUnknown]: sssd.nss
(2024-11-25 13:35:09): [be[files]] [dp_get_account_info_done] (0x0040): [RID#2] Error sending sbus message [1432158318]: Unknown service
(2024-11-25 13:35:09): [be[files]] [sbus_issue_request_done] (0x0040): sssd.dataprovider.getAccountInfo: Error [1432158318]: Unknown service
(2024-11-25 13:35:09): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:35:09): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-25 13:35:09): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-25 13:35:09): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_PREAUTH
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): authtok type: 0 (No authentication token available)
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): cli_pid: 25555
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-25 13:35:09): [be[files]] [dp_attach_req] (0x0400): [RID#3] DP Request [PAM Preauth #3]: REQ_TRACE: New request. [sssd.pam CID #1] Flags [0000].
(2024-11-25 13:35:09): [be[files]] [dp_attach_req] (0x0400): [RID#3] Number of active DP request: 1
(2024-11-25 13:35:09): [be[files]] [sss_domain_get_state] (0x1000): [RID#3] Domain files is Active
(2024-11-25 13:35:09): [be[files]] [proxy_pam_handler_send] (0x0020): [RID#3] Unsupported PAM task 249
(2024-11-25 13:35:09): [be[files]] [dp_req_done] (0x0400): [RID#3] DP Request [PAM Preauth #3]: Request handler finished [0]: Success
(2024-11-25 13:35:09): [be[files]] [dp_req_done] (0x20000): [RID#3] DP Request [PAM Preauth #3]: Handling request took [0.078] milliseconds.
(2024-11-25 13:35:09): [be[files]] [_dp_req_recv] (0x0400): [RID#3] DP Request [PAM Preauth #3]: Receiving request data.
(2024-11-25 13:35:09): [be[files]] [dp_req_destructor] (0x0400): [RID#3] DP Request [PAM Preauth #3]: Request removed.
(2024-11-25 13:35:09): [be[files]] [dp_req_destructor] (0x0400): [RID#3] Number of active DP request: 0
(2024-11-25 13:35:09): [be[files]] [dp_method_enabled] (0x0400): [RID#3] Target selinux is not configured
(2024-11-25 13:35:09): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-25 13:35:09): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:35:09): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-25 13:35:09): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-25 13:35:09): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): cli_pid: 25555
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-25 13:35:09): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-25 13:35:09): [be[files]] [dp_attach_req] (0x0400): [RID#4] DP Request [PAM Authenticate #4]: REQ_TRACE: New request. [sssd.pam CID #1] Flags [0000].
(2024-11-25 13:35:09): [be[files]] [dp_attach_req] (0x0400): [RID#4] Number of active DP request: 1
(2024-11-25 13:35:09): [be[files]] [sss_domain_get_state] (0x1000): [RID#4] Domain files is Active
(2024-11-25 13:35:09): [be[files]] [proxy_child_send] (0x2000): [RID#4] Queueing request [1]
(2024-11-25 13:35:09): [be[files]] [proxy_child_init_send] (0x1000): [RID#4] Starting proxy child with args [/usr/lib/sssd/sssd/proxy_child -d 0x2f7f0 --debug-timestamps=1 --debug-microseconds=0 --logger=files --domain files --id 1 --chain-id=1]
(2024-11-25 13:35:10): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:35:10): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-25 13:35:10): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [] to [:1.4]
(2024-11-25 13:35:10): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-25 13:35:10): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:35:10): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-25 13:35:10): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [] to [sssd.proxy_1]
(2024-11-25 13:35:10): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-25 13:35:10): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:35:10): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.ProxyChild.Client.Register on /sssd from sssd.proxy_1
(2024-11-25 13:35:10): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.proxy_1]
(2024-11-25 13:35:10): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:35:10): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.proxy_1]
(2024-11-25 13:35:10): [be[files]] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.proxy_1]: 964
(2024-11-25 13:35:10): [be[files]] [proxy_pam_conv_send] (0x0100): Sending request with the following data:
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): cli_pid: 25555
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-25 13:35:10): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-25 13:35:10): [be[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Client.Register on /sssd from sssd.proxy_1: Success
(2024-11-25 13:35:11): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:35:11): [be[files]] [proxy_pam_conv_done] (0x0100): received: [7][files]
(2024-11-25 13:35:11): [be[files]] [proxy_child_destructor] (0x2000): Removing proxy child id [1]
(2024-11-25 13:35:11): [be[files]] [dp_req_done] (0x0400): DP Request [PAM Authenticate #4]: Request handler finished [0]: Success
(2024-11-25 13:35:11): [be[files]] [dp_req_done] (0x20000): DP Request [PAM Authenticate #4]: Handling request took [2178.468] milliseconds.
(2024-11-25 13:35:11): [be[files]] [_dp_req_recv] (0x0400): DP Request [PAM Authenticate #4]: Receiving request data.
(2024-11-25 13:35:11): [be[files]] [dp_req_destructor] (0x0400): DP Request [PAM Authenticate #4]: Request removed.
(2024-11-25 13:35:11): [be[files]] [dp_req_destructor] (0x0400): Number of active DP request: 0
(2024-11-25 13:35:11): [be[files]] [dp_method_enabled] (0x0400): Target selinux is not configured
(2024-11-25 13:35:11): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-25 13:35:12): [be[files]] [proxy_child_sig_handler] (0x1000): Waiting for child [25556].
(2024-11-25 13:35:12): [be[files]] [proxy_child_sig_handler] (0x0100): child [25556] was terminated by signal [9].
(2024-11-25 13:35:12): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-25 13:35:12): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-25 13:35:12): [be[files]] [sbus_dispatch] (0x4000): Dispatching.

sssd_pam.log

(2024-11-25 13:33:38): [pam] [server_setup] (0x3f7c0): Starting with debug level = 0x0070
(2024-11-25 13:33:38): [pam] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective =  0 , permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-25 13:35:09): [pam] [cache_req_common_process_dp_reply] (0x3f7c0): [CID#1] CR #1: Could not get account info [1432158318]: Unknown service
(2024-11-25 13:35:57): [pam] [cache_req_common_process_dp_reply] (0x3f7c0): [CID#2] CR #4: Could not get account info [1432158318]: Unknown service
(2024-11-25 13:36:43): [pam] [cache_req_common_process_dp_reply] (0x3f7c0): [CID#3] CR #7: Could not get account info [1432158318]: Unknown service
(2024-11-25 13:36:56): [pam] [cache_req_common_process_dp_reply] (0x3f7c0): [CID#4] CR #10: Could not get account info [1432158318]: Unknown service

Result in journal:

Nov 25 13:35:00 Exynos.local imapd[25551]: Connection, ip=[<ip>], port=[59954]
Nov 25 13:35:02 Exynos.local postfix/smtp/smtpd[25525]: disconnect from 172-15-0-1.lightspeed.stlsmo.sbcglobal.net[172.15.0.1] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4
Nov 25 13:35:10 Exynos.local proxy_child[25556]: Starting up
Nov 25 13:35:10 Exynos.local proxy_child[25556]: pam_unix(sssd-shadowutils:auth): authentication failure; logname= uid=964 euid=964 tty= ruser= rhost=<ip>  user=<username>
Nov 25 13:35:11 Exynos.local authdaemond[25555]: pam_sss(imap:auth): authentication failure; logname= uid=72 euid=72 tty= ruser= rhost=<ip> user=<username>
Nov 25 13:35:11 Exynos.local authdaemond[25555]: pam_sss(imap:auth): received for user <username>: 7 (Authentication failure)

[sumit-bose]

Hi,

the version of SSSD you are using is not running as root by default anymore.

(2024-11-25 13:35:10): [proxy_child[files]] [server_loop] (0x3f7c0): [RID#1] Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)

Although pam_unix.so is using a help process /usr/sbin/unix_chkpw which has the SUID bit set it looks like the strip down of the capabilities of the SSSD processes might have an effect on this helper process as well. In general this helper process should allow services not running as root to authenticate against the hashes stored in /etc/shadow.

@alexey-tikhonov, do you have an idea which capability might be missing in proxy_child to make this work?

bye, Sumit

[alexey-tikhonov]

It depends on implementation of 'unix_chkpwd'. In theory, cap_dac_read_search should be enough.

@hjheins, could you please check if sudo setcap /usr/libexec/sssd/cap_dac_read_search=ep proxy_child does the trick?

[alexey-tikhonov]

Looking at https://github.com/linux-pam/linux-pam/blob/master/modules/pam_unix/passverify.c#L1105 , it just seems to expect to be able to read /etc/shadow, so cap_dac_read_search /should/ do the trick.

[hjheins]

Errr I would love to try that but unfortunately I have no /usr/libexec and with "whereis" I can't find "cap_dac_read_search" or "proxy_child" on my system.

I have a /usr/lib/sssd:

drwxr-xr-x   2 root root   4096 Nov 21 14:21 conf
-rwxr-xr-x   1 root root  79288 Oct 25 18:19 libifp_iface.so
-rwxr-xr-x   1 root root  50564 Oct 25 18:19 libifp_iface_sync.so
-rwxr-xr-x   1 root root 273828 Oct 25 18:19 libsss_ad.so
-rwxr-xr-x   1 root root  13700 Oct 25 18:19 libsss_cert.so
-rwxr-xr-x   1 root root  21840 Oct 25 18:19 libsss_child.so
-rwxr-xr-x   1 root root  17760 Oct 25 18:19 libsss_crypt.so
-rwxr-xr-x   1 root root  17832 Oct 25 18:19 libsss_debug.so
-rwxr-xr-x   1 root root  46644 Oct 25 18:19 libsss_files.so
-rwxr-xr-x   1 root root 128388 Oct 25 18:19 libsss_iface.so
-rwxr-xr-x   1 root root  46468 Oct 25 18:19 libsss_iface_sync.so
-rwxr-xr-x   1 root root 534380 Oct 25 18:19 libsss_ipa.so
-rwxr-xr-x   1 root root   9552 Oct 25 18:19 libsss_krb5.so
-rwxr-xr-x   1 root root 128960 Oct 25 18:19 libsss_krb5_common.so
-rwxr-xr-x   1 root root  17744 Oct 25 18:19 libsss_ldap.so
-rwxr-xr-x   1 root root 663228 Oct 25 18:19 libsss_ldap_common.so
-rwxr-xr-x   1 root root  87428 Oct 25 18:19 libsss_proxy.so
-rwxr-xr-x   1 root root 227308 Oct 25 18:19 libsss_sbus.so
-rwxr-xr-x   1 root root  75756 Oct 25 18:19 libsss_sbus_sync.so
-rwxr-xr-x   1 root root   5348 Oct 25 18:19 libsss_semanage.so
-rwxr-xr-x   1 root root  26072 Oct 25 18:19 libsss_simple.so
-rwxr-xr-x   1 root root 510032 Oct 25 18:19 libsss_util.so
drwxr-xr-x   2 root root   4096 Nov 21 14:21 modules
drwxr-xr-x   2 root root   4096 Nov 21 14:21 sssd

/usr/share/sssd:

drwxr-xr-x   4 root root  4096 Nov 21 14:21 .
drwxr-xr-x 111 root root  4096 Nov 21 14:21 ..
-rw-r--r--   1 root root 22126 Oct 25 18:19 cfg_rules.ini
drwxr-xr-x   2 root root  4096 Nov 21 14:21 krb5-snippets
-rw-r--r--   1 root root  7135 Oct 25 18:19 sssd.api.conf
drwxr-xr-x   2 root root  4096 Nov 21 14:21 sssd.api.d

what do I do? the sudo setcap command gives an error.

# setcap /usr/libexec/sssd/cap_dac_read_search=ep proxy_child
fatal error: Invalid argument

[alexey-tikhonov]

Looking at the logs you provided, at your system it is in /usr/lib/sssd/sssd/proxy_child

[hjheins]

soooow, I went to: "/usr/lib/sssd/sssd" There I executed: "setcap cap_dac_read_search=ep proxy_child" no error, no message, back on prompt

Then I tried to connect on courier-imapd again.

This is the sssd.log:

# cat sssd.log 
[sssd] [main] (0x3f7c0): Started under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
[sssd] [check_file] (0x0400): lstat for '/run/sssd/sssd.pid' failed: [2][No such file or directory].
[sssd] [check_file] (0x0400): lstat for '/var/run/nscd/socket' failed: [2][No such file or directory].
[sssd] [confdb_populate] (0x0100): LDIF file to import: 
dn: cn=sssd,cn=config
cn: sssd
services: pam
domains: files
debug_level: 9

dn: cn=files,cn=domain,cn=config
cn: files
debug_level: 9
id_provider: proxy
proxy_lib_name: files
proxy_pam_target: sssd-shadowutils

