As it happens my paranoia seems to be on message.

 

We have just deployed 4 new sles 12 systems, with the following config:

id_provider = ad

auth_provider = ad

subdomains_provider = none

access_provider = ad

enumerate = false

cache_credentials = true

These systems were deployed without ldap_idmap_default_domain_sid or  ldap_idmap_default_domain.

 

And the range they have started using is different to the range that exists on other deployed systems.

 

It appears that sssd has returned a different range from that which exists on our other systems.

 

I would apreciate advice on how to configure a range that will be uniform from the start.

 

Thanks for your help in advance.

 

Craig Silva

_________

Craig Silva | Specialist Engineer – Unix Services – Servers, Storage and IDAM
Cenitex | Level 15, 80 Collins Street, Melbourne 3000

ph: 03-8688-1297 mob: 0429 365 609 | www.cenitex.vic.gov.au

This office is located on the land of the Traditional Owners of the Kulin Nation.

 

cenitex logo          cid:image004.jpg@01D36DDE.27450B80  cid:image006.jpg@01D36DDE.27450B80  cid:image010.jpg@01