[sssd] [ldb] (0x0400): server_sort:Unable to register control with rootdse!
(2024-11-26 19:50:31): [sssd] [server_setup] (0x3f7c0): Starting with debug level = 0x2f7f0
(2024-11-26 19:50:31): [sssd] [server_setup] (0x0400): CONFDB: /var/lib/sss/db/config.ldb
(2024-11-26 19:50:31): [sssd] [confdb_ensure_files_domain] (0x0100): The implicit files domain is disabled
(2024-11-26 19:50:31): [sssd] [confdb_expand_app_domains] (0x2000): files is not an app domain
(2024-11-26 19:50:31): [sssd] [confdb_init_domain_provider_and_enum] (0x0400): No enumeration for [files]
(2024-11-26 19:50:31): [sssd] [confdb_init_domain_pwd_expire] (0x1000): pwd_expiration_warning is -1
(2024-11-26 19:50:31): [sssd] [sss_names_init_from_args] (0x0100): Using re [^((?P<name>.+)@(?P<domain>[^@]+)|(?P<name>[^@]+))$].
(2024-11-26 19:50:31): [sssd] [sss_fqnames_init] (0x0100): Using fq format [%1$s@%2$s].
(2024-11-26 19:50:31): [sssd] [sysdb_domain_init_internal] (0x0200): DB File for files: /var/lib/sss/db/cache_files.ldb
(2024-11-26 19:50:31): [sssd] [sysdb_domain_init_internal] (0x0200): Timestamp file for files: /var/lib/sss/db/timestamps_files.ldb
(2024-11-26 19:50:31): [sssd] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-26 19:50:31): [sssd] [ldb] (0x0400): asq: Unable to register control with rootdse!
(2024-11-26 19:50:31): [sssd] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-26 19:50:31): [sssd] [sbus_server_socket_listen] (0x0400): D-BUS Server listening on unix:path=/var/lib/sss/pipes/private/sbus-master,guid=50a12d0e65281f7bf0c966ff67462687
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus on path /org/freedesktop/DBus
(2024-11-26 19:50:31): [sssd] [sbus_watch_add] (0x2000): Created a enabled R/- watch on 11
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 19:50:31): [sssd] [sbus_watch_add] (0x2000): Created a enabled -/W watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 12
(2024-11-26 19:50:31): [sssd] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
(2024-11-26 19:50:31): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x1941970.
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 19:50:31): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 13
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 13
(2024-11-26 19:50:31): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x19c1320.
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 13
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 13
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 13
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 13
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 13
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 13
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 13
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 13
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 12
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-26 19:50:31): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.1 to connection 0x19c1320
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:50:31): [sssd] [sbus_signal_handler] (0x0200): We do not listen to this signal!
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.1
(2024-11-26 19:50:31): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.monitor
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.1: Success
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:50:31): [sssd] [sbus_signal_handler] (0x0200): We do not listen to this signal!
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-26 19:50:31): [sssd] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-26 19:50:31): [sssd] [sbus_connect_private_done] (0x0400): Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.monitor
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface sssd.monitor on path /sssd
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface sssd.service on path /sssd
(2024-11-26 19:50:31): [sssd] [get_provider_config] (0x0100): Formed command '/usr/lib/sssd/sssd/sssd_be --domain files --logger=files' for provider '%BE_files'
(2024-11-26 19:50:31): [sssd] [start_service] (0x0100): Queueing service files for startup
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor
(2024-11-26 19:50:31): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.1: org.freedesktop.DBus.NameOwnerChanged
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-26 19:50:31): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.1: org.freedesktop.DBus.NameAcquired
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x19d12c0.
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 19:50:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 19:50:31): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 14
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 14
(2024-11-26 19:50:31): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x1945310.
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 14
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 14
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 14
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 14
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 14
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 14
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 14
(2024-11-26 19:50:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 14
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-26 19:50:31): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.2 to connection 0x1945310
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:50:31): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.2 has changed from [] to [:1.2]
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.2
(2024-11-26 19:50:31): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.domain_files
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.2: Success
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:50:31): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.domain_files has changed from [] to [sssd.domain_files]
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files
(2024-11-26 19:50:31): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.2: org.freedesktop.DBus.NameOwnerChanged
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-26 19:50:31): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.2: org.freedesktop.DBus.NameAcquired
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method sssd.monitor.RegisterService on /sssd from sssd.domain_files
(2024-11-26 19:50:31): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.domain_files]
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:31): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.domain_files]
(2024-11-26 19:50:31): [sssd] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.domain_files]: 964
(2024-11-26 19:50:31): [sssd] [monitor_sbus_RegisterService] (0x0100): Received ID registration: (%BE_files,1)
(2024-11-26 19:50:31): [sssd] [mark_service_as_started] (0x0200): Marking files as started.
(2024-11-26 19:50:31): [sssd] [mark_service_as_started] (0x0100): Now starting services!
(2024-11-26 19:50:31): [sssd] [get_service_config] (0x0100): Formed command '/usr/lib/sssd/sssd/sssd_pam --logger=files' for service 'pam'
(2024-11-26 19:50:31): [sssd] [start_service] (0x0100): Queueing service pam for startup
(2024-11-26 19:50:31): [sssd] [sbus_issue_request_done] (0x0400): sssd.monitor.RegisterService on /sssd from sssd.domain_files: Success
(2024-11-26 19:50:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x19d5338.
(2024-11-26 19:50:32): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 19:50:32): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 19:50:32): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 19:50:32): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 19:50:32): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 15
(2024-11-26 19:50:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-26 19:50:32): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x19d3f60.
(2024-11-26 19:50:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 15
(2024-11-26 19:50:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 15
(2024-11-26 19:50:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-26 19:50:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 15
(2024-11-26 19:50:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 15
(2024-11-26 19:50:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 15
(2024-11-26 19:50:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-26 19:50:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 15
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-26 19:50:32): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.3 to connection 0x19d3f60
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:50:32): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.3 has changed from [] to [:1.3]
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.3
(2024-11-26 19:50:32): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.pam
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.3: Success
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:50:32): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.pam has changed from [] to [sssd.pam]
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-26 19:50:32): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: org.freedesktop.DBus.NameOwnerChanged
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-26 19:50:32): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: org.freedesktop.DBus.NameAcquired
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-26 19:50:32): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.Domain.SetActive
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-26 19:50:32): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.Domain.SetInconsistent
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-26 19:50:32): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.NegativeCache.ResetUsers
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-26 19:50:32): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.NegativeCache.ResetGroups
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method sssd.monitor.RegisterService on /sssd from sssd.pam
(2024-11-26 19:50:32): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-26 19:50:32): [sssd] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.pam]: 964
(2024-11-26 19:50:32): [sssd] [monitor_sbus_RegisterService] (0x0100): Received ID registration: (pam,1)
(2024-11-26 19:50:32): [sssd] [mark_service_as_started] (0x0200): Marking pam as started.
(2024-11-26 19:50:32): [sssd] [mark_service_as_started] (0x0400): All services have successfully started, creating pid file
(2024-11-26 19:50:32): [sssd] [notify_startup] (0x0400): Sending startup notification to systemd
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): sssd.monitor.RegisterService on /sssd from sssd.pam: Success
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files
(2024-11-26 19:50:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:50:38): [sssd] [services_startup_timeout] (0x0400): Handling timeout
(2024-11-26 19:51:06): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:06): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:06): [sssd] [sbus_server_resend_message] (0x4000): Trying to send a message to an unknown destination: sssd.nss
(2024-11-26 19:51:06): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:06): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:06): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:06): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x19da680.
(2024-11-26 19:51:07): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 19:51:07): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 19:51:07): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 19:51:07): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 19:51:07): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 16
(2024-11-26 19:51:07): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-26 19:51:07): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x19d81c8.
(2024-11-26 19:51:07): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 16
(2024-11-26 19:51:07): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 16
(2024-11-26 19:51:07): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-26 19:51:07): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 16
(2024-11-26 19:51:07): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 16
(2024-11-26 19:51:07): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 16
(2024-11-26 19:51:07): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-26 19:51:07): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 16
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-26 19:51:07): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.4 to connection 0x19d81c8
(2024-11-26 19:51:07): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:07): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [] to [:1.4]
(2024-11-26 19:51:07): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.4
(2024-11-26 19:51:07): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.proxy_1
(2024-11-26 19:51:07): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.4: Success
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:07): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [] to [sssd.proxy_1]
(2024-11-26 19:51:07): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1
(2024-11-26 19:51:07): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.4: org.freedesktop.DBus.NameOwnerChanged
(2024-11-26 19:51:07): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1: Success
(2024-11-26 19:51:07): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.4: org.freedesktop.DBus.NameAcquired
(2024-11-26 19:51:07): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1: Success
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files
(2024-11-26 19:51:07): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:07): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_1
(2024-11-26 19:51:07): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_1: Success
(2024-11-26 19:51:09): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:09): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:09): [sssd] [sbus_dispatch_reconnect] (0x0400): Connection lost. Terminating active requests.
(2024-11-26 19:51:09): [sssd] [sbus_dispatch_reconnect] (0x4000): Remote client terminated the connection. Releasing data...
(2024-11-26 19:51:09): [sssd] [sbus_connection_free] (0x4000): Connection 0x19d81c8 will be freed during next loop!
(2024-11-26 19:51:09): [sssd] [sbus_connection_free_handler] (0x0400): Releasing connection 0x19d81c8
(2024-11-26 19:51:09): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:09): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:09): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:09): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:09): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [sssd.proxy_1] to []
(2024-11-26 19:51:09): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: sssd.proxy_1
(2024-11-26 19:51:09): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: sssd.proxy_1
(2024-11-26 19:51:09): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:09): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [:1.4] to []
(2024-11-26 19:51:09): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: :1.4
(2024-11-26 19:51:09): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: :1.4
(2024-11-26 19:51:09): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:13): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:13): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:13): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x19da680.
(2024-11-26 19:51:14): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 19:51:14): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 19:51:14): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 19:51:14): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 19:51:14): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 16
(2024-11-26 19:51:14): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-26 19:51:14): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x19d9010.
(2024-11-26 19:51:14): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 16
(2024-11-26 19:51:14): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 16
(2024-11-26 19:51:14): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-26 19:51:14): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 16
(2024-11-26 19:51:14): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 16
(2024-11-26 19:51:14): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 16
(2024-11-26 19:51:14): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-26 19:51:14): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 16
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-26 19:51:14): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.5 to connection 0x19d9010
(2024-11-26 19:51:14): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:14): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.5 has changed from [] to [:1.5]
(2024-11-26 19:51:14): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.5
(2024-11-26 19:51:14): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.proxy_2
(2024-11-26 19:51:14): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.5: Success
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:14): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_2 has changed from [] to [sssd.proxy_2]
(2024-11-26 19:51:14): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_2
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_2
(2024-11-26 19:51:14): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.5: org.freedesktop.DBus.NameOwnerChanged
(2024-11-26 19:51:14): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_2: Success
(2024-11-26 19:51:14): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.5: org.freedesktop.DBus.NameAcquired
(2024-11-26 19:51:14): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_2: Success
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files
(2024-11-26 19:51:14): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:14): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_2
(2024-11-26 19:51:14): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_2: Success
(2024-11-26 19:51:15): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:15): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:15): [sssd] [sbus_server_resend_message] (0x4000): Trying to send a message to an unknown destination: sssd.nss
(2024-11-26 19:51:15): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:15): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:15): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:15): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x19df190.
(2024-11-26 19:51:16): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 19:51:16): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 19:51:16): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 19:51:16): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 19:51:16): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 17
(2024-11-26 19:51:16): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 17
(2024-11-26 19:51:16): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x19d8348.
(2024-11-26 19:51:16): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 17
(2024-11-26 19:51:16): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 17
(2024-11-26 19:51:16): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 17
(2024-11-26 19:51:16): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 17
(2024-11-26 19:51:16): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 17
(2024-11-26 19:51:16): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 17
(2024-11-26 19:51:16): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 17
(2024-11-26 19:51:16): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 17
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-26 19:51:16): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.6 to connection 0x19d8348
(2024-11-26 19:51:16): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.6 has changed from [] to [:1.6]
(2024-11-26 19:51:16): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.6
(2024-11-26 19:51:16): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.proxy_3
(2024-11-26 19:51:16): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.6: Success
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_3 has changed from [] to [sssd.proxy_3]
(2024-11-26 19:51:16): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_3
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_3
(2024-11-26 19:51:16): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.6: org.freedesktop.DBus.NameOwnerChanged
(2024-11-26 19:51:16): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_3: Success
(2024-11-26 19:51:16): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.6: org.freedesktop.DBus.NameAcquired
(2024-11-26 19:51:16): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_3: Success
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files
(2024-11-26 19:51:16): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_3
(2024-11-26 19:51:16): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_3: Success
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_dispatch_reconnect] (0x0400): Connection lost. Terminating active requests.
(2024-11-26 19:51:16): [sssd] [sbus_dispatch_reconnect] (0x4000): Remote client terminated the connection. Releasing data...
(2024-11-26 19:51:16): [sssd] [sbus_connection_free] (0x4000): Connection 0x19d9010 will be freed during next loop!
(2024-11-26 19:51:16): [sssd] [sbus_connection_free_handler] (0x0400): Releasing connection 0x19d9010
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_2 has changed from [sssd.proxy_2] to []
(2024-11-26 19:51:16): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: sssd.proxy_2
(2024-11-26 19:51:16): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: sssd.proxy_2
(2024-11-26 19:51:16): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:16): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.5 has changed from [:1.5] to []
(2024-11-26 19:51:16): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: :1.5
(2024-11-26 19:51:16): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: :1.5
(2024-11-26 19:51:16): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:17): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:17): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:17): [sssd] [sbus_dispatch_reconnect] (0x0400): Connection lost. Terminating active requests.
(2024-11-26 19:51:17): [sssd] [sbus_dispatch_reconnect] (0x4000): Remote client terminated the connection. Releasing data...
(2024-11-26 19:51:17): [sssd] [sbus_connection_free] (0x4000): Connection 0x19d8348 will be freed during next loop!
(2024-11-26 19:51:17): [sssd] [sbus_connection_free_handler] (0x0400): Releasing connection 0x19d8348
(2024-11-26 19:51:17): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:17): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:17): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:17): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:17): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_3 has changed from [sssd.proxy_3] to []
(2024-11-26 19:51:17): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: sssd.proxy_3
(2024-11-26 19:51:17): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: sssd.proxy_3
(2024-11-26 19:51:17): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:17): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.6 has changed from [:1.6] to []
(2024-11-26 19:51:17): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: :1.6
(2024-11-26 19:51:17): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: :1.6
(2024-11-26 19:51:17): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_server_resend_message] (0x4000): Trying to send a message to an unknown destination: sssd.nss
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x19729a8.
(2024-11-26 19:51:32): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 19:51:32): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 19:51:32): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 19:51:32): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 19:51:32): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 16
(2024-11-26 19:51:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-26 19:51:32): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x19d6f20.
(2024-11-26 19:51:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 16
(2024-11-26 19:51:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 16
(2024-11-26 19:51:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-26 19:51:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 16
(2024-11-26 19:51:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 16
(2024-11-26 19:51:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 16
(2024-11-26 19:51:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-26 19:51:32): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 16
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-26 19:51:32): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.7 to connection 0x19d6f20
(2024-11-26 19:51:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:32): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.7 has changed from [] to [:1.7]
(2024-11-26 19:51:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.7
(2024-11-26 19:51:32): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.proxy_4
(2024-11-26 19:51:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.7: Success
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:32): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_4 has changed from [] to [sssd.proxy_4]
(2024-11-26 19:51:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_4
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_4
(2024-11-26 19:51:32): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.7: org.freedesktop.DBus.NameOwnerChanged
(2024-11-26 19:51:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_4: Success
(2024-11-26 19:51:32): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.7: org.freedesktop.DBus.NameAcquired
(2024-11-26 19:51:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_4: Success
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files
(2024-11-26 19:51:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:32): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_4
(2024-11-26 19:51:32): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_4: Success
(2024-11-26 19:51:34): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:34): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:34): [sssd] [sbus_dispatch_reconnect] (0x0400): Connection lost. Terminating active requests.
(2024-11-26 19:51:34): [sssd] [sbus_dispatch_reconnect] (0x4000): Remote client terminated the connection. Releasing data...
(2024-11-26 19:51:34): [sssd] [sbus_connection_free] (0x4000): Connection 0x19d6f20 will be freed during next loop!
(2024-11-26 19:51:34): [sssd] [sbus_connection_free_handler] (0x0400): Releasing connection 0x19d6f20
(2024-11-26 19:51:34): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:34): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:34): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:34): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:34): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_4 has changed from [sssd.proxy_4] to []
(2024-11-26 19:51:34): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: sssd.proxy_4
(2024-11-26 19:51:34): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: sssd.proxy_4
(2024-11-26 19:51:34): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:34): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.7 has changed from [:1.7] to []
(2024-11-26 19:51:34): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: :1.7
(2024-11-26 19:51:34): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: :1.7
(2024-11-26 19:51:34): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:52:15): [sssd] [monitor_quit_signal] (0x2000): Received shutdown command
(2024-11-26 19:52:15): [sssd] [monitor_quit_signal] (0x3f7c0): Monitor received Terminated: terminating children
(2024-11-26 19:52:15): [sssd] [monitor_quit] (0x3f7c0): Returned with: 0
(2024-11-26 19:52:15): [sssd] [monitor_quit] (0x3f7c0): Terminating [pam][3010]
(2024-11-26 19:52:15): [sssd] [monitor_quit] (0x3f7c0): Child [pam] terminated with a signal
(2024-11-26 19:52:15): [sssd] [monitor_quit] (0x3f7c0): Terminating [files][3009]
(2024-11-26 19:52:15): [sssd] [monitor_quit] (0x3f7c0): Child [files] exited gracefully

proxy_child_files.log

(2024-11-26 19:51:16): [proxy_child[files]] [server_loop] (0x3f7c0): [RID#1] Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective = *1*, permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-26 19:51:16): [proxy_child[files]] [server_loop] (0x0020): [RID#1] Non empty capabilities set!
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: :1.6
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: sssd.proxy_3
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_method_handler] (0x2000): [RID#1] Received D-Bus method sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:16): [proxy_child[files]] [proxy_cli_init_done] (0x0400): [RID#1] Got id ack from proxy child
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_senders_add] (0x2000): [RID#1] Inserting identity of sender [sssd.domain_files]: 964
(2024-11-26 19:51:16): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Got request with the following data
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] command: SSS_PAM_AUTHENTICATE
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] domain: files
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] user: <username>@files
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] service: imap
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] tty: 
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] ruser: 
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] rhost: ::ffff:192.168.178.2
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] authtok type: 1 (Password)
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] newauthtok type: 0 (No authentication token available)
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] priv: 0
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] cli_pid: 3054
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] child_pid: 0
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] logon name: not set
(2024-11-26 19:51:16): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] flags: 0
(2024-11-26 19:51:16): [proxy_child[files]] [call_pam_stack] (0x1000): [RID#1] Pam transaction started with service name [sssd-shadowutils].
(2024-11-26 19:51:16): [proxy_child[files]] [proxy_internal_conv] (0x0100): [RID#1] Conversation message: [Password: ]
(2024-11-26 19:51:16): [proxy_child[files]] [call_pam_stack] (0x0100): [RID#1] Pam result: [7][Authentication failure]
(2024-11-26 19:51:16): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Sending result [7][files]
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files: Success
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_name_owner_changed] (0x4000): [RID#1] Name of owner :1.6 has changed from [] to [:1.6]
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_name_owner_changed] (0x4000): [RID#1] Name of owner sssd.proxy_3 has changed from [] to [sssd.proxy_3]
(2024-11-26 19:51:16): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:17): [proxy_child[files]] [call_pam_stack] (0x0100): [RID#1] Pam result: [7][Authentication failure]
(2024-11-26 19:51:17): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Sending result [7][files]
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files: Success
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_name_owner_changed] (0x4000): [RID#1] Name of owner sssd.proxy_2 has changed from [sssd.proxy_2] to []
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_connection_terminate_member_requests] (0x0400): [RID#1] Terminating outgoing chained requests for: sssd.proxy_2
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_connection_terminate_member_requests] (0x0400): [RID#1] Terminating incoming chained requests from: sssd.proxy_2
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_name_owner_changed] (0x4000): [RID#1] Name of owner :1.5 has changed from [:1.5] to []
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_connection_terminate_member_requests] (0x0400): [RID#1] Terminating outgoing chained requests for: :1.5
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_connection_terminate_member_requests] (0x0400): [RID#1] Terminating incoming chained requests from: :1.5
(2024-11-26 19:51:17): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:32): [proxy_child[files]] [ldb] (0x0400): [RID#1] server_sort:Unable to register control with rootdse!
(2024-11-26 19:51:32): [proxy_child[files]] [server_setup] (0x3f7c0): [RID#1] Starting with debug level = 0x2f7f0
(2024-11-26 19:51:32): [proxy_child[files]] [server_setup] (0x0400): [RID#1] CONFDB: /var/lib/sss/db/config.ldb
(2024-11-26 19:51:32): [proxy_child[files]] [confdb_init_domain_provider_and_enum] (0x0400): [RID#1] No enumeration for [files]
(2024-11-26 19:51:32): [proxy_child[files]] [confdb_init_domain_pwd_expire] (0x1000): [RID#1] pwd_expiration_warning is -1
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_dbus_connect_address] (0x0400): [RID#1] Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.proxy_4
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_watch_add] (0x2000): [RID#1] Created a disabled -/W watch on 15
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_watch_toggle] (0x4000): [RID#1] Toggle to enabled R/- watch on 15
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface sssd.ProxyChild.Auth on path /sssd
(2024-11-26 19:51:32): [proxy_child[files]] [proxy_cli_init] (0x0400): [RID#1] Sending ID to Proxy Backend: (4)
(2024-11-26 19:51:32): [proxy_child[files]] [main] (0x3f7c0): [RID#1] Proxy child for domain [files] started!
(2024-11-26 19:51:32): [proxy_child[files]] [server_loop] (0x3f7c0): [RID#1] Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective = *1*, permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-26 19:51:32): [proxy_child[files]] [server_loop] (0x0020): [RID#1] Non empty capabilities set!
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: :1.7
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: sssd.proxy_4
(2024-11-26 19:51:32): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success

sssd_files.log

(2024-11-26 19:51:15): [be[files]] [dp_get_account_info_send] (0x0200): Got request for [0x3][BE_REQ_INITGROUPS][name=<username>@files]
(2024-11-26 19:51:15): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-26 19:51:15): [be[files]] [dp_attach_req] (0x0400): [RID#7] DP Request [Initgroups #7]: REQ_TRACE: New request. [sssd.pam CID #3] Flags [0x0001].
(2024-11-26 19:51:15): [be[files]] [dp_attach_req] (0x0400): [RID#7] Number of active DP request: 2
(2024-11-26 19:51:15): [be[files]] [sss_domain_get_state] (0x1000): [RID#7] Domain files is Active
(2024-11-26 19:51:15): [be[files]] [handle_getpw_result] (0x0400): [RID#7] User found: (<username>, 1001, 985)
(2024-11-26 19:51:15): [be[files]] [handle_getpw_result] (0x0400): [RID#7] User found: (<username>, 1001, 985)
(2024-11-26 19:51:15): [be[files]] [sysdb_set_entry_attr] (0x0200): [RID#7] Entry [name=<username>@files,cn=users,cn=files,cn=sysdb] has set [ts_cache] attrs.
(2024-11-26 19:51:15): [be[files]] [sysdb_store_user] (0x0400): [RID#7] User "<username>@files" has been stored
(2024-11-26 19:51:15): [be[files]] [get_initgr_groups_process] (0x0200): [RID#7] The initgroups call returned 'NOTFOUND'. Assume the user is only member of its primary group (985)
(2024-11-26 19:51:15): [be[files]] [get_initgr_groups_process] (0x0100): [RID#7] User [<username>] appears to be member of 1 groups
(2024-11-26 19:51:15): [be[files]] [sss_domain_get_state] (0x1000): [RID#7] Domain files is Active
(2024-11-26 19:51:15): [be[files]] [sss_domain_get_state] (0x1000): [RID#7] Domain files is Active
(2024-11-26 19:51:15): [be[files]] [get_gr_gid] (0x0400): [RID#7] Searching group by gid (985)
(2024-11-26 19:51:15): [be[files]] [handle_getgr_result] (0x0200): [RID#7] Group found: (users, 985)
(2024-11-26 19:51:15): [be[files]] [save_group] (0x1000): [RID#7] Group users has 1 members!
(2024-11-26 19:51:15): [be[files]] [sysdb_attrs_users_from_str_list] (0x4000): [RID#7] Adding 1 members to existing 0 ones
(2024-11-26 19:51:15): [be[files]] [sysdb_attrs_users_from_str_list] (0x1000): [RID#7]     member #0: [name=<username>@files,cn=users,cn=files,cn=sysdb]
(2024-11-26 19:51:15): [be[files]] [proxy_process_missing_users] (0x2000): [RID#7] Member [<username>@files] already cached
(2024-11-26 19:51:15): [be[files]] [sysdb_ldb_msg_difference] (0x2000): [RID#7] Added attr [member] to entry [name=users@files,cn=groups,cn=files,cn=sysdb]
(2024-11-26 19:51:15): [be[files]] [sysdb_set_entry_attr] (0x0200): [RID#7] Entry [name=users@files,cn=groups,cn=files,cn=sysdb] has set [cache, ts_cache] attrs.
(2024-11-26 19:51:15): [be[files]] [sysdb_store_group] (0x0400): [RID#7] Group "users@files" has been stored
(2024-11-26 19:51:15): [be[files]] [dp_req_done] (0x0400): [RID#7] DP Request [Initgroups #7]: Request handler finished [0]: Success
(2024-11-26 19:51:15): [be[files]] [dp_req_done] (0x20000): [RID#7] DP Request [Initgroups #7]: Handling request took [43.585] milliseconds.
(2024-11-26 19:51:15): [be[files]] [_dp_req_recv] (0x0400): [RID#7] DP Request [Initgroups #7]: Receiving request data.
(2024-11-26 19:51:15): [be[files]] [dp_req_destructor] (0x0400): [RID#7] DP Request [Initgroups #7]: Request removed.
(2024-11-26 19:51:15): [be[files]] [dp_req_destructor] (0x0400): [RID#7] Number of active DP request: 1
(2024-11-26 19:51:15): [be[files]] [sysdb_set_entry_attr] (0x0200): [RID#7] Entry [name=<username>@files,cn=users,cn=files,cn=sysdb] has set [ts_cache] attrs.
(2024-11-26 19:51:15): [be[files]] [dp_get_account_info_initgroups_resolv_done] (0x0400): [RID#7] Ordering NSS responder to update memory cache
(2024-11-26 19:51:15): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:15): [be[files]] [sbus_reply_check] (0x4000): D-Bus error [org.freedesktop.DBus.Error.ServiceUnknown]: sssd.nss
(2024-11-26 19:51:15): [be[files]] [dp_get_account_info_done] (0x0040): [RID#7] Error sending sbus message [1432158318]: Unknown service
(2024-11-26 19:51:15): [be[files]] [sbus_issue_request_done] (0x0040): sssd.dataprovider.getAccountInfo: Error [1432158318]: Unknown service
(2024-11-26 19:51:15): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:15): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-26 19:51:15): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-26 19:51:15): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_PREAUTH
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): authtok type: 0 (No authentication token available)
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): cli_pid: 3054
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-26 19:51:15): [be[files]] [dp_attach_req] (0x0400): [RID#8] DP Request [PAM Preauth #8]: REQ_TRACE: New request. [sssd.pam CID #3] Flags [0000].
(2024-11-26 19:51:15): [be[files]] [dp_attach_req] (0x0400): [RID#8] Number of active DP request: 2
(2024-11-26 19:51:15): [be[files]] [sss_domain_get_state] (0x1000): [RID#8] Domain files is Active
(2024-11-26 19:51:15): [be[files]] [proxy_pam_handler_send] (0x0020): [RID#8] Unsupported PAM task 249
(2024-11-26 19:51:15): [be[files]] [dp_req_done] (0x0400): [RID#8] DP Request [PAM Preauth #8]: Request handler finished [0]: Success
(2024-11-26 19:51:15): [be[files]] [dp_req_done] (0x20000): [RID#8] DP Request [PAM Preauth #8]: Handling request took [0.149] milliseconds.
(2024-11-26 19:51:15): [be[files]] [_dp_req_recv] (0x0400): [RID#8] DP Request [PAM Preauth #8]: Receiving request data.
(2024-11-26 19:51:15): [be[files]] [dp_req_destructor] (0x0400): [RID#8] DP Request [PAM Preauth #8]: Request removed.
(2024-11-26 19:51:15): [be[files]] [dp_req_destructor] (0x0400): [RID#8] Number of active DP request: 1
(2024-11-26 19:51:15): [be[files]] [dp_method_enabled] (0x0400): [RID#8] Target selinux is not configured
(2024-11-26 19:51:15): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-26 19:51:15): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:15): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-26 19:51:15): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-26 19:51:15): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): cli_pid: 3054
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-26 19:51:15): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-26 19:51:15): [be[files]] [dp_attach_req] (0x0400): [RID#9] DP Request [PAM Authenticate #9]: REQ_TRACE: New request. [sssd.pam CID #3] Flags [0000].
(2024-11-26 19:51:15): [be[files]] [dp_attach_req] (0x0400): [RID#9] Number of active DP request: 2
(2024-11-26 19:51:15): [be[files]] [sss_domain_get_state] (0x1000): [RID#9] Domain files is Active
(2024-11-26 19:51:15): [be[files]] [proxy_child_send] (0x2000): [RID#9] Queueing request [3]
(2024-11-26 19:51:15): [be[files]] [proxy_child_init_send] (0x1000): [RID#9] Starting proxy child with args [/usr/lib/sssd/sssd/proxy_child -d 0x2f7f0 --debug-timestamps=1 --debug-microseconds=0 --logger=files --domain files --id 3 --chain-id=1]
(2024-11-26 19:51:16): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.6 has changed from [] to [:1.6]
(2024-11-26 19:51:16): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:16): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_3 has changed from [] to [sssd.proxy_3]
(2024-11-26 19:51:16): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:16): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.ProxyChild.Client.Register on /sssd from sssd.proxy_3
(2024-11-26 19:51:16): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.proxy_3]
(2024-11-26 19:51:16): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.proxy_3]
(2024-11-26 19:51:16): [be[files]] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.proxy_3]: 964
(2024-11-26 19:51:16): [be[files]] [proxy_pam_conv_send] (0x0100): Sending request with the following data:
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): cli_pid: 3054
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-26 19:51:16): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-26 19:51:16): [be[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Client.Register on /sssd from sssd.proxy_3: Success
(2024-11-26 19:51:16): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [be[files]] [proxy_pam_conv_done] (0x0100): received: [7][files]
(2024-11-26 19:51:16): [be[files]] [proxy_child_destructor] (0x2000): Removing proxy child id [2]
(2024-11-26 19:51:16): [be[files]] [dp_req_done] (0x0400): DP Request [PAM Authenticate #6]: Request handler finished [0]: Success
(2024-11-26 19:51:16): [be[files]] [dp_req_done] (0x20000): DP Request [PAM Authenticate #6]: Handling request took [2345.433] milliseconds.
(2024-11-26 19:51:16): [be[files]] [_dp_req_recv] (0x0400): DP Request [PAM Authenticate #6]: Receiving request data.
(2024-11-26 19:51:16): [be[files]] [dp_req_destructor] (0x0400): DP Request [PAM Authenticate #6]: Request removed.
(2024-11-26 19:51:16): [be[files]] [dp_req_destructor] (0x0400): Number of active DP request: 1
(2024-11-26 19:51:16): [be[files]] [dp_method_enabled] (0x0400): Target selinux is not configured
(2024-11-26 19:51:16): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-26 19:51:16): [be[files]] [proxy_child_sig_handler] (0x1000): Waiting for child [3055].
(2024-11-26 19:51:16): [be[files]] [proxy_child_sig_handler] (0x0020): waitpid did not find a child with changed status.
(2024-11-26 19:51:16): [be[files]] [proxy_child_sig_handler] (0x1000): Waiting for child [3052].
(2024-11-26 19:51:16): [be[files]] [proxy_child_sig_handler] (0x0100): child [3052] was terminated by signal [9].
(2024-11-26 19:51:16): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:16): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:16): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_2 has changed from [sssd.proxy_2] to []
(2024-11-26 19:51:16): [be[files]] [sbus_senders_delete] (0x2000): Removing identity of sender [sssd.proxy_2]
(2024-11-26 19:51:16): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: sssd.proxy_2
(2024-11-26 19:51:16): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: sssd.proxy_2
(2024-11-26 19:51:16): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:16): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.5 has changed from [:1.5] to []
(2024-11-26 19:51:16): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: :1.5
(2024-11-26 19:51:16): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: :1.5
(2024-11-26 19:51:16): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:17): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:17): [be[files]] [proxy_pam_conv_done] (0x0100): received: [7][files]
(2024-11-26 19:51:17): [be[files]] [proxy_child_destructor] (0x2000): Removing proxy child id [3]
(2024-11-26 19:51:17): [be[files]] [dp_req_done] (0x0400): DP Request [PAM Authenticate #9]: Request handler finished [0]: Success
(2024-11-26 19:51:17): [be[files]] [dp_req_done] (0x20000): DP Request [PAM Authenticate #9]: Handling request took [1989.117] milliseconds.
(2024-11-26 19:51:17): [be[files]] [_dp_req_recv] (0x0400): DP Request [PAM Authenticate #9]: Receiving request data.
(2024-11-26 19:51:17): [be[files]] [dp_req_destructor] (0x0400): DP Request [PAM Authenticate #9]: Request removed.
(2024-11-26 19:51:17): [be[files]] [dp_req_destructor] (0x0400): Number of active DP request: 0
(2024-11-26 19:51:17): [be[files]] [dp_method_enabled] (0x0400): Target selinux is not configured
(2024-11-26 19:51:17): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-26 19:51:17): [be[files]] [proxy_child_sig_handler] (0x1000): Waiting for child [3055].
(2024-11-26 19:51:17): [be[files]] [proxy_child_sig_handler] (0x0100): child [3055] was terminated by signal [9].
(2024-11-26 19:51:17): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:17): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:17): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 19:51:17): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 19:51:17): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_3 has changed from [sssd.proxy_3] to []
(2024-11-26 19:51:17): [be[files]] [sbus_senders_delete] (0x2000): Removing identity of sender [sssd.proxy_3]
(2024-11-26 19:51:17): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: sssd.proxy_3
(2024-11-26 19:51:17): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: sssd.proxy_3
(2024-11-26 19:51:17): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 19:51:17): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.6 has changed from [:1.6] to []
(2024-11-26 19:51:17): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: :1.6
(2024-11-26 19:51:17): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: :1.6

sssd_pam.log

2024-11-26 19:50:32): [pam] [server_setup] (0x3f7c0): Starting with debug level = 0x0070
(2024-11-26 19:50:32): [pam] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective =  0 , permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-26 19:51:06): [pam] [cache_req_common_process_dp_reply] (0x3f7c0): [CID#1] CR #1: Could not get account info [1432158318]: Unknown service
(2024-11-26 19:51:15): [pam] [cache_req_common_process_dp_reply] (0x3f7c0): [CID#3] CR #6: Could not get account info [1432158318]: Unknown service
(2024-11-26 19:51:32): [pam] [cache_req_common_process_dp_reply] (0x3f7c0): [CID#4] CR #9: Could not get account info [1432158318]: Unknown service
(2024-11-26 19:52:15): [pam] [orderly_shutdown] (0x3f7c0): SIGTERM: killing children
(2024-11-26 19:52:15): [pam] [orderly_shutdown] (0x3f7c0): Shutting down (status = 0)

authdaemon delivers the same error as last time.

[alexey-tikhonov]

Could you please add 'inheritable' (i): setcap cap_dac_read_search=eip proxy_child ?

[hjheins]

yes I just did that.

new log; authdaemon:

Nov 26 20:22:34 Exynos.local imapd[3944]: LOGIN, user=<username>, ip=[<ip>], port=[<port>], protocol=IMAP
Nov 26 20:22:35 Exynos.local proxy_child[3955]: Starting up
Nov 26 20:22:35 Exynos.local proxy_child[3955]: pam_unix(sssd-shadowutils:auth): authentication failure; logname= uid=964 euid=964 tty= ruser= rhost=<ip>>
Nov 26 20:22:37 Exynos.local authdaemond[3954]: pam_sss(imap:auth): authentication failure; logname= uid=72 euid=72 tty= ruser= rhost=::ffff:54.91.253.149 user=<username>
Nov 26 20:22:37 Exynos.local authdaemond[3954]: pam_sss(imap:auth): received for user <username>: 7 (Authentication failure)

sssd_files.log:

(2024-11-26 20:22:04): [be[files]] [_snotify_create] (0x0400): Added a watch for /etc/resolv.conf with inotify flags 0x8D88 internal flags 0x1 using function watched_file_inotify_cb after delay 1.0
(2024-11-26 20:22:04): [be[files]] [watch_update_resolv] (0x0400): Reloading /etc/resolv.conf.
(2024-11-26 20:22:04): [be[files]] [recreate_ares_channel] (0x0100): Initializing new c-ares channel
(2024-11-26 20:22:04): [be[files]] [recreate_ares_channel] (0x0100): Destroying the old c-ares channel
(2024-11-26 20:22:04): [be[files]] [check_if_online] (0x2000): ID providers does not provide a check_online method.
(2024-11-26 20:22:04): [be[files]] [fo_reset_services] (0x1000): Resetting all servers in all services
(2024-11-26 20:22:04): [be[files]] [reactivate_subdoms] (0x1000): Resetting all subdomains
(2024-11-26 20:22:04): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-26 20:22:04): [be[files]] [netlink_watch] (0x1000): Netlink watching is enabled
(2024-11-26 20:22:04): [be[files]] [be_process_init] (0x0400): Backend provider (files) started!
(2024-11-26 20:22:04): [be[files]] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
(2024-11-26 20:22:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:04): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 20:22:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:04): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 20:22:04): [be[files]] [sbus_name_acquired] (0x0400): D-Bus name acquired: :1.2
(2024-11-26 20:22:04): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 20:22:04): [be[files]] [sbus_name_acquired] (0x0400): D-Bus name acquired: sssd.domain_files
(2024-11-26 20:22:04): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 20:22:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:04): [be[files]] [sss_monitor_register_service_done] (0x0100): Got id ack and version (1) from Monitor
(2024-11-26 20:22:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:04): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 20:22:04): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.3 has changed from [] to [:1.3]
(2024-11-26 20:22:04): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 20:22:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:04): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 20:22:04): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.pam has changed from [] to [sssd.pam]
(2024-11-26 20:22:04): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 20:22:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:04): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.getDomains on /sssd from sssd.pam
(2024-11-26 20:22:04): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-26 20:22:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:04): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-26 20:22:04): [be[files]] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.pam]: 964
(2024-11-26 20:22:04): [be[files]] [dp_attach_req] (0x0400): [RID#1] DP Request [Subdomains #1]: REQ_TRACE: New request. Flags [0000].
(2024-11-26 20:22:04): [be[files]] [dp_attach_req] (0x0400): [RID#1] Number of active DP request: 1
(2024-11-26 20:22:04): [be[files]] [dp_find_method] (0x0100): [RID#1] Target [subdomains] is not initialized
(2024-11-26 20:22:04): [be[files]] [_dp_req_recv] (0x0400): DP Request [Subdomains #1]: Receiving request data.
(2024-11-26 20:22:04): [be[files]] [dp_req_destructor] (0x0400): DP Request [Subdomains #1]: Request removed.
(2024-11-26 20:22:04): [be[files]] [dp_req_destructor] (0x0400): Number of active DP request: 0
(2024-11-26 20:22:04): [be[files]] [sbus_issue_request_done] (0x0200): sssd.dataprovider.getDomains: Error [1432158215]: DP target is not configured
(2024-11-26 20:22:32): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:32): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-26 20:22:32): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-26 20:22:32): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_PREAUTH
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): authtok type: 0 (No authentication token available)
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): cli_pid: 3950
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-26 20:22:32): [be[files]] [dp_attach_req] (0x0400): [RID#2] DP Request [PAM Preauth #2]: REQ_TRACE: New request. [sssd.pam CID #1] Flags [0000].
(2024-11-26 20:22:32): [be[files]] [dp_attach_req] (0x0400): [RID#2] Number of active DP request: 1
(2024-11-26 20:22:32): [be[files]] [sss_domain_get_state] (0x1000): [RID#2] Domain files is Active
(2024-11-26 20:22:32): [be[files]] [proxy_pam_handler_send] (0x0020): [RID#2] Unsupported PAM task 249
(2024-11-26 20:22:32): [be[files]] [dp_req_done] (0x0400): [RID#2] DP Request [PAM Preauth #2]: Request handler finished [0]: Success
(2024-11-26 20:22:32): [be[files]] [dp_req_done] (0x20000): [RID#2] DP Request [PAM Preauth #2]: Handling request took [0.117] milliseconds.
(2024-11-26 20:22:32): [be[files]] [_dp_req_recv] (0x0400): [RID#2] DP Request [PAM Preauth #2]: Receiving request data.
(2024-11-26 20:22:32): [be[files]] [dp_req_destructor] (0x0400): [RID#2] DP Request [PAM Preauth #2]: Request removed.
(2024-11-26 20:22:32): [be[files]] [dp_req_destructor] (0x0400): [RID#2] Number of active DP request: 0
(2024-11-26 20:22:32): [be[files]] [dp_method_enabled] (0x0400): [RID#2] Target selinux is not configured
(2024-11-26 20:22:32): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-26 20:22:32): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:32): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-26 20:22:32): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-26 20:22:32): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): cli_pid: 3950
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-26 20:22:32): [be[files]] [dp_attach_req] (0x0400): [RID#3] DP Request [PAM Authenticate #3]: REQ_TRACE: New request. [sssd.pam CID #1] Flags [0000].
(2024-11-26 20:22:32): [be[files]] [dp_attach_req] (0x0400): [RID#3] Number of active DP request: 1
(2024-11-26 20:22:32): [be[files]] [sss_domain_get_state] (0x1000): [RID#3] Domain files is Active
(2024-11-26 20:22:32): [be[files]] [proxy_child_send] (0x2000): [RID#3] Queueing request [1]
(2024-11-26 20:22:32): [be[files]] [proxy_child_init_send] (0x1000): [RID#3] Starting proxy child with args [/usr/lib/sssd/sssd/proxy_child -d 0x2f7f0 --debug-timestamps=1 --debug-microseconds=0 --logger=files --domain files --id 1 --chain-id=1]
(2024-11-26 20:22:32): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:32): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 20:22:32): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [] to [:1.4]
(2024-11-26 20:22:32): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 20:22:32): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:32): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 20:22:32): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [] to [sssd.proxy_1]
(2024-11-26 20:22:32): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 20:22:32): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:32): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.ProxyChild.Client.Register on /sssd from sssd.proxy_1
(2024-11-26 20:22:32): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.proxy_1]
(2024-11-26 20:22:32): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:32): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.proxy_1]
(2024-11-26 20:22:32): [be[files]] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.proxy_1]: 964
(2024-11-26 20:22:32): [be[files]] [proxy_pam_conv_send] (0x0100): Sending request with the following data:
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): cli_pid: 3950
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-26 20:22:32): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-26 20:22:32): [be[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Client.Register on /sssd from sssd.proxy_1: Success
(2024-11-26 20:22:34): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-26 20:22:34): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.getAccountInfo on /sssd from sssd.pam
(2024-11-26 20:22:34): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]

[alexey-tikhonov]

No 'proxy_child_files.log'?

[hjheins]

proxy_child_files.log:

(2024-11-26 20:22:32): [proxy_child[files]] [ldb] (0x0400): [RID#1] server_sort:Unable to register control with rootdse!
(2024-11-26 20:22:32): [proxy_child[files]] [server_setup] (0x3f7c0): [RID#1] Starting with debug level = 0x2f7f0
(2024-11-26 20:22:32): [proxy_child[files]] [server_setup] (0x0400): [RID#1] CONFDB: /var/lib/sss/db/config.ldb
(2024-11-26 20:22:32): [proxy_child[files]] [confdb_init_domain_provider_and_enum] (0x0400): [RID#1] No enumeration for [files]
(2024-11-26 20:22:32): [proxy_child[files]] [confdb_init_domain_pwd_expire] (0x1000): [RID#1] pwd_expiration_warning is -1
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_dbus_connect_address] (0x0400): [RID#1] Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.proxy_1
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_watch_add] (0x2000): [RID#1] Created a disabled -/W watch on 15
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_watch_toggle] (0x4000): [RID#1] Toggle to enabled R/- watch on 15
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface sssd.ProxyChild.Auth on path /sssd
(2024-11-26 20:22:32): [proxy_child[files]] [proxy_cli_init] (0x0400): [RID#1] Sending ID to Proxy Backend: (1)
(2024-11-26 20:22:32): [proxy_child[files]] [main] (0x3f7c0): [RID#1] Proxy child for domain [files] started!
(2024-11-26 20:22:32): [proxy_child[files]] [server_loop] (0x3f7c0): [RID#1] Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective = *1*, permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-26 20:22:32): [proxy_child[files]] [server_loop] (0x0020): [RID#1] Non empty capabilities set!
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: :1.4
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: sssd.proxy_1
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_method_handler] (0x2000): [RID#1] Received D-Bus method sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 20:22:32): [proxy_child[files]] [proxy_cli_init_done] (0x0400): [RID#1] Got id ack from proxy child
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-26 20:22:32): [proxy_child[files]] [sbus_senders_add] (0x2000): [RID#1] Inserting identity of sender [sssd.domain_files]: 964
(2024-11-26 20:22:32): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Got request with the following data
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] command: SSS_PAM_AUTHENTICATE
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] domain: files
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] user: <username>@files
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] service: imap
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] tty: 
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] ruser: 
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] rhost: ::ffff:192.168.178.2
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] authtok type: 1 (Password)
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] newauthtok type: 0 (No authentication token available)
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] priv: 0
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] cli_pid: 3950
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] child_pid: 0
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] logon name: not set
(2024-11-26 20:22:32): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] flags: 0
(2024-11-26 20:22:32): [proxy_child[files]] [call_pam_stack] (0x1000): [RID#1] Pam transaction started with service name [sssd-shadowutils].
(2024-11-26 20:22:32): [proxy_child[files]] [proxy_internal_conv] (0x0100): [RID#1] Conversation message: [Password: ]
(2024-11-26 20:22:34): [proxy_child[files]] [call_pam_stack] (0x0100): [RID#1] Pam result: [7][Authentication failure]
(2024-11-26 20:22:34): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Sending result [7][files]
(2024-11-26 20:22:34): [proxy_child[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files: Success

[alexey-tikhonov]

Huh...

Transformation of capabilities during execve()

           P'(ambient)     = (file is privileged) ? 0 : P(ambient)

           P'(permitted)   = (P(inheritable) & F(inheritable)) |
                             (F(permitted) & P(bounding)) | P'(ambient)

           P'(effective)   = F(effective) ? P'(permitted) : P'(ambient)

If I read this correctly:

• 'unix_chkpwd' doesn't have file capabilities, so P'(effective) = P'(ambient)
• P'(ambient) = 0 because "(file is privileged)"

Thus file capabilities of proxy_child do not matter...

@hjheins, I think as a test you can try to either:

(1) comment out SecureBits=noroot noroot-locked in 'sssd.service' and restart SSSD

or

(2) add setcap cap_dac_read_search=ep /usr/sbin/unix_chkpwd explicitly

[hjheins]

sssd.service:

[Unit]
Description=System Security Services Daemon
# SSSD must be running before we permit user sessions
Before=systemd-user-sessions.service nss-user-lookup.target
Wants=nss-user-lookup.target
StartLimitIntervalSec=50s
StartLimitBurst=5
ConditionPathExists=|/etc/sssd/sssd.conf
ConditionDirectoryNotEmpty=|/etc/sssd/conf.d/

[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-/etc/sysconfig/sssd
ExecStartPre=+-/bin/chown -f sssd:sssd /etc/sssd
ExecStartPre=+-/bin/chown -f sssd:sssd /etc/sssd/sssd.conf
ExecStartPre=+-/bin/chown -f -R sssd:sssd /etc/sssd/conf.d
ExecStartPre=+-/bin/chown -f -R sssd:sssd /etc/sssd/pki
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/lib/sss/db/*.ldb"
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/lib/sss/gpo_cache/*"
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/log/sssd/*.log"
ExecStart=/usr/bin/sssd -i ${DEBUG_LOGGER}
Type=notify
NotifyAccess=main
Restart=on-abnormal
CapabilityBoundingSet= CAP_CHOWN CAP_DAC_OVERRIDE CAP_SETGID CAP_SETUID CAP_DAC_READ_SEARCH 
SecureBits=noroot noroot-locked
User=sssd
Group=sssd
# If service configured to be run under "root", uncomment "SupplementaryGroups"
#SupplementaryGroups=sssd

[Install]
WantedBy=multi-user.target

^ sorry, which setting is this?

[alexey-tikhonov]

sssd.service:

[Unit]
Description=System Security Services Daemon
# SSSD must be running before we permit user sessions
Before=systemd-user-sessions.service nss-user-lookup.target
Wants=nss-user-lookup.target
StartLimitIntervalSec=50s
StartLimitBurst=5
ConditionPathExists=|/etc/sssd/sssd.conf
ConditionDirectoryNotEmpty=|/etc/sssd/conf.d/

[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-/etc/sysconfig/sssd
ExecStartPre=+-/bin/chown -f sssd:sssd /etc/sssd
ExecStartPre=+-/bin/chown -f sssd:sssd /etc/sssd/sssd.conf
ExecStartPre=+-/bin/chown -f -R sssd:sssd /etc/sssd/conf.d
ExecStartPre=+-/bin/chown -f -R sssd:sssd /etc/sssd/pki
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/lib/sss/db/*.ldb"
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/lib/sss/gpo_cache/*"
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/log/sssd/*.log"
ExecStart=/usr/bin/sssd -i ${DEBUG_LOGGER}
Type=notify
NotifyAccess=main
Restart=on-abnormal
CapabilityBoundingSet= CAP_CHOWN CAP_DAC_OVERRIDE CAP_SETGID CAP_SETUID CAP_DAC_READ_SEARCH 
SecureBits=noroot noroot-locked

this ^^

Don't forget to systemctl daemon-reload and systemctl restart sssd

...

^ sorry, which setting is this?

[hjheins]

imap auth log:

Nov 27 11:21:07 Exynos.local imapd[7568]: Connection, ip=[::ffff:192.168.178.2], port=[51756]
Nov 27 11:21:15 Exynos.local proxy_child[7967]: Starting up
Nov 27 11:21:15 Exynos.local proxy_child[7967]: pam_unix(sssd-shadowutils:auth): authentication failure; logname= uid=964 euid=964 tty= ruser= rhost=::ffff:192.168.178.2  user=<username>
Nov 27 11:21:17 Exynos.local authdaemond[7966]: pam_sss(imap:auth): authentication failure; logname= uid=72 euid=72 tty= ruser= rhost=::ffff:192.168.178.2 user=<username>
Nov 27 11:21:17 Exynos.local authdaemond[7966]: pam_sss(imap:auth): received for user <username>: 7 (Authentication failure)

proxy_child_files.log:

(2024-11-27 11:21:15): [proxy_child[files]] [ldb] (0x0400): [RID#1] server_sort:Unable to register control with rootdse!
(2024-11-27 11:21:15): [proxy_child[files]] [server_setup] (0x3f7c0): [RID#1] Starting with debug level = 0x2f7f0
(2024-11-27 11:21:15): [proxy_child[files]] [server_setup] (0x0400): [RID#1] CONFDB: /var/lib/sss/db/config.ldb
(2024-11-27 11:21:15): [proxy_child[files]] [confdb_init_domain_provider_and_enum] (0x0400): [RID#1] No enumeration for [files]
(2024-11-27 11:21:15): [proxy_child[files]] [confdb_init_domain_pwd_expire] (0x1000): [RID#1] pwd_expiration_warning is -1
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_dbus_connect_address] (0x0400): [RID#1] Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.proxy_1
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_watch_add] (0x2000): [RID#1] Created a disabled -/W watch on 15
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_watch_toggle] (0x4000): [RID#1] Toggle to enabled R/- watch on 15
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface sssd.ProxyChild.Auth on path /sssd
(2024-11-27 11:21:15): [proxy_child[files]] [proxy_cli_init] (0x0400): [RID#1] Sending ID to Proxy Backend: (1)
(2024-11-27 11:21:15): [proxy_child[files]] [main] (0x3f7c0): [RID#1] Proxy child for domain [files] started!
(2024-11-27 11:21:15): [proxy_child[files]] [server_loop] (0x3f7c0): [RID#1] Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective = *1*, permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-27 11:21:15): [proxy_child[files]] [server_loop] (0x0020): [RID#1] Non empty capabilities set!
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: :1.4
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: sssd.proxy_1
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_method_handler] (0x2000): [RID#1] Received D-Bus method sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 11:21:15): [proxy_child[files]] [proxy_cli_init_done] (0x0400): [RID#1] Got id ack from proxy child
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-27 11:21:15): [proxy_child[files]] [sbus_senders_add] (0x2000): [RID#1] Inserting identity of sender [sssd.domain_files]: 964
(2024-11-27 11:21:15): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Got request with the following data
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] command: SSS_PAM_AUTHENTICATE
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] domain: files
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] user: <username>@files
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] service: imap
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] tty: 
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] ruser: 
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] rhost: ::ffff:192.168.178.2
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] authtok type: 1 (Password)
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] newauthtok type: 0 (No authentication token available)
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] priv: 0
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] cli_pid: 7966
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] child_pid: 0
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] logon name: not set
(2024-11-27 11:21:15): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] flags: 0
(2024-11-27 11:21:15): [proxy_child[files]] [call_pam_stack] (0x1000): [RID#1] Pam transaction started with service name [sssd-shadowutils].
(2024-11-27 11:21:15): [proxy_child[files]] [proxy_internal_conv] (0x0100): [RID#1] Conversation message: [Password: ]
(2024-11-27 11:21:17): [proxy_child[files]] [call_pam_stack] (0x0100): [RID#1] Pam result: [7][Authentication failure]
(2024-11-27 11:21:17): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Sending result [7][files]
(2024-11-27 11:21:17): [proxy_child[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files: Success
(2024-11-27 11:21:34): [proxy_child[files]] [ldb] (0x0400): [RID#1] server_sort:Unable to register control with rootdse!
(2024-11-27 11:21:34): [proxy_child[files]] [server_setup] (0x3f7c0): [RID#1] Starting with debug level = 0x2f7f0
(2024-11-27 11:21:34): [proxy_child[files]] [server_setup] (0x0400): [RID#1] CONFDB: /var/lib/sss/db/config.ldb
(2024-11-27 11:21:34): [proxy_child[files]] [confdb_init_domain_provider_and_enum] (0x0400): [RID#1] No enumeration for [files]
(2024-11-27 11:21:34): [proxy_child[files]] [confdb_init_domain_pwd_expire] (0x1000): [RID#1] pwd_expiration_warning is -1
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_dbus_connect_address] (0x0400): [RID#1] Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.proxy_2
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_watch_add] (0x2000): [RID#1] Created a disabled -/W watch on 15
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_watch_toggle] (0x4000): [RID#1] Toggle to enabled R/- watch on 15
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface sssd.ProxyChild.Auth on path /sssd
(2024-11-27 11:21:34): [proxy_child[files]] [proxy_cli_init] (0x0400): [RID#1] Sending ID to Proxy Backend: (2)
(2024-11-27 11:21:34): [proxy_child[files]] [main] (0x3f7c0): [RID#1] Proxy child for domain [files] started!
(2024-11-27 11:21:34): [proxy_child[files]] [server_loop] (0x3f7c0): [RID#1] Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective = *1*, permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-27 11:21:34): [proxy_child[files]] [server_loop] (0x0020): [RID#1] Non empty capabilities set!
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: :1.5
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: sssd.proxy_2
(2024-11-27 11:21:34): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success

that's the only sssd log I have this time

[alexey-tikhonov]

So it is Pam result: [7][Authentication failure] in both cases?

I'll try to reproduce this locally, but it will take some time.

[hjheins]

Correct, that is the result in both cases

[alexey-tikhonov]

Huh... it doesn't even get to reading /etc/shadow:

execve("/usr/sbin/unix_chkpwd", ["/usr/sbin/unix_chkpwd", "test", "nullok"], 0x7f0ad9a5f010 /* 0 vars */) = 0
...
openat(AT_FDCWD, "/etc/passwd", O_RDONLY|O_CLOEXEC) = 3
fstat(3, {st_mode=S_IFREG|0644, st_size=3296, ...}) = 0
lseek(3, 0, SEEK_SET)                   = 0
read(3, "root:x:0:0:Super User:/root:/bin"..., 4096) = 3296
close(3)                                = 0
getuid()                                = 990
getgid()                                = 986
setgid(986)                             = 0
setuid(990)                             = 0
setgid(0)                               = -1 EPERM (Operation not permitted)
setuid(0)                               = 0
exit_group(7)                           = ?

[alexey-tikhonov]

@hjheins , commenting out

# SecureBits=noroot noroot-locked

in sssd.service works for me:

[proxy_child[files]] [call_pam_stack] (0x1000): [RID#6] Pam transaction started with service name [sssd-shadowutils].
[proxy_child[files]] [proxy_internal_conv] (0x0100): [RID#6] Conversation message: [Password: ]
[proxy_child[files]] [call_pam_stack] (0x0100): [RID#6] Pam result: [0][Success]
[proxy_child[files]] [pc_pam_handler] (0x0100): [RID#6] Sending result [0][files]
[proxy_child[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files: Success

[hjheins]

hmm, behaviour seems slightly different, but not there yet:

authdaemon log:

Nov 27 18:16:25 Exynos.local imapd[20028]: Connection, ip=[::ffff:192.168.178.2], port=[34322]
Nov 27 18:16:45 Exynos.local proxy_child[20034]: Starting up
Nov 27 18:16:45 Exynos.local kernel: warning: `/usr/bin/unix_chkpwd' has both setuid-root and effective capabilities. Therefore not raising all capabilities.
Nov 27 18:16:45 Exynos.local proxy_child[20034]: pam_unix(sssd-shadowutils:auth): authentication failure; logname= uid=964 euid=964 tty= ruser= rhost=::ffff:192.168>
Nov 27 18:16:46 Exynos.local authdaemond[20033]: pam_sss(imap:auth): authentication failure; logname= uid=72 euid=72 tty= ruser= rhost=::ffff:192.168.178.2 user=hjh>
Nov 27 18:16:46 Exynos.local authdaemond[20033]: pam_sss(imap:auth): received for user <username>: 7 (Authentication failure)

proxy_child_files.log:

(2024-11-27 18:16:45): [proxy_child[files]] [ldb] (0x0400): [RID#1] server_sort:Unable to register control with rootdse!
(2024-11-27 18:16:45): [proxy_child[files]] [server_setup] (0x3f7c0): [RID#1] Starting with debug level = 0x2f7f0
(2024-11-27 18:16:45): [proxy_child[files]] [server_setup] (0x0400): [RID#1] CONFDB: /var/lib/sss/db/config.ldb
(2024-11-27 18:16:45): [proxy_child[files]] [confdb_init_domain_provider_and_enum] (0x0400): [RID#1] No enumeration for [files]
(2024-11-27 18:16:45): [proxy_child[files]] [confdb_init_domain_pwd_expire] (0x1000): [RID#1] pwd_expiration_warning is -1
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_dbus_connect_address] (0x0400): [RID#1] Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.proxy_1
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_watch_add] (0x2000): [RID#1] Created a disabled -/W watch on 15
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_watch_toggle] (0x4000): [RID#1] Toggle to enabled R/- watch on 15
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface sssd.ProxyChild.Auth on path /sssd
(2024-11-27 18:16:45): [proxy_child[files]] [proxy_cli_init] (0x0400): [RID#1] Sending ID to Proxy Backend: (1)
(2024-11-27 18:16:45): [proxy_child[files]] [main] (0x3f7c0): [RID#1] Proxy child for domain [files] started!
(2024-11-27 18:16:45): [proxy_child[files]] [server_loop] (0x3f7c0): [RID#1] Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective = *1*, permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-27 18:16:45): [proxy_child[files]] [server_loop] (0x0020): [RID#1] Non empty capabilities set!
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: :1.4
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: sssd.proxy_1
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_method_handler] (0x2000): [RID#1] Received D-Bus method sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:16:45): [proxy_child[files]] [proxy_cli_init_done] (0x0400): [RID#1] Got id ack from proxy child
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-27 18:16:45): [proxy_child[files]] [sbus_senders_add] (0x2000): [RID#1] Inserting identity of sender [sssd.domain_files]: 964
(2024-11-27 18:16:45): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Got request with the following data
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] command: SSS_PAM_AUTHENTICATE
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] domain: files
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] user: <username>@files
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] service: imap
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] tty: 
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] ruser: 
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] rhost: ::ffff:192.168.178.2
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] authtok type: 1 (Password)
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] newauthtok type: 0 (No authentication token available)
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] priv: 0
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] cli_pid: 20033
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] child_pid: 0
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] logon name: not set
(2024-11-27 18:16:45): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] flags: 0
(2024-11-27 18:16:45): [proxy_child[files]] [call_pam_stack] (0x1000): [RID#1] Pam transaction started with service name [sssd-shadowutils].
(2024-11-27 18:16:45): [proxy_child[files]] [proxy_internal_conv] (0x0100): [RID#1] Conversation message: [Password: ]
(2024-11-27 18:16:46): [proxy_child[files]] [call_pam_stack] (0x0100): [RID#1] Pam result: [7][Authentication failure]
(2024-11-27 18:16:46): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Sending result [7][files]
(2024-11-27 18:16:46): [proxy_child[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files: Success

sssd_files.log:

(2024-11-27 18:16:10): [be[files]] [server_setup] (0x3f7c0): Starting with debug level = 0x2f7f0
(2024-11-27 18:16:10): [be[files]] [server_setup] (0x0400): CONFDB: /var/lib/sss/db/config.ldb
(2024-11-27 18:16:10): [be[files]] [dp_get_options] (0x0400): Option lookup_family_order has value ipv4_first
(2024-11-27 18:16:10): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_timeout has value 6
(2024-11-27 18:16:10): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_op_timeout has value 3
(2024-11-27 18:16:10): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_server_timeout has value 1000
(2024-11-27 18:16:10): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_use_search_list is TRUE
(2024-11-27 18:16:10): [be[files]] [dp_get_options] (0x0400): Option dns_discovery_domain has no value 
(2024-11-27 18:16:10): [be[files]] [dp_get_options] (0x0400): Option failover_primary_timeout has value 31
(2024-11-27 18:16:10): [be[files]] [be_res_get_opts] (0x0100): Lookup order: ipv4_first
(2024-11-27 18:16:10): [be[files]] [recreate_ares_channel] (0x0100): Initializing new c-ares channel
(2024-11-27 18:16:10): [be[files]] [fo_context_init] (0x0400): Created new fail over context, retry timeout is 30
(2024-11-27 18:16:10): [be[files]] [confdb_init_domain_provider_and_enum] (0x0400): No enumeration for [files]
(2024-11-27 18:16:10): [be[files]] [confdb_init_domain_pwd_expire] (0x1000): pwd_expiration_warning is -1
(2024-11-27 18:16:10): [be[files]] [sysdb_domain_init_internal] (0x0200): DB File for files: /var/lib/sss/db/cache_files.ldb
(2024-11-27 18:16:10): [be[files]] [sysdb_domain_init_internal] (0x0200): Timestamp file for files: /var/lib/sss/db/timestamps_files.ldb
(2024-11-27 18:16:10): [be[files]] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-27 18:16:10): [be[files]] [ldb] (0x0400): asq: Unable to register control with rootdse!
(2024-11-27 18:16:10): [be[files]] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-27 18:16:10): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-27 18:16:10): [be[files]] [sss_names_init_from_args] (0x0100): Using re [^((?P<name>.+)@(?P<domain>[^@]+)|(?P<name>[^@]+))$].
(2024-11-27 18:16:10): [be[files]] [sss_fqnames_init] (0x0100): Using fq format [%1$s@%2$s].
(2024-11-27 18:16:10): [be[files]] [sbus_dbus_connect_address] (0x0400): Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.domain_files
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:16:10): [be[files]] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 15
(2024-11-27 18:16:10): [be[files]] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-27 18:16:10): [be[files]] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-27 18:16:10): [be[files]] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [id]
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [auth]
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [permit] provider for [access]
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [chpass]
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [sudo]
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [autofs]
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [selinux]
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [hostid]
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [subdomains]
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [session]
(2024-11-27 18:16:10): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [resolver]
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [id] with module [proxy]
(2024-11-27 18:16:10): [be[files]] [dp_load_module] (0x0400): About to load module [proxy].
(2024-11-27 18:16:10): [be[files]] [dp_module_open_lib] (0x1000): Loading module [proxy] with path [/usr/lib/sssd/libsss_proxy.so]
(2024-11-27 18:16:10): [be[files]] [dp_module_run_constructor] (0x0400): Executing module [proxy] constructor.
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.ProxyChild.Client on path /sssd
(2024-11-27 18:16:10): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [id] constructor
(2024-11-27 18:16:10): [be[files]] [sysdb_merge_res_ts_attrs] (0x2000): TS cache doesn't handle this DN type, skipping
(2024-11-27 18:16:10): [be[files]] [sysdb_delete_recursive_with_filter] (0x4000): Found [1] items to delete.
(2024-11-27 18:16:10): [be[files]] [sysdb_delete_recursive_with_filter] (0x4000): Trying to delete [cn=certmap,cn=sysdb].
(2024-11-27 18:16:10): [be[files]] [sysdb_get_certmap] (0x0400): No certificate maps found.
(2024-11-27 18:16:10): [be[files]] [proxy_init_certmap] (0x4000): No certmap data, nothing to do.
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [auth] with module [proxy]
(2024-11-27 18:16:10): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:16:10): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [auth] constructor
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [access] with module [permit]
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [chpass] with module [proxy]
(2024-11-27 18:16:10): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:16:10): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [chpass] constructor
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [sudo] with module [proxy]
(2024-11-27 18:16:10): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0100): Target [sudo] is not supported by module [proxy].
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [autofs] with module [proxy]
(2024-11-27 18:16:10): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0100): Target [autofs] is not supported by module [proxy].
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [selinux] with module [proxy]
(2024-11-27 18:16:10): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0100): Target [selinux] is not supported by module [proxy].
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [hostid] with module [proxy]
(2024-11-27 18:16:10): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0100): Target [hostid] is not supported by module [proxy].
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [subdomains] with module [proxy]
(2024-11-27 18:16:10): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0100): Target [subdomains] is not supported by module [proxy].
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [session] with module [proxy]
(2024-11-27 18:16:10): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0100): Target [session] is not supported by module [proxy].
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0400): Initializing target [resolver] with module [proxy]
(2024-11-27 18:16:10): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:16:10): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [resolver] constructor
(2024-11-27 18:16:10): [be[files]] [proxy_resolver_conf] (0x0100): No resolver library name given
(2024-11-27 18:16:10): [be[files]] [dp_target_init] (0x0100): Target [resolver] is not supported by module [proxy].
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.Backend on path /sssd
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.Failover on path /sssd
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.AccessControl on path /sssd
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.dataprovider on path /sssd
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.Autofs on path /sssd
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.Responder.Domain on path /sssd
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.Responder.NegativeCache on path /sssd
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.nss.MemoryCache on path /sssd
(2024-11-27 18:16:10): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.service on path /sssd
(2024-11-27 18:16:10): [be[files]] [snotify_watch] (0x2000): Opened inotify fd 16
(2024-11-27 18:16:10): [be[files]] [snotify_watch] (0x2000): Opened file watch 1
(2024-11-27 18:16:10): [be[files]] [snotify_watch] (0x2000): Opened directory watch 2
(2024-11-27 18:16:10): [be[files]] [_snotify_create] (0x0400): Added a watch for /etc/resolv.conf with inotify flags 0x8D88 internal flags 0x1 using function watched_file_inotify_cb after delay 1.0
(2024-11-27 18:16:10): [be[files]] [watch_update_resolv] (0x0400): Reloading /etc/resolv.conf.
(2024-11-27 18:16:10): [be[files]] [recreate_ares_channel] (0x0100): Initializing new c-ares channel
(2024-11-27 18:16:10): [be[files]] [recreate_ares_channel] (0x0100): Destroying the old c-ares channel
(2024-11-27 18:16:10): [be[files]] [check_if_online] (0x2000): ID providers does not provide a check_online method.
(2024-11-27 18:16:10): [be[files]] [fo_reset_services] (0x1000): Resetting all servers in all services
(2024-11-27 18:16:10): [be[files]] [reactivate_subdoms] (0x1000): Resetting all subdomains
(2024-11-27 18:16:10): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-27 18:16:10): [be[files]] [netlink_watch] (0x1000): Netlink watching is enabled
(2024-11-27 18:16:10): [be[files]] [be_process_init] (0x0400): Backend provider (files) started!
(2024-11-27 18:16:10): [be[files]] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
(2024-11-27 18:16:10): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:10): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:10): [be[files]] [sbus_name_acquired] (0x0400): D-Bus name acquired: :1.2
(2024-11-27 18:16:10): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:10): [be[files]] [sbus_name_acquired] (0x0400): D-Bus name acquired: sssd.domain_files
(2024-11-27 18:16:10): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:10): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [be[files]] [sss_monitor_register_service_done] (0x0100): Got id ack and version (1) from Monitor
(2024-11-27 18:16:11): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:11): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.3 has changed from [] to [:1.3]
(2024-11-27 18:16:11): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:11): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:11): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.pam has changed from [] to [sssd.pam]
(2024-11-27 18:16:11): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:11): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.getDomains on /sssd from sssd.pam
(2024-11-27 18:16:11): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:16:11): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:16:11): [be[files]] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.pam]: 964
(2024-11-27 18:16:11): [be[files]] [dp_attach_req] (0x0400): [RID#1] DP Request [Subdomains #1]: REQ_TRACE: New request. Flags [0000].
(2024-11-27 18:16:11): [be[files]] [dp_attach_req] (0x0400): [RID#1] Number of active DP request: 1
(2024-11-27 18:16:11): [be[files]] [dp_find_method] (0x0100): [RID#1] Target [subdomains] is not initialized
(2024-11-27 18:16:11): [be[files]] [_dp_req_recv] (0x0400): DP Request [Subdomains #1]: Receiving request data.
(2024-11-27 18:16:11): [be[files]] [dp_req_destructor] (0x0400): DP Request [Subdomains #1]: Request removed.
(2024-11-27 18:16:11): [be[files]] [dp_req_destructor] (0x0400): Number of active DP request: 0
(2024-11-27 18:16:11): [be[files]] [sbus_issue_request_done] (0x0200): sssd.dataprovider.getDomains: Error [1432158215]: DP target is not configured
(2024-11-27 18:16:44): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:44): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.getAccountInfo on /sssd from sssd.pam
(2024-11-27 18:16:44): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:16:44): [be[files]] [dp_get_account_info_send] (0x0200): Got request for [0x3][BE_REQ_INITGROUPS][name=<username>@files]
(2024-11-27 18:16:44): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-27 18:16:44): [be[files]] [dp_attach_req] (0x0400): [RID#2] DP Request [Initgroups #2]: REQ_TRACE: New request. [sssd.pam CID #1] Flags [0x0001].
(2024-11-27 18:16:44): [be[files]] [dp_attach_req] (0x0400): [RID#2] Number of active DP request: 1
(2024-11-27 18:16:44): [be[files]] [sss_domain_get_state] (0x1000): [RID#2] Domain files is Active
(2024-11-27 18:16:44): [be[files]] [handle_getpw_result] (0x0400): [RID#2] User found: (<username>, 1001, 985)
(2024-11-27 18:16:44): [be[files]] [handle_getpw_result] (0x0400): [RID#2] User found: (<username>, 1001, 985)
(2024-11-27 18:16:44): [be[files]] [sysdb_set_entry_attr] (0x0200): [RID#2] Entry [name=<username>@files,cn=users,cn=files,cn=sysdb] has set [ts_cache] attrs.
(2024-11-27 18:16:44): [be[files]] [sysdb_store_user] (0x0400): [RID#2] User "<username>@files" has been stored
(2024-11-27 18:16:44): [be[files]] [get_initgr_groups_process] (0x0200): [RID#2] The initgroups call returned 'NOTFOUND'. Assume the user is only member of its primary group (985)
(2024-11-27 18:16:44): [be[files]] [get_initgr_groups_process] (0x0100): [RID#2] User [<username>] appears to be member of 1 groups
(2024-11-27 18:16:44): [be[files]] [sss_domain_get_state] (0x1000): [RID#2] Domain files is Active
(2024-11-27 18:16:44): [be[files]] [sss_domain_get_state] (0x1000): [RID#2] Domain files is Active
(2024-11-27 18:16:44): [be[files]] [get_gr_gid] (0x0400): [RID#2] Searching group by gid (985)
(2024-11-27 18:16:44): [be[files]] [handle_getgr_result] (0x0200): [RID#2] Group found: (users, 985)
(2024-11-27 18:16:44): [be[files]] [save_group] (0x1000): [RID#2] Group users has 1 members!
(2024-11-27 18:16:44): [be[files]] [sysdb_attrs_users_from_str_list] (0x4000): [RID#2] Adding 1 members to existing 0 ones
(2024-11-27 18:16:44): [be[files]] [sysdb_attrs_users_from_str_list] (0x1000): [RID#2]     member #0: [name=<username>@files,cn=users,cn=files,cn=sysdb]
(2024-11-27 18:16:44): [be[files]] [proxy_process_missing_users] (0x2000): [RID#2] Member [<username>@files] already cached
(2024-11-27 18:16:44): [be[files]] [sysdb_ldb_msg_difference] (0x2000): [RID#2] Added attr [member] to entry [name=users@files,cn=groups,cn=files,cn=sysdb]
(2024-11-27 18:16:44): [be[files]] [sysdb_set_entry_attr] (0x0200): [RID#2] Entry [name=users@files,cn=groups,cn=files,cn=sysdb] has set [cache, ts_cache] attrs.
(2024-11-27 18:16:44): [be[files]] [sysdb_store_group] (0x0400): [RID#2] Group "users@files" has been stored
(2024-11-27 18:16:44): [be[files]] [dp_req_done] (0x0400): [RID#2] DP Request [Initgroups #2]: Request handler finished [0]: Success
(2024-11-27 18:16:44): [be[files]] [dp_req_done] (0x20000): [RID#2] DP Request [Initgroups #2]: Handling request took [39.209] milliseconds.
(2024-11-27 18:16:44): [be[files]] [_dp_req_recv] (0x0400): [RID#2] DP Request [Initgroups #2]: Receiving request data.
(2024-11-27 18:16:44): [be[files]] [dp_req_destructor] (0x0400): [RID#2] DP Request [Initgroups #2]: Request removed.
(2024-11-27 18:16:44): [be[files]] [dp_req_destructor] (0x0400): [RID#2] Number of active DP request: 0
(2024-11-27 18:16:44): [be[files]] [sysdb_set_entry_attr] (0x0200): [RID#2] Entry [name=<username>@files,cn=users,cn=files,cn=sysdb] has set [ts_cache] attrs.
(2024-11-27 18:16:44): [be[files]] [dp_get_account_info_initgroups_resolv_done] (0x0400): [RID#2] Ordering NSS responder to update memory cache
(2024-11-27 18:16:44): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:44): [be[files]] [sbus_reply_check] (0x4000): D-Bus error [org.freedesktop.DBus.Error.ServiceUnknown]: sssd.nss
(2024-11-27 18:16:44): [be[files]] [dp_get_account_info_done] (0x0040): [RID#2] Error sending sbus message [1432158318]: Unknown service
(2024-11-27 18:16:44): [be[files]] [sbus_issue_request_done] (0x0040): sssd.dataprovider.getAccountInfo: Error [1432158318]: Unknown service
(2024-11-27 18:16:44): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:44): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-27 18:16:44): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:16:44): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_PREAUTH
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): authtok type: 0 (No authentication token available)
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): cli_pid: 20033
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-27 18:16:44): [be[files]] [dp_attach_req] (0x0400): [RID#3] DP Request [PAM Preauth #3]: REQ_TRACE: New request. [sssd.pam CID #1] Flags [0000].
(2024-11-27 18:16:44): [be[files]] [dp_attach_req] (0x0400): [RID#3] Number of active DP request: 1
(2024-11-27 18:16:44): [be[files]] [sss_domain_get_state] (0x1000): [RID#3] Domain files is Active
(2024-11-27 18:16:44): [be[files]] [proxy_pam_handler_send] (0x0020): [RID#3] Unsupported PAM task 249
(2024-11-27 18:16:44): [be[files]] [dp_req_done] (0x0400): [RID#3] DP Request [PAM Preauth #3]: Request handler finished [0]: Success
(2024-11-27 18:16:44): [be[files]] [dp_req_done] (0x20000): [RID#3] DP Request [PAM Preauth #3]: Handling request took [0.065] milliseconds.
(2024-11-27 18:16:44): [be[files]] [_dp_req_recv] (0x0400): [RID#3] DP Request [PAM Preauth #3]: Receiving request data.
(2024-11-27 18:16:44): [be[files]] [dp_req_destructor] (0x0400): [RID#3] DP Request [PAM Preauth #3]: Request removed.
(2024-11-27 18:16:44): [be[files]] [dp_req_destructor] (0x0400): [RID#3] Number of active DP request: 0
(2024-11-27 18:16:44): [be[files]] [dp_method_enabled] (0x0400): [RID#3] Target selinux is not configured
(2024-11-27 18:16:44): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-27 18:16:44): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:44): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-27 18:16:44): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:16:44): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): cli_pid: 20033
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-27 18:16:44): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-27 18:16:44): [be[files]] [dp_attach_req] (0x0400): [RID#4] DP Request [PAM Authenticate #4]: REQ_TRACE: New request. [sssd.pam CID #1] Flags [0000].
(2024-11-27 18:16:44): [be[files]] [dp_attach_req] (0x0400): [RID#4] Number of active DP request: 1
(2024-11-27 18:16:44): [be[files]] [sss_domain_get_state] (0x1000): [RID#4] Domain files is Active
(2024-11-27 18:16:44): [be[files]] [proxy_child_send] (0x2000): [RID#4] Queueing request [1]
(2024-11-27 18:16:44): [be[files]] [proxy_child_init_send] (0x1000): [RID#4] Starting proxy child with args [/usr/lib/sssd/sssd/proxy_child -d 0x2f7f0 --debug-timestamps=1 --debug-microseconds=0 --logger=files --domain files --id 1 --chain-id=1]
(2024-11-27 18:16:45): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:45): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [] to [:1.4]
(2024-11-27 18:16:45): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:45): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:45): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [] to [sssd.proxy_1]
(2024-11-27 18:16:45): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:45): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.ProxyChild.Client.Register on /sssd from sssd.proxy_1
(2024-11-27 18:16:45): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.proxy_1]
(2024-11-27 18:16:45): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.proxy_1]
(2024-11-27 18:16:45): [be[files]] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.proxy_1]: 964
(2024-11-27 18:16:45): [be[files]] [proxy_pam_conv_send] (0x0100): Sending request with the following data:
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): cli_pid: 20033
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-27 18:16:45): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-27 18:16:45): [be[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Client.Register on /sssd from sssd.proxy_1: Success
(2024-11-27 18:16:46): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:46): [be[files]] [proxy_pam_conv_done] (0x0100): received: [7][files]
(2024-11-27 18:16:46): [be[files]] [proxy_child_destructor] (0x2000): Removing proxy child id [1]
(2024-11-27 18:16:46): [be[files]] [dp_req_done] (0x0400): DP Request [PAM Authenticate #4]: Request handler finished [0]: Success
(2024-11-27 18:16:46): [be[files]] [dp_req_done] (0x20000): DP Request [PAM Authenticate #4]: Handling request took [1910.978] milliseconds.
(2024-11-27 18:16:46): [be[files]] [_dp_req_recv] (0x0400): DP Request [PAM Authenticate #4]: Receiving request data.
(2024-11-27 18:16:46): [be[files]] [dp_req_destructor] (0x0400): DP Request [PAM Authenticate #4]: Request removed.
(2024-11-27 18:16:46): [be[files]] [dp_req_destructor] (0x0400): Number of active DP request: 0
(2024-11-27 18:16:46): [be[files]] [dp_method_enabled] (0x0400): Target selinux is not configured
(2024-11-27 18:16:46): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-27 18:16:46): [be[files]] [proxy_child_sig_handler] (0x1000): Waiting for child [20034].
(2024-11-27 18:16:46): [be[files]] [proxy_child_sig_handler] (0x0100): child [20034] was terminated by signal [9].
(2024-11-27 18:16:46): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:46): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:46): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:46): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:46): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [sssd.proxy_1] to []
(2024-11-27 18:16:46): [be[files]] [sbus_senders_delete] (0x2000): Removing identity of sender [sssd.proxy_1]
(2024-11-27 18:16:46): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: sssd.proxy_1
(2024-11-27 18:16:46): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: sssd.proxy_1
(2024-11-27 18:16:46): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:46): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [:1.4] to []
(2024-11-27 18:16:46): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: :1.4
(2024-11-27 18:16:46): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: :1.4
(2024-11-27 18:16:46): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:17:42): [be[files]] [watch_ctx_destructor] (0x2000): Closing inotify fd 16
(2024-11-27 18:17:42): [be[files]] [dp_terminate_active_requests] (0x0400): Terminating active data provider requests
(2024-11-27 18:17:42): [be[files]] [orderly_shutdown] (0x3f7c0): SIGTERM: killing children
(2024-11-27 18:17:42): [be[files]] [orderly_shutdown] (0x3f7c0): Shutting down (status = 0)

sssd_pam.log:

(2024-11-27 18:16:11): [pam] [server_setup] (0x3f7c0): Starting with debug level = 0x0070
(2024-11-27 18:16:11): [pam] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective =  0 , permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-27 18:16:44): [pam] [cache_req_common_process_dp_reply] (0x3f7c0): [CID#1] CR #1: Could not get account info [1432158318]: Unknown service
(2024-11-27 18:17:42): [pam] [orderly_shutdown] (0x3f7c0): SIGTERM: killing children
(2024-11-27 18:17:42): [pam] [orderly_shutdown] (0x3f7c0): Shutting down (status = 0)

sssd.log:

(2024-11-27 18:16:11): [pam] [server_setup] (0x3f7c0): Starting with debug level = 0x0070
(2024-11-27 18:16:11): [pam] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective =  0 , permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-27 18:16:44): [pam] [cache_req_common_process_dp_reply] (0x3f7c0): [CID#1] CR #1: Could not get account info [1432158318]: Unknown service
(2024-11-27 18:17:42): [pam] [orderly_shutdown] (0x3f7c0): SIGTERM: killing children
(2024-11-27 18:17:42): [pam] [orderly_shutdown] (0x3f7c0): Shutting down (status = 0)
[root@Exynos sssd]# cat sssd.log 
[sssd] [main] (0x3f7c0): Started under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
[sssd] [check_file] (0x0400): lstat for '/run/sssd/sssd.pid' failed: [2][No such file or directory].
[sssd] [check_file] (0x0400): lstat for '/var/run/nscd/socket' failed: [2][No such file or directory].
[sssd] [confdb_populate] (0x0100): LDIF file to import: 
dn: cn=sssd,cn=config
cn: sssd
services: pam
domains: files
debug_level: 9

dn: cn=files,cn=domain,cn=config
cn: files
debug_level: 9
id_provider: proxy
proxy_lib_name: files
proxy_pam_target: sssd-shadowutils

[sssd] [ldb] (0x0400): server_sort:Unable to register control with rootdse!
(2024-11-27 18:16:10): [sssd] [server_setup] (0x3f7c0): Starting with debug level = 0x2f7f0
(2024-11-27 18:16:10): [sssd] [server_setup] (0x0400): CONFDB: /var/lib/sss/db/config.ldb
(2024-11-27 18:16:10): [sssd] [confdb_ensure_files_domain] (0x0100): The implicit files domain is disabled
(2024-11-27 18:16:10): [sssd] [confdb_expand_app_domains] (0x2000): files is not an app domain
(2024-11-27 18:16:10): [sssd] [confdb_init_domain_provider_and_enum] (0x0400): No enumeration for [files]
(2024-11-27 18:16:10): [sssd] [confdb_init_domain_pwd_expire] (0x1000): pwd_expiration_warning is -1
(2024-11-27 18:16:10): [sssd] [sss_names_init_from_args] (0x0100): Using re [^((?P<name>.+)@(?P<domain>[^@]+)|(?P<name>[^@]+))$].
(2024-11-27 18:16:10): [sssd] [sss_fqnames_init] (0x0100): Using fq format [%1$s@%2$s].
(2024-11-27 18:16:10): [sssd] [sysdb_domain_init_internal] (0x0200): DB File for files: /var/lib/sss/db/cache_files.ldb
(2024-11-27 18:16:10): [sssd] [sysdb_domain_init_internal] (0x0200): Timestamp file for files: /var/lib/sss/db/timestamps_files.ldb
(2024-11-27 18:16:10): [sssd] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-27 18:16:10): [sssd] [ldb] (0x0400): asq: Unable to register control with rootdse!
(2024-11-27 18:16:10): [sssd] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-27 18:16:10): [sssd] [sbus_server_socket_listen] (0x0400): D-BUS Server listening on unix:path=/var/lib/sss/pipes/private/sbus-master,guid=2cf3e6bf5c69696825fb17c5674761ea
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus on path /org/freedesktop/DBus
(2024-11-27 18:16:10): [sssd] [sbus_watch_add] (0x2000): Created a enabled R/- watch on 11
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:16:10): [sssd] [sbus_watch_add] (0x2000): Created a enabled -/W watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 12
(2024-11-27 18:16:10): [sssd] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
(2024-11-27 18:16:10): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x832970.
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:16:10): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 13
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 13
(2024-11-27 18:16:10): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x8b2320.
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 13
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 13
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 13
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 13
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 13
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 13
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 13
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 13
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 12
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-27 18:16:10): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.1 to connection 0x8b2320
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:10): [sssd] [sbus_signal_handler] (0x0200): We do not listen to this signal!
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.1
(2024-11-27 18:16:10): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.monitor
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.1: Success
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:10): [sssd] [sbus_signal_handler] (0x0200): We do not listen to this signal!
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-27 18:16:10): [sssd] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-27 18:16:10): [sssd] [sbus_connect_private_done] (0x0400): Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.monitor
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface sssd.monitor on path /sssd
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface sssd.service on path /sssd
(2024-11-27 18:16:10): [sssd] [get_provider_config] (0x0100): Formed command '/usr/lib/sssd/sssd/sssd_be --domain files --logger=files' for provider '%BE_files'
(2024-11-27 18:16:10): [sssd] [start_service] (0x0100): Queueing service files for startup
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor
(2024-11-27 18:16:10): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.1: org.freedesktop.DBus.NameOwnerChanged
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-27 18:16:10): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.1: org.freedesktop.DBus.NameAcquired
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x8c22c0.
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:16:10): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:16:10): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 14
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 14
(2024-11-27 18:16:10): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x836310.
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 14
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 14
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 14
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 14
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 14
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 14
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 14
(2024-11-27 18:16:10): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 14
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-27 18:16:10): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.2 to connection 0x836310
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:10): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.2 has changed from [] to [:1.2]
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.2
(2024-11-27 18:16:10): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.domain_files
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.2: Success
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:10): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.domain_files has changed from [] to [sssd.domain_files]
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files
(2024-11-27 18:16:10): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.2: org.freedesktop.DBus.NameOwnerChanged
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-27 18:16:10): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.2: org.freedesktop.DBus.NameAcquired
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method sssd.monitor.RegisterService on /sssd from sssd.domain_files
(2024-11-27 18:16:10): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.domain_files]
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:10): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.domain_files]
(2024-11-27 18:16:10): [sssd] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.domain_files]: 964
(2024-11-27 18:16:10): [sssd] [monitor_sbus_RegisterService] (0x0100): Received ID registration: (%BE_files,1)
(2024-11-27 18:16:10): [sssd] [mark_service_as_started] (0x0200): Marking files as started.
(2024-11-27 18:16:10): [sssd] [mark_service_as_started] (0x0100): Now starting services!
(2024-11-27 18:16:10): [sssd] [get_service_config] (0x0100): Formed command '/usr/lib/sssd/sssd/sssd_pam --logger=files' for service 'pam'
(2024-11-27 18:16:10): [sssd] [start_service] (0x0100): Queueing service pam for startup
(2024-11-27 18:16:10): [sssd] [sbus_issue_request_done] (0x0400): sssd.monitor.RegisterService on /sssd from sssd.domain_files: Success
(2024-11-27 18:16:10): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x8c62f0.
(2024-11-27 18:16:11): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:16:11): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:16:11): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:16:11): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:16:11): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 15
(2024-11-27 18:16:11): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-27 18:16:11): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x8c4fb8.
(2024-11-27 18:16:11): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 15
(2024-11-27 18:16:11): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 15
(2024-11-27 18:16:11): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-27 18:16:11): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 15
(2024-11-27 18:16:11): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 15
(2024-11-27 18:16:11): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 15
(2024-11-27 18:16:11): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-27 18:16:11): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 15
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-27 18:16:11): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.3 to connection 0x8c4fb8
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:11): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.3 has changed from [] to [:1.3]
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.3
(2024-11-27 18:16:11): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.pam
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.3: Success
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:11): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.pam has changed from [] to [sssd.pam]
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:16:11): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: org.freedesktop.DBus.NameOwnerChanged
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:16:11): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: org.freedesktop.DBus.NameAcquired
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:16:11): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.Domain.SetActive
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:16:11): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.Domain.SetInconsistent
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:16:11): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.NegativeCache.ResetUsers
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:16:11): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.NegativeCache.ResetGroups
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method sssd.monitor.RegisterService on /sssd from sssd.pam
(2024-11-27 18:16:11): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:16:11): [sssd] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.pam]: 964
(2024-11-27 18:16:11): [sssd] [monitor_sbus_RegisterService] (0x0100): Received ID registration: (pam,1)
(2024-11-27 18:16:11): [sssd] [mark_service_as_started] (0x0200): Marking pam as started.
(2024-11-27 18:16:11): [sssd] [mark_service_as_started] (0x0400): All services have successfully started, creating pid file
(2024-11-27 18:16:11): [sssd] [notify_startup] (0x0400): Sending startup notification to systemd
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): sssd.monitor.RegisterService on /sssd from sssd.pam: Success
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:11): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files
(2024-11-27 18:16:11): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-27 18:16:11): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:17): [sssd] [services_startup_timeout] (0x0400): Handling timeout
(2024-11-27 18:16:44): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:44): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:44): [sssd] [sbus_server_resend_message] (0x4000): Trying to send a message to an unknown destination: sssd.nss
(2024-11-27 18:16:44): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:44): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:44): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:44): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x8ca9b0.
(2024-11-27 18:16:45): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:16:45): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:16:45): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:16:45): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:16:45): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 16
(2024-11-27 18:16:45): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-27 18:16:45): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x8c96e8.
(2024-11-27 18:16:45): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 16
(2024-11-27 18:16:45): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 16
(2024-11-27 18:16:45): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-27 18:16:45): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 16
(2024-11-27 18:16:45): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 16
(2024-11-27 18:16:45): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 16
(2024-11-27 18:16:45): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-27 18:16:45): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 16
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-27 18:16:45): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.4 to connection 0x8c96e8
(2024-11-27 18:16:45): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:45): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [] to [:1.4]
(2024-11-27 18:16:45): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.4
(2024-11-27 18:16:45): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.proxy_1
(2024-11-27 18:16:45): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.4: Success
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:45): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [] to [sssd.proxy_1]
(2024-11-27 18:16:45): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1
(2024-11-27 18:16:45): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.4: org.freedesktop.DBus.NameOwnerChanged
(2024-11-27 18:16:45): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1: Success
(2024-11-27 18:16:45): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.4: org.freedesktop.DBus.NameAcquired
(2024-11-27 18:16:45): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1: Success
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files
(2024-11-27 18:16:45): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:45): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_1
(2024-11-27 18:16:45): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_1: Success
(2024-11-27 18:16:46): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:46): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:46): [sssd] [sbus_dispatch_reconnect] (0x0400): Connection lost. Terminating active requests.
(2024-11-27 18:16:46): [sssd] [sbus_dispatch_reconnect] (0x4000): Remote client terminated the connection. Releasing data...
(2024-11-27 18:16:46): [sssd] [sbus_connection_free] (0x4000): Connection 0x8c96e8 will be freed during next loop!
(2024-11-27 18:16:46): [sssd] [sbus_connection_free_handler] (0x0400): Releasing connection 0x8c96e8
(2024-11-27 18:16:46): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:46): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:46): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:16:46): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:16:46): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [sssd.proxy_1] to []
(2024-11-27 18:16:46): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: sssd.proxy_1
(2024-11-27 18:16:46): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: sssd.proxy_1
(2024-11-27 18:16:46): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:16:46): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [:1.4] to []
(2024-11-27 18:16:46): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: :1.4
(2024-11-27 18:16:46): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: :1.4
(2024-11-27 18:16:46): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:17:42): [sssd] [monitor_quit_signal] (0x2000): Received shutdown command
(2024-11-27 18:17:42): [sssd] [monitor_quit_signal] (0x3f7c0): Monitor received Terminated: terminating children
(2024-11-27 18:17:42): [sssd] [monitor_quit] (0x3f7c0): Returned with: 0
(2024-11-27 18:17:42): [sssd] [monitor_quit] (0x3f7c0): Terminating [pam][20015]
(2024-11-27 18:17:42): [sssd] [monitor_quit] (0x3f7c0): Child [pam] exited gracefully
(2024-11-27 18:17:42): [sssd] [monitor_quit] (0x3f7c0): Terminating [files][20014]
(2024-11-27 18:17:42): [sssd] [monitor_quit] (0x3f7c0): Child [files] exited gracefully

[alexey-tikhonov]

Setting

setcap cap_setuid,cap_setgid,cap_dac_read_search=ep /usr/sbin/unix_chkpwd

also works for me:

[proxy_child[files]] [call_pam_stack] (0x1000): [RID#6] Pam transaction started with service name [sssd-shadowutils].
[proxy_child[files]] [proxy_internal_conv] (0x0100): [RID#6] Conversation message: [Password: ]
[proxy_child[files]] [call_pam_stack] (0x0100): [RID#6] Pam result: [0][Success]
[proxy_child[files]] [pc_pam_handler] (0x0100): [RID#6] Sending result [0][files]
[proxy_child[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files: Success

[hjheins]

sooow, why do both don't work for me? would you please share your sssd.conf?

[alexey-tikhonov]

Your sssd.conf is fine. I guess You missed some steps, maybe systemctl daemon-reload or something.

[alexey-tikhonov]

With caps variant: take a note I had to set 3 caps, not 1:

cap_setuid,cap_setgid,cap_dac_read_search=ep

[alexey-tikhonov]

Actually in both cases I still see in the strace:

setuid(0)                               = -1 EPERM (Operation not permitted)

(not sure why) but it reads /etc/shadow:

openat(AT_FDCWD, "/etc/shadow", O_RDONLY|O_CLOEXEC) = 3
fstat(3, {st_mode=S_IFREG|040, st_size=1407, ...}) = 0
lseek(3, 0, SEEK_SET)                   = 0
read(3, "root:!::0:99999:7:::\nbin:*:19925"..., 4096) = 1407

and proxy_child succeeds:

[proxy_child[files]] [call_pam_stack] (0x1000): [RID#12] Pam transaction started with service name [sssd-shadowutils].
[proxy_child[files]] [proxy_internal_conv] (0x0100): [RID#12] Conversation message: [Password: ]
[proxy_child[files]] [call_pam_stack] (0x0100): [RID#12] Pam result: [0][Success]

[alexey-tikhonov]

JFTR: I'm testing a build from latest 'master' on Fedora 41. But it should be the same for any sssd-2.10 based package.

[hjheins]

OK, with the 3 cap, I get another error:

authdaemon log:

Nov 27 18:33:55 Exynos.local imapd[20580]: Connection, ip=[::ffff:192.168.178.2], port=[59482]
Nov 27 18:34:02 Exynos.local proxy_child[20586]: Starting up
Nov 27 18:34:02 Exynos.local unix_chkpwd[20587]: check pass; user unknown
Nov 27 18:34:02 Exynos.local unix_chkpwd[20587]: password check failed for user (<username>)
Nov 27 18:34:02 Exynos.local proxy_child[20586]: pam_unix(sssd-shadowutils:auth): authentication failure; logname= uid=964 euid=964 tty= ruser= rhost=::ffff:192.168>
Nov 27 18:34:04 Exynos.local authdaemond[20585]: pam_sss(imap:auth): authentication failure; logname= uid=72 euid=72 tty= ruser= rhost=::ffff:192.168.178.2 user=hjh>
Nov 27 18:34:04 Exynos.local authdaemond[20585]: pam_sss(imap:auth): received for user <username>: 9 (Authentication service cannot retrieve authentication info)

proxy_child_files.log:

(2024-11-27 18:34:02): [proxy_child[files]] [ldb] (0x0400): [RID#1] server_sort:Unable to register control with rootdse!
(2024-11-27 18:34:02): [proxy_child[files]] [server_setup] (0x3f7c0): [RID#1] Starting with debug level = 0x2f7f0
(2024-11-27 18:34:02): [proxy_child[files]] [server_setup] (0x0400): [RID#1] CONFDB: /var/lib/sss/db/config.ldb
(2024-11-27 18:34:02): [proxy_child[files]] [confdb_init_domain_provider_and_enum] (0x0400): [RID#1] No enumeration for [files]
(2024-11-27 18:34:02): [proxy_child[files]] [confdb_init_domain_pwd_expire] (0x1000): [RID#1] pwd_expiration_warning is -1
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_dbus_connect_address] (0x0400): [RID#1] Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.proxy_1
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_watch_add] (0x2000): [RID#1] Created a disabled -/W watch on 15
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_watch_toggle] (0x4000): [RID#1] Toggle to enabled R/- watch on 15
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_router_listen] (0x0400): [RID#1] Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_router_add_path] (0x0400): [RID#1] Registering interface sssd.ProxyChild.Auth on path /sssd
(2024-11-27 18:34:02): [proxy_child[files]] [proxy_cli_init] (0x0400): [RID#1] Sending ID to Proxy Backend: (1)
(2024-11-27 18:34:02): [proxy_child[files]] [main] (0x3f7c0): [RID#1] Proxy child for domain [files] started!
(2024-11-27 18:34:02): [proxy_child[files]] [server_loop] (0x3f7c0): [RID#1] Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective = *1*, permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-27 18:34:02): [proxy_child[files]] [server_loop] (0x0020): [RID#1] Non empty capabilities set!
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_signal_handler] (0x2000): [RID#1] Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: :1.4
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_name_acquired] (0x0400): [RID#1] D-Bus name acquired: sssd.proxy_1
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_method_handler] (0x2000): [RID#1] Received D-Bus method sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:34:02): [proxy_child[files]] [proxy_cli_init_done] (0x0400): [RID#1] Got id ack from proxy child
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_dispatch] (0x4000): [RID#1] Dispatching.
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_senders_lookup] (0x2000): [RID#1] Looking for identity of sender [sssd.domain_files]
(2024-11-27 18:34:02): [proxy_child[files]] [sbus_senders_add] (0x2000): [RID#1] Inserting identity of sender [sssd.domain_files]: 964
(2024-11-27 18:34:02): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Got request with the following data
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] command: SSS_PAM_AUTHENTICATE
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] domain: files
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] user: <username>@files
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] service: imap
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] tty: 
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] ruser: 
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] rhost: ::ffff:192.168.178.2
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] authtok type: 1 (Password)
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] newauthtok type: 0 (No authentication token available)
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] priv: 0
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] cli_pid: 20585
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] child_pid: 0
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] logon name: not set
(2024-11-27 18:34:02): [proxy_child[files]] [pam_print_data] (0x0100): [RID#1] flags: 0
(2024-11-27 18:34:02): [proxy_child[files]] [call_pam_stack] (0x1000): [RID#1] Pam transaction started with service name [sssd-shadowutils].
(2024-11-27 18:34:02): [proxy_child[files]] [proxy_internal_conv] (0x0100): [RID#1] Conversation message: [Password: ]
(2024-11-27 18:34:04): [proxy_child[files]] [call_pam_stack] (0x0100): [RID#1] Pam result: [9][Authentication service cannot retrieve authentication info]
(2024-11-27 18:34:04): [proxy_child[files]] [pc_pam_handler] (0x0100): [RID#1] Sending result [9][files]
(2024-11-27 18:34:04): [proxy_child[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Auth.PAM on /sssd from sssd.domain_files: Success

sssd_files.log:

(2024-11-27 18:33:30): [be[files]] [server_setup] (0x3f7c0): Starting with debug level = 0x2f7f0
(2024-11-27 18:33:30): [be[files]] [server_setup] (0x0400): CONFDB: /var/lib/sss/db/config.ldb
(2024-11-27 18:33:30): [be[files]] [dp_get_options] (0x0400): Option lookup_family_order has value ipv4_first
(2024-11-27 18:33:30): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_timeout has value 6
(2024-11-27 18:33:30): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_op_timeout has value 3
(2024-11-27 18:33:30): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_server_timeout has value 1000
(2024-11-27 18:33:30): [be[files]] [dp_get_options] (0x0400): Option dns_resolver_use_search_list is TRUE
(2024-11-27 18:33:30): [be[files]] [dp_get_options] (0x0400): Option dns_discovery_domain has no value 
(2024-11-27 18:33:30): [be[files]] [dp_get_options] (0x0400): Option failover_primary_timeout has value 31
(2024-11-27 18:33:30): [be[files]] [be_res_get_opts] (0x0100): Lookup order: ipv4_first
(2024-11-27 18:33:30): [be[files]] [recreate_ares_channel] (0x0100): Initializing new c-ares channel
(2024-11-27 18:33:30): [be[files]] [fo_context_init] (0x0400): Created new fail over context, retry timeout is 30
(2024-11-27 18:33:30): [be[files]] [confdb_init_domain_provider_and_enum] (0x0400): No enumeration for [files]
(2024-11-27 18:33:30): [be[files]] [confdb_init_domain_pwd_expire] (0x1000): pwd_expiration_warning is -1
(2024-11-27 18:33:30): [be[files]] [sysdb_domain_init_internal] (0x0200): DB File for files: /var/lib/sss/db/cache_files.ldb
(2024-11-27 18:33:30): [be[files]] [sysdb_domain_init_internal] (0x0200): Timestamp file for files: /var/lib/sss/db/timestamps_files.ldb
(2024-11-27 18:33:30): [be[files]] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-27 18:33:30): [be[files]] [ldb] (0x0400): asq: Unable to register control with rootdse!
(2024-11-27 18:33:30): [be[files]] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-27 18:33:30): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-27 18:33:30): [be[files]] [sss_names_init_from_args] (0x0100): Using re [^((?P<name>.+)@(?P<domain>[^@]+)|(?P<name>[^@]+))$].
(2024-11-27 18:33:30): [be[files]] [sss_fqnames_init] (0x0100): Using fq format [%1$s@%2$s].
(2024-11-27 18:33:30): [be[files]] [sbus_dbus_connect_address] (0x0400): Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.domain_files
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:33:30): [be[files]] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 15
(2024-11-27 18:33:30): [be[files]] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-27 18:33:30): [be[files]] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-27 18:33:30): [be[files]] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [id]
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [auth]
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [permit] provider for [access]
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [chpass]
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [sudo]
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [autofs]
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [selinux]
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [hostid]
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [subdomains]
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [session]
(2024-11-27 18:33:30): [be[files]] [dp_load_configuration] (0x0100): Using [proxy] provider for [resolver]
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [id] with module [proxy]
(2024-11-27 18:33:30): [be[files]] [dp_load_module] (0x0400): About to load module [proxy].
(2024-11-27 18:33:30): [be[files]] [dp_module_open_lib] (0x1000): Loading module [proxy] with path [/usr/lib/sssd/libsss_proxy.so]
(2024-11-27 18:33:30): [be[files]] [dp_module_run_constructor] (0x0400): Executing module [proxy] constructor.
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.ProxyChild.Client on path /sssd
(2024-11-27 18:33:30): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [id] constructor
(2024-11-27 18:33:30): [be[files]] [sysdb_merge_res_ts_attrs] (0x2000): TS cache doesn't handle this DN type, skipping
(2024-11-27 18:33:30): [be[files]] [sysdb_delete_recursive_with_filter] (0x4000): Found [1] items to delete.
(2024-11-27 18:33:30): [be[files]] [sysdb_delete_recursive_with_filter] (0x4000): Trying to delete [cn=certmap,cn=sysdb].
(2024-11-27 18:33:30): [be[files]] [sysdb_get_certmap] (0x0400): No certificate maps found.
(2024-11-27 18:33:30): [be[files]] [proxy_init_certmap] (0x4000): No certmap data, nothing to do.
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [auth] with module [proxy]
(2024-11-27 18:33:30): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:33:30): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [auth] constructor
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [access] with module [permit]
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [chpass] with module [proxy]
(2024-11-27 18:33:30): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:33:30): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [chpass] constructor
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [sudo] with module [proxy]
(2024-11-27 18:33:30): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0100): Target [sudo] is not supported by module [proxy].
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [autofs] with module [proxy]
(2024-11-27 18:33:30): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0100): Target [autofs] is not supported by module [proxy].
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [selinux] with module [proxy]
(2024-11-27 18:33:30): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0100): Target [selinux] is not supported by module [proxy].
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [hostid] with module [proxy]
(2024-11-27 18:33:30): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0100): Target [hostid] is not supported by module [proxy].
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [subdomains] with module [proxy]
(2024-11-27 18:33:30): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0100): Target [subdomains] is not supported by module [proxy].
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [session] with module [proxy]
(2024-11-27 18:33:30): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0100): Target [session] is not supported by module [proxy].
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0400): Initializing target [resolver] with module [proxy]
(2024-11-27 18:33:30): [be[files]] [dp_load_module] (0x0400): Module [proxy] is already loaded.
(2024-11-27 18:33:30): [be[files]] [dp_target_run_constructor] (0x0400): Executing target [resolver] constructor
(2024-11-27 18:33:30): [be[files]] [proxy_resolver_conf] (0x0100): No resolver library name given
(2024-11-27 18:33:30): [be[files]] [dp_target_init] (0x0100): Target [resolver] is not supported by module [proxy].
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.Backend on path /sssd
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.Failover on path /sssd
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.AccessControl on path /sssd
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.dataprovider on path /sssd
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.DataProvider.Autofs on path /sssd
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.Responder.Domain on path /sssd
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.Responder.NegativeCache on path /sssd
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.nss.MemoryCache on path /sssd
(2024-11-27 18:33:30): [be[files]] [sbus_router_add_path] (0x0400): Registering interface sssd.service on path /sssd
(2024-11-27 18:33:30): [be[files]] [snotify_watch] (0x2000): Opened inotify fd 16
(2024-11-27 18:33:30): [be[files]] [snotify_watch] (0x2000): Opened file watch 1
(2024-11-27 18:33:30): [be[files]] [snotify_watch] (0x2000): Opened directory watch 2
(2024-11-27 18:33:30): [be[files]] [_snotify_create] (0x0400): Added a watch for /etc/resolv.conf with inotify flags 0x8D88 internal flags 0x1 using function watched_file_inotify_cb after delay 1.0
(2024-11-27 18:33:30): [be[files]] [watch_update_resolv] (0x0400): Reloading /etc/resolv.conf.
(2024-11-27 18:33:30): [be[files]] [recreate_ares_channel] (0x0100): Initializing new c-ares channel
(2024-11-27 18:33:30): [be[files]] [recreate_ares_channel] (0x0100): Destroying the old c-ares channel
(2024-11-27 18:33:30): [be[files]] [check_if_online] (0x2000): ID providers does not provide a check_online method.
(2024-11-27 18:33:30): [be[files]] [fo_reset_services] (0x1000): Resetting all servers in all services
(2024-11-27 18:33:30): [be[files]] [reactivate_subdoms] (0x1000): Resetting all subdomains
(2024-11-27 18:33:30): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-27 18:33:30): [be[files]] [netlink_watch] (0x1000): Netlink watching is enabled
(2024-11-27 18:33:30): [be[files]] [be_process_init] (0x0400): Backend provider (files) started!
(2024-11-27 18:33:30): [be[files]] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
(2024-11-27 18:33:30): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:33:30): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:33:30): [be[files]] [sbus_name_acquired] (0x0400): D-Bus name acquired: :1.2
(2024-11-27 18:33:30): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:33:30): [be[files]] [sbus_name_acquired] (0x0400): D-Bus name acquired: sssd.domain_files
(2024-11-27 18:33:30): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:33:30): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [be[files]] [sss_monitor_register_service_done] (0x0100): Got id ack and version (1) from Monitor
(2024-11-27 18:33:31): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:33:31): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.3 has changed from [] to [:1.3]
(2024-11-27 18:33:31): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:33:31): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:33:31): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.pam has changed from [] to [sssd.pam]
(2024-11-27 18:33:31): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:33:31): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.getDomains on /sssd from sssd.pam
(2024-11-27 18:33:31): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:33:31): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:33:31): [be[files]] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.pam]: 964
(2024-11-27 18:33:31): [be[files]] [dp_attach_req] (0x0400): [RID#1] DP Request [Subdomains #1]: REQ_TRACE: New request. Flags [0000].
(2024-11-27 18:33:31): [be[files]] [dp_attach_req] (0x0400): [RID#1] Number of active DP request: 1
(2024-11-27 18:33:31): [be[files]] [dp_find_method] (0x0100): [RID#1] Target [subdomains] is not initialized
(2024-11-27 18:33:31): [be[files]] [_dp_req_recv] (0x0400): DP Request [Subdomains #1]: Receiving request data.
(2024-11-27 18:33:31): [be[files]] [dp_req_destructor] (0x0400): DP Request [Subdomains #1]: Request removed.
(2024-11-27 18:33:31): [be[files]] [dp_req_destructor] (0x0400): Number of active DP request: 0
(2024-11-27 18:33:31): [be[files]] [sbus_issue_request_done] (0x0200): sssd.dataprovider.getDomains: Error [1432158215]: DP target is not configured
(2024-11-27 18:34:01): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:01): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-27 18:34:01): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:34:01): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_PREAUTH
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): authtok type: 0 (No authentication token available)
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): cli_pid: 20585
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-27 18:34:01): [be[files]] [dp_attach_req] (0x0400): [RID#2] DP Request [PAM Preauth #2]: REQ_TRACE: New request. [sssd.pam CID #1] Flags [0000].
(2024-11-27 18:34:01): [be[files]] [dp_attach_req] (0x0400): [RID#2] Number of active DP request: 1
(2024-11-27 18:34:01): [be[files]] [sss_domain_get_state] (0x1000): [RID#2] Domain files is Active
(2024-11-27 18:34:01): [be[files]] [proxy_pam_handler_send] (0x0020): [RID#2] Unsupported PAM task 249
(2024-11-27 18:34:01): [be[files]] [dp_req_done] (0x0400): [RID#2] DP Request [PAM Preauth #2]: Request handler finished [0]: Success
(2024-11-27 18:34:01): [be[files]] [dp_req_done] (0x20000): [RID#2] DP Request [PAM Preauth #2]: Handling request took [0.121] milliseconds.
(2024-11-27 18:34:01): [be[files]] [_dp_req_recv] (0x0400): [RID#2] DP Request [PAM Preauth #2]: Receiving request data.
(2024-11-27 18:34:01): [be[files]] [dp_req_destructor] (0x0400): [RID#2] DP Request [PAM Preauth #2]: Request removed.
(2024-11-27 18:34:01): [be[files]] [dp_req_destructor] (0x0400): [RID#2] Number of active DP request: 0
(2024-11-27 18:34:01): [be[files]] [dp_method_enabled] (0x0400): [RID#2] Target selinux is not configured
(2024-11-27 18:34:01): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-27 18:34:01): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:01): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.dataprovider.pamHandler on /sssd from sssd.pam
(2024-11-27 18:34:01): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:34:01): [be[files]] [dp_pam_handler_send] (0x0100): Got request with the following data
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): cli_pid: 20585
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-27 18:34:01): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-27 18:34:01): [be[files]] [dp_attach_req] (0x0400): [RID#3] DP Request [PAM Authenticate #3]: REQ_TRACE: New request. [sssd.pam CID #1] Flags [0000].
(2024-11-27 18:34:01): [be[files]] [dp_attach_req] (0x0400): [RID#3] Number of active DP request: 1
(2024-11-27 18:34:01): [be[files]] [sss_domain_get_state] (0x1000): [RID#3] Domain files is Active
(2024-11-27 18:34:01): [be[files]] [proxy_child_send] (0x2000): [RID#3] Queueing request [1]
(2024-11-27 18:34:01): [be[files]] [proxy_child_init_send] (0x1000): [RID#3] Starting proxy child with args [/usr/lib/sssd/sssd/proxy_child -d 0x2f7f0 --debug-timestamps=1 --debug-microseconds=0 --logger=files --domain files --id 1 --chain-id=1]
(2024-11-27 18:34:02): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:34:02): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [] to [:1.4]
(2024-11-27 18:34:02): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:34:02): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:34:02): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [] to [sssd.proxy_1]
(2024-11-27 18:34:02): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:34:02): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [be[files]] [sbus_method_handler] (0x2000): Received D-Bus method sssd.ProxyChild.Client.Register on /sssd from sssd.proxy_1
(2024-11-27 18:34:02): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.proxy_1]
(2024-11-27 18:34:02): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [be[files]] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.proxy_1]
(2024-11-27 18:34:02): [be[files]] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.proxy_1]: 964
(2024-11-27 18:34:02): [be[files]] [proxy_pam_conv_send] (0x0100): Sending request with the following data:
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): domain: files
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): user: <username>@files
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): service: imap
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): tty: 
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): ruser: 
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): rhost: ::ffff:192.168.178.2
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): authtok type: 1 (Password)
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): newauthtok type: 0 (No authentication token available)
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): priv: 0
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): cli_pid: 20585
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): child_pid: 0
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): logon name: not set
(2024-11-27 18:34:02): [be[files]] [pam_print_data] (0x0100): flags: 0
(2024-11-27 18:34:02): [be[files]] [sbus_issue_request_done] (0x0400): sssd.ProxyChild.Client.Register on /sssd from sssd.proxy_1: Success
(2024-11-27 18:34:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:04): [be[files]] [proxy_pam_conv_done] (0x0100): received: [9][files]
(2024-11-27 18:34:04): [be[files]] [proxy_child_destructor] (0x2000): Removing proxy child id [1]
(2024-11-27 18:34:04): [be[files]] [dp_req_done] (0x0400): DP Request [PAM Authenticate #3]: Request handler finished [0]: Success
(2024-11-27 18:34:04): [be[files]] [dp_req_done] (0x20000): DP Request [PAM Authenticate #3]: Handling request took [2729.164] milliseconds.
(2024-11-27 18:34:04): [be[files]] [_dp_req_recv] (0x0400): DP Request [PAM Authenticate #3]: Receiving request data.
(2024-11-27 18:34:04): [be[files]] [dp_req_destructor] (0x0400): DP Request [PAM Authenticate #3]: Request removed.
(2024-11-27 18:34:04): [be[files]] [dp_req_destructor] (0x0400): Number of active DP request: 0
(2024-11-27 18:34:04): [be[files]] [dp_method_enabled] (0x0400): Target selinux is not configured
(2024-11-27 18:34:04): [be[files]] [sbus_issue_request_done] (0x0400): sssd.dataprovider.pamHandler on /sssd from sssd.pam: Success
(2024-11-27 18:34:04): [be[files]] [proxy_child_sig_handler] (0x1000): Waiting for child [20586].
(2024-11-27 18:34:04): [be[files]] [proxy_child_sig_handler] (0x0100): child [20586] was terminated by signal [9].
(2024-11-27 18:34:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:04): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:34:04): [be[files]] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:04): [be[files]] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:34:04): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [sssd.proxy_1] to []
(2024-11-27 18:34:04): [be[files]] [sbus_senders_delete] (0x2000): Removing identity of sender [sssd.proxy_1]
(2024-11-27 18:34:04): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: sssd.proxy_1
(2024-11-27 18:34:04): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: sssd.proxy_1
(2024-11-27 18:34:04): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:34:04): [be[files]] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [:1.4] to []
(2024-11-27 18:34:04): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: :1.4
(2024-11-27 18:34:04): [be[files]] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: :1.4
(2024-11-27 18:34:04): [be[files]] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:34:19): [be[files]] [message_type] (0x0200): netlink Message type: 20
(2024-11-27 18:34:19): [be[files]] [addr_msg_debug_print] (0x1000): netlink addr message: iface idx 2 addr 2a02:8071:6141:e2e0:30a0:e7ff:fe72:f94f flags 0x100 (mngtmpaddr)
(2024-11-27 18:34:19): [be[files]] [check_if_online] (0x2000): ID providers does not provide a check_online method.
(2024-11-27 18:34:19): [be[files]] [fo_reset_services] (0x1000): Resetting all servers in all services
(2024-11-27 18:34:19): [be[files]] [reactivate_subdoms] (0x1000): Resetting all subdomains
(2024-11-27 18:34:19): [be[files]] [sss_domain_get_state] (0x1000): Domain files is Active
(2024-11-27 18:34:53): [be[files]] [watch_ctx_destructor] (0x2000): Closing inotify fd 16
(2024-11-27 18:34:53): [be[files]] [dp_terminate_active_requests] (0x0400): Terminating active data provider requests
(2024-11-27 18:34:53): [be[files]] [orderly_shutdown] (0x3f7c0): SIGTERM: killing children
(2024-11-27 18:34:53): [be[files]] [orderly_shutdown] (0x3f7c0): Shutting down (status = 0)

sssd_pam.log:

(2024-11-27 18:33:31): [pam] [server_setup] (0x3f7c0): Starting with debug level = 0x0070
(2024-11-27 18:33:31): [pam] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
         CAP_DAC_READ_SEARCH: effective =  0 , permitted = *1*, inheritable =  0 , bounding = *1*
(2024-11-27 18:34:53): [pam] [orderly_shutdown] (0x3f7c0): SIGTERM: killing children
(2024-11-27 18:34:53): [pam] [orderly_shutdown] (0x3f7c0): Shutting down (status = 0)

sssd.log:

[sssd] [main] (0x3f7c0): Started under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
[sssd] [check_file] (0x0400): lstat for '/run/sssd/sssd.pid' failed: [2][No such file or directory].
[sssd] [check_file] (0x0400): lstat for '/var/run/nscd/socket' failed: [2][No such file or directory].
[sssd] [confdb_populate] (0x0100): LDIF file to import: 
dn: cn=sssd,cn=config
cn: sssd
services: pam
domains: files
debug_level: 9

dn: cn=files,cn=domain,cn=config
cn: files
debug_level: 9
id_provider: proxy
proxy_lib_name: files
proxy_pam_target: sssd-shadowutils

[sssd] [ldb] (0x0400): server_sort:Unable to register control with rootdse!
(2024-11-27 18:33:30): [sssd] [server_setup] (0x3f7c0): Starting with debug level = 0x2f7f0
(2024-11-27 18:33:30): [sssd] [server_setup] (0x0400): CONFDB: /var/lib/sss/db/config.ldb
(2024-11-27 18:33:30): [sssd] [confdb_ensure_files_domain] (0x0100): The implicit files domain is disabled
(2024-11-27 18:33:30): [sssd] [confdb_expand_app_domains] (0x2000): files is not an app domain
(2024-11-27 18:33:30): [sssd] [confdb_init_domain_provider_and_enum] (0x0400): No enumeration for [files]
(2024-11-27 18:33:30): [sssd] [confdb_init_domain_pwd_expire] (0x1000): pwd_expiration_warning is -1
(2024-11-27 18:33:30): [sssd] [sss_names_init_from_args] (0x0100): Using re [^((?P<name>.+)@(?P<domain>[^@]+)|(?P<name>[^@]+))$].
(2024-11-27 18:33:30): [sssd] [sss_fqnames_init] (0x0100): Using fq format [%1$s@%2$s].
(2024-11-27 18:33:30): [sssd] [sysdb_domain_init_internal] (0x0200): DB File for files: /var/lib/sss/db/cache_files.ldb
(2024-11-27 18:33:30): [sssd] [sysdb_domain_init_internal] (0x0200): Timestamp file for files: /var/lib/sss/db/timestamps_files.ldb
(2024-11-27 18:33:30): [sssd] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-27 18:33:30): [sssd] [ldb] (0x0400): asq: Unable to register control with rootdse!
(2024-11-27 18:33:30): [sssd] [sysdb_ldb_connect] (0x4000): No ldb module path set in env
(2024-11-27 18:33:30): [sssd] [sbus_server_socket_listen] (0x0400): D-BUS Server listening on unix:path=/var/lib/sss/pipes/private/sbus-master,guid=0a8076ccd42c8a36454099d4674765fa
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus on path /org/freedesktop/DBus
(2024-11-27 18:33:30): [sssd] [sbus_watch_add] (0x2000): Created a enabled R/- watch on 11
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:33:30): [sssd] [sbus_watch_add] (0x2000): Created a enabled -/W watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 12
(2024-11-27 18:33:30): [sssd] [server_loop] (0x3f7c0): Entering main loop under uid=964 (euid=964) : gid=964 (egid=964) with SECBIT_KEEP_CAPS = 0 and following capabilities:
   (nothing)
(2024-11-27 18:33:30): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x1e91970.
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:33:30): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 13
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 13
(2024-11-27 18:33:30): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x1f11320.
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 13
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 13
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 13
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 13
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 13
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 13
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 13
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 13
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 12
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-27 18:33:30): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.1 to connection 0x1f11320
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:33:30): [sssd] [sbus_signal_handler] (0x0200): We do not listen to this signal!
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.1
(2024-11-27 18:33:30): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.monitor
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.1: Success
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameAcquired on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:33:30): [sssd] [sbus_signal_handler] (0x0200): We do not listen to this signal!
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameOwnerChanged on path /org/freedesktop/DBus
(2024-11-27 18:33:30): [sssd] [sbus_router_listen] (0x0400): Registering signal listener org.freedesktop.DBus.NameAcquired on path /org/freedesktop/DBus
(2024-11-27 18:33:30): [sssd] [sbus_connect_private_done] (0x0400): Connected to unix:path=/var/lib/sss/pipes/private/sbus-master bus as sssd.monitor
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface sssd.monitor on path /sssd
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface sssd.service on path /sssd
(2024-11-27 18:33:30): [sssd] [get_provider_config] (0x0100): Formed command '/usr/lib/sssd/sssd/sssd_be --domain files --logger=files' for provider '%BE_files'
(2024-11-27 18:33:30): [sssd] [start_service] (0x0100): Queueing service files for startup
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor
(2024-11-27 18:33:30): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.1: org.freedesktop.DBus.NameOwnerChanged
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-27 18:33:30): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.1: org.freedesktop.DBus.NameAcquired
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x1f212c0.
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:33:30): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:33:30): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 14
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 14
(2024-11-27 18:33:30): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x1e95310.
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 14
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 14
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 14
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 14
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 14
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 14
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 14
(2024-11-27 18:33:30): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 14
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-27 18:33:30): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.2 to connection 0x1e95310
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:33:30): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.2 has changed from [] to [:1.2]
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.2
(2024-11-27 18:33:30): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.domain_files
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.2: Success
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:33:30): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.domain_files has changed from [] to [sssd.domain_files]
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files
(2024-11-27 18:33:30): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.2: org.freedesktop.DBus.NameOwnerChanged
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-27 18:33:30): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.2: org.freedesktop.DBus.NameAcquired
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method sssd.monitor.RegisterService on /sssd from sssd.domain_files
(2024-11-27 18:33:30): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.domain_files]
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:30): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.domain_files]
(2024-11-27 18:33:30): [sssd] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.domain_files]: 964
(2024-11-27 18:33:30): [sssd] [monitor_sbus_RegisterService] (0x0100): Received ID registration: (%BE_files,1)
(2024-11-27 18:33:30): [sssd] [mark_service_as_started] (0x0200): Marking files as started.
(2024-11-27 18:33:30): [sssd] [mark_service_as_started] (0x0100): Now starting services!
(2024-11-27 18:33:30): [sssd] [get_service_config] (0x0100): Formed command '/usr/lib/sssd/sssd/sssd_pam --logger=files' for service 'pam'
(2024-11-27 18:33:30): [sssd] [start_service] (0x0100): Queueing service pam for startup
(2024-11-27 18:33:30): [sssd] [sbus_issue_request_done] (0x0400): sssd.monitor.RegisterService on /sssd from sssd.domain_files: Success
(2024-11-27 18:33:30): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x1f25338.
(2024-11-27 18:33:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:33:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:33:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:33:31): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:33:31): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 15
(2024-11-27 18:33:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-27 18:33:31): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x1f23f60.
(2024-11-27 18:33:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 15
(2024-11-27 18:33:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 15
(2024-11-27 18:33:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-27 18:33:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 15
(2024-11-27 18:33:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 15
(2024-11-27 18:33:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 15
(2024-11-27 18:33:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 15
(2024-11-27 18:33:31): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 15
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-27 18:33:31): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.3 to connection 0x1f23f60
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:33:31): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.3 has changed from [] to [:1.3]
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.3
(2024-11-27 18:33:31): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.pam
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.3: Success
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:33:31): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.pam has changed from [] to [sssd.pam]
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:33:31): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: org.freedesktop.DBus.NameOwnerChanged
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:33:31): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: org.freedesktop.DBus.NameAcquired
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:33:31): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.Domain.SetActive
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam
(2024-11-27 18:33:31): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.Domain.SetInconsistent
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:33:31): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.NegativeCache.ResetUsers
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:33:31): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.3: sssd.Responder.NegativeCache.ResetGroups
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.pam: Success
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method sssd.monitor.RegisterService on /sssd from sssd.pam
(2024-11-27 18:33:31): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.monitor: Success
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_senders_lookup] (0x2000): Looking for identity of sender [sssd.pam]
(2024-11-27 18:33:31): [sssd] [sbus_senders_add] (0x2000): Inserting identity of sender [sssd.pam]: 964
(2024-11-27 18:33:31): [sssd] [monitor_sbus_RegisterService] (0x0100): Received ID registration: (pam,1)
(2024-11-27 18:33:31): [sssd] [mark_service_as_started] (0x0200): Marking pam as started.
(2024-11-27 18:33:31): [sssd] [mark_service_as_started] (0x0400): All services have successfully started, creating pid file
(2024-11-27 18:33:31): [sssd] [notify_startup] (0x0400): Sending startup notification to systemd
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): sssd.monitor.RegisterService on /sssd from sssd.pam: Success
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files
(2024-11-27 18:33:31): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:31): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:33:37): [sssd] [services_startup_timeout] (0x0400): Handling timeout
(2024-11-27 18:34:01): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:01): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:01): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_server_new_connection] (0x0200): New dbus connection 0x1f2a680.
(2024-11-27 18:34:02): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /
(2024-11-27 18:34:02): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Introspectable on path /*
(2024-11-27 18:34:02): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /
(2024-11-27 18:34:02): [sssd] [sbus_router_add_path] (0x0400): Registering interface org.freedesktop.DBus.Properties on path /*
(2024-11-27 18:34:02): [sssd] [sbus_watch_add] (0x2000): Created a disabled -/W watch on 16
(2024-11-27 18:34:02): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-27 18:34:02): [sssd] [sbus_server_new_connection] (0x0200): Adding sbus connection 0x1f281c8.
(2024-11-27 18:34:02): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 16
(2024-11-27 18:34:02): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 16
(2024-11-27 18:34:02): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-27 18:34:02): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 16
(2024-11-27 18:34:02): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled R/- watch on 16
(2024-11-27 18:34:02): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled -/W watch on 16
(2024-11-27 18:34:02): [sssd] [sbus_watch_toggle] (0x4000): Toggle to enabled R/- watch on 16
(2024-11-27 18:34:02): [sssd] [sbus_watch_toggle] (0x4000): Toggle to disabled -/W watch on 16
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet
(2024-11-27 18:34:02): [sssd] [sbus_server_bus_hello] (0x4000): Assigning unique name :1.4 to connection 0x1f281c8
(2024-11-27 18:34:02): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.Hello on /org/freedesktop/DBus from :not.active.yet: Success
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:34:02): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [] to [:1.4]
(2024-11-27 18:34:02): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.4
(2024-11-27 18:34:02): [sssd] [sbus_server_bus_request_name] (0x0400): Requesting name: sssd.proxy_1
(2024-11-27 18:34:02): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.RequestName on /org/freedesktop/DBus from :1.4: Success
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:34:02): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [] to [sssd.proxy_1]
(2024-11-27 18:34:02): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1
(2024-11-27 18:34:02): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.4: org.freedesktop.DBus.NameOwnerChanged
(2024-11-27 18:34:02): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1: Success
(2024-11-27 18:34:02): [sssd] [sbus_match_rule_add] (0x4000): Adding match rule for :1.4: org.freedesktop.DBus.NameAcquired
(2024-11-27 18:34:02): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.AddMatch on /org/freedesktop/DBus from sssd.proxy_1: Success
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files
(2024-11-27 18:34:02): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.domain_files: Success
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:02): [sssd] [sbus_method_handler] (0x2000): Received D-Bus method org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_1
(2024-11-27 18:34:02): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.GetConnectionUnixUser on /org/freedesktop/DBus from sssd.proxy_1: Success
(2024-11-27 18:34:04): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:04): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:04): [sssd] [sbus_dispatch_reconnect] (0x0400): Connection lost. Terminating active requests.
(2024-11-27 18:34:04): [sssd] [sbus_dispatch_reconnect] (0x4000): Remote client terminated the connection. Releasing data...
(2024-11-27 18:34:04): [sssd] [sbus_connection_free] (0x4000): Connection 0x1f281c8 will be freed during next loop!
(2024-11-27 18:34:04): [sssd] [sbus_connection_free_handler] (0x0400): Releasing connection 0x1f281c8
(2024-11-27 18:34:04): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:04): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:34:04): [sssd] [sbus_dispatch] (0x4000): Dispatching.
(2024-11-27 18:34:04): [sssd] [sbus_signal_handler] (0x2000): Received D-Bus signal org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus
(2024-11-27 18:34:04): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner sssd.proxy_1 has changed from [sssd.proxy_1] to []
(2024-11-27 18:34:04): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: sssd.proxy_1
(2024-11-27 18:34:04): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: sssd.proxy_1
(2024-11-27 18:34:04): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:34:04): [sssd] [sbus_name_owner_changed] (0x4000): Name of owner :1.4 has changed from [:1.4] to []
(2024-11-27 18:34:04): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating outgoing chained requests for: :1.4
(2024-11-27 18:34:04): [sssd] [sbus_connection_terminate_member_requests] (0x0400): Terminating incoming chained requests from: :1.4
(2024-11-27 18:34:04): [sssd] [sbus_issue_request_done] (0x0400): org.freedesktop.DBus.NameOwnerChanged on /org/freedesktop/DBus from org.freedesktop.DBus: Success
(2024-11-27 18:34:53): [sssd] [monitor_quit_signal] (0x2000): Received shutdown command
(2024-11-27 18:34:53): [sssd] [monitor_quit_signal] (0x3f7c0): Monitor received Terminated: terminating children
(2024-11-27 18:34:53): [sssd] [monitor_quit] (0x3f7c0): Returned with: 0
(2024-11-27 18:34:53): [sssd] [monitor_quit] (0x3f7c0): Terminating [pam][20554]
(2024-11-27 18:34:53): [sssd] [monitor_quit] (0x3f7c0): Child [pam] exited gracefully
(2024-11-27 18:34:53): [sssd] [monitor_quit] (0x3f7c0): Terminating [files][20553]
(2024-11-27 18:34:53): [sssd] [monitor_quit] (0x3f7c0): Child [files] exited gracefully

I am running: https://archlinux.org/packages/extra/x86_64/sssd/ which seems to be 2.10.5

[hjheins]

not sure what I would have missed?

my updated sssd.service:

[Unit]
Description=System Security Services Daemon
# SSSD must be running before we permit user sessions
Before=systemd-user-sessions.service nss-user-lookup.target
Wants=nss-user-lookup.target
StartLimitIntervalSec=50s
StartLimitBurst=5
ConditionPathExists=|/etc/sssd/sssd.conf
ConditionDirectoryNotEmpty=|/etc/sssd/conf.d/

[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-/etc/sysconfig/sssd
ExecStartPre=+-/bin/chown -f sssd:sssd /etc/sssd
ExecStartPre=+-/bin/chown -f sssd:sssd /etc/sssd/sssd.conf
ExecStartPre=+-/bin/chown -f -R sssd:sssd /etc/sssd/conf.d
ExecStartPre=+-/bin/chown -f -R sssd:sssd /etc/sssd/pki
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/lib/sss/db/*.ldb"
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/lib/sss/gpo_cache/*"
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/log/sssd/*.log"
ExecStart=/usr/bin/sssd -i ${DEBUG_LOGGER}
Type=notify
NotifyAccess=main
Restart=on-abnormal
CapabilityBoundingSet= CAP_CHOWN CAP_DAC_OVERRIDE CAP_SETGID CAP_SETUID CAP_DAC_READ_SEARCH 
#SecureBits=noroot noroot-locked
User=sssd
Group=sssd
# If service configured to be run under "root", uncomment "SupplementaryGroups"
#SupplementaryGroups=sssd

[Install]
WantedBy=multi-user.target

[alexey-tikhonov]

Is this output of systemctl cat sssd.service?

Arch packages SSSD a little bit different. For example: https://gitlab.archlinux.org/archlinux/packaging/packages/sssd/-/blob/main/sssd-perms.service?ref_type=heads I don't know how is this ^^ used, maybe there are other bits as well.

What I would do to debug this: attach using strace to sssd_be somehing like

strace -ff -o /tmp/strace -p pid_of_sssd_be

and then check strace logs.

[hjheins]

systemctl cat sssd.service:

# /usr/lib/systemd/system/sssd.service
[Unit]
Description=System Security Services Daemon
# SSSD must be running before we permit user sessions
Before=systemd-user-sessions.service nss-user-lookup.target
Wants=nss-user-lookup.target
StartLimitIntervalSec=50s
StartLimitBurst=5
ConditionPathExists=|/etc/sssd/sssd.conf
ConditionDirectoryNotEmpty=|/etc/sssd/conf.d/

[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-/etc/sysconfig/sssd
ExecStartPre=+-/bin/chown -f sssd:sssd /etc/sssd
ExecStartPre=+-/bin/chown -f sssd:sssd /etc/sssd/sssd.conf
ExecStartPre=+-/bin/chown -f -R sssd:sssd /etc/sssd/conf.d
ExecStartPre=+-/bin/chown -f -R sssd:sssd /etc/sssd/pki
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/lib/sss/db/*.ldb"
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/lib/sss/gpo_cache/*"
ExecStartPre=+-/bin/sh -c "/bin/chown -f sssd:sssd /var/log/sssd/*.log"
ExecStart=/usr/bin/sssd -i ${DEBUG_LOGGER}
Type=notify
NotifyAccess=main
Restart=on-abnormal
CapabilityBoundingSet= CAP_CHOWN CAP_DAC_OVERRIDE CAP_SETGID CAP_SETUID CAP_DAC_READ_SEARCH 
#SecureBits=noroot noroot-locked
User=sssd
Group=sssd
# If service configured to be run under "root", uncomment "SupplementaryGroups"
#SupplementaryGroups=sssd

[Install]
WantedBy=multi-user.target

# /usr/lib/systemd/system/sssd.service.d/10-perms.conf
[Service]
ExecStartPre=+-/usr/bin/chmod -R u+rw,o-rwx /etc/sssd
ExecStartPre=+-/usr/bin/chgrp sssd /usr/lib/sssd/sssd/krb5_child
ExecStartPre=+-/usr/bin/setcap cap_chown,cap_dac_override,cap_setuid,cap_setgid=ep /usr/lib/sssd/sssd/krb5_child

[alexey-tikhonov]

(I've deleted strace because it contained pam exchange)

If fails with

openat(AT_FDCWD, "/etc/shadow", O_RDONLY|O_CLOEXEC) = -1 EACCES (Permission denied)

What is the output of ls -lahZ /usr/bin/unix_chkpwd and getcap /usr/bin/unix_chkpwd?

But in general I'm running out of ideas.

[hjheins]

$ls -lahZ /usr/bin/unix_chkpwd -rwsr-sr-x 1 root root ? 30K Apr 11 2024 /usr/bin/unix_chkpwd

$getcap /usr/bin/unix_chkpwd /usr/bin/unix_chkpwd cap_dac_read_search,cap_setgid,cap_setuid=ep

thanks for deleting the strace :-) so basically I get no access to /etc/shadow?

[alexey-tikhonov]

so basically I get no access to /etc/shadow?

unix_chkpwd is a setuid binary, so normally it should run with elevated privileges even when executed by unprivileged user. But 'sssd.service' has SecureBits=noroot noroot-locked that prevents privileges elevation even by setuid binaries (see SECBIT_NOROOT of man capabilities).

If I remove 'SecureBits=noroot noroot-locked' from service file or set explicit cap_dac_read_search,cap_setgid,cap_setuid=ep for unix_chkpwd, then this use case works for me.

But I test on Fedora. Arch packaging seems to be different, I might be missing something. I don't know why it doesn't work for you.

Maybe @mtorromeo will have an idea.

[mtorromeo]

Hi @alexey-tikhonov , the way I packaged sssd on Arch is slightly different, just because the files in the package archive are owned by root and then systemd-sysusers and systemd-tmpfiles are used to create the sssd user and chown/chgrp some files and directories.

Changing the owner and group of the files resets their capability flags, which is why there's an additional drop-in file for sssd.service. This drop-in file has the purpose of re-applying the capability flags before the service starts. It should set the exact same flags as those specified in Fedora's spec package definition, unless I've made a mistake somewhere.

I'm happy to help if something needs to be changed in the package.

@hjheins if you need to change SecureBits in sssd.service I suggest you use systemctl edit sssd with this content:

[Service]
SecureBits=

[hjheins]

Hi @mtorromeo ,

i posted my service file for sssd 4 comments above yours; do you mean that that would not work? (with a systemctl daemon-reload of course)

[mtorromeo]

No, the way you modified it is fine.

It's just that you would lose the changes on every update of the sssd package and if in the end you need to permanently reset SecureBits then the way to do it is in a drop-in file, which is what systemctl edit helps you create.

I'm sorry, but I have no clue on what you actually need to change to make your use-case work.

[hjheins]

Ok, then let me ask another way: I would like to use sssd as a proxy for a service that runs as a different (non-root) user. How would I do that? Can you tell me/show me a sample application where it works? I' m asking because currently I am at a loss even how a working solution would look. thanks.

[sumit-bose]

Ok, then let me ask another way: I would like to use sssd as a proxy for a service that runs as a different (non-root) user. How would I do that? Can you tell me/show me a sample application where it works? I' m asking because currently I am at a loss even how a working solution would look. thanks.

Hi,

as mentioned before I'm still wondering why you want to use SSSD to authenticate a local user. Imo it should work if you use pam_unix.so in the PAM configuration of your service directly even if the service is not running as root. As discussed in this thread pam_unix.so will call unix_chkpwd which by default has the SUID bit set to read /etc/shadow. So your service does not need the permissions to access /etc/shadow and hence can run as unprivileged user.

bye, Sumit

[hjheins]

Hi Sumit,

I read this article: https://www.kilala.nl/index.php?id=2485 and understood from it that a local service that is not running as root, can not request PAM for authorisation. It explains that you need a proxy solution -> sssd

So I misunderstood?

[sumit-bose]

Hi,

thanks for the link, you are right. I got mislead by testing it wrongly. I only tried if a user can check its own password. And in fact this really makes sense because a user should not be able to check the password for other users this way.

So, when unix_chkpwd is called getuid() must return 0 to allow password checking for other users.

You still have the option to run SSSD completely as root by setting User, Group and SupplementaryGroups in sssd.service accordingly.

bye, Sumit

[hjheins]

Hi Sumit,

sooow, you are saying the settings for the Arch packages can never work? -> I have to run sssd as root (change service)? And if I run this as root, it should actually work?

[alexey-tikhonov]

@hjheins , what is the version of your 'pam' package?

[alexey-tikhonov]

@hjheins , what is the version of your 'pam' package?

Ok, this (almost) doesn't matter.

While 'unix_chkpwd.c' doesn't refuse to check password for provided user explicitly if getuid() != 0, it still drops all capabilities if real uid != 0:

• https://github.com/linux-pam/linux-pam/blob/master/modules/pam_unix/unix_chkpwd.c#L116
• https://github.com/linux-pam/linux-pam/commit/8e577fb4c55674260143a325c01f47d8dff712af

So it doesn't matter if we grant file capabilities to 'unix_chkpwd.c' or allow set-uid privileges elevation by removing "SecureBits=noroot" from sssd.service -- all capabilities are dropped immediately because real uid == sssd, and then 'unix_chkpwd.c' can't read /etc/shadow (as seen in your strace).

The only reason it worked for me, is because of:

# getfacl /etc/shadow
getfacl: Removing leading '/' from absolute path names
# file: etc/shadow
# owner: root
# group: sssd
user::---
group::r--
other::---

-- I really have no idea how this happened in this VM and sorry for confusion.

So the only way to make it work is indeed to configure sssd.service to run as User=root but note that you still need to comment out "SecureBits=noroot noroot-locked" even in this case (or add file caps to 'unix_chkpwd') because sssd_be[proxy] and proxy_child runs without any capabilities even when configured to run under 'root'.

[hjheins]

Thank you Alexey,

I will try it once more with those settings, and report back, Pam Version: 1.6

[hjheins]

wow.

it works. and it's responding even faster than running the same service directly from the courier-authdaemon as root to pam?!

to be complete, the authdaemon logs:

Nov 28 20:25:57 Exynos.local imapd[821]: Connection, ip=[::ffff:192.168.178.2], port=[43956]
Nov 28 20:26:04 Exynos.local authdaemond[827]: pam_warn(imap:auth): function=[pam_sm_authenticate] flags=0 service=[imap] terminal=[<unknown>] user=[<username>] ruser=>
Nov 28 20:26:04 Exynos.local imapd[821]: LOGIN, user=<username>, ip=[::ffff:192.168.178.2], port=[43956], protocol=IMAP

the modified systemd service for sssd:

[Unit]
Description=System Security Services Daemon
# SSSD must be running before we permit user sessions
Before=systemd-user-sessions.service nss-user-lookup.target
Wants=nss-user-lookup.target
StartLimitIntervalSec=50s
StartLimitBurst=5
ConditionPathExists=|/etc/sssd/sssd.conf
ConditionDirectoryNotEmpty=|/etc/sssd/conf.d/

[Service]
Environment=DEBUG_LOGGER=--logger=files
EnvironmentFile=-/etc/sysconfig/sssd
ExecStartPre=+-/bin/chown -f root:sssd /etc/sssd
ExecStartPre=+-/bin/chown -f root:sssd /etc/sssd/sssd.conf
ExecStartPre=+-/bin/chown -f -R root:sssd /etc/sssd/conf.d
ExecStartPre=+-/bin/chown -f -R root:sssd /etc/sssd/pki
ExecStartPre=+-/bin/sh -c "/bin/chown -f root:sssd /var/lib/sss/db/*.ldb"
ExecStartPre=+-/bin/sh -c "/bin/chown -f root:sssd /var/lib/sss/gpo_cache/*"
ExecStartPre=+-/bin/sh -c "/bin/chown -f root:sssd /var/log/sssd/*.log"
ExecStart=/usr/bin/sssd -i ${DEBUG_LOGGER}
Type=notify
NotifyAccess=main
Restart=on-abnormal
CapabilityBoundingSet= CAP_CHOWN CAP_DAC_OVERRIDE CAP_SETGID CAP_SETUID CAP_DAC_READ_SEARCH 
#SecureBits=noroot noroot-locked
User=root
Group=sssd
# If service configured to be run under "root", uncomment "SupplementaryGroups"
#SupplementaryGroups=sssd

[Install]
WantedBy=multi-user.target

also: it makes sense to have /var/lib/sssd also run as user root! (will work without it)

Thank you so much for your help! I will update the sssd wiki at Arch with this new found wisdom :-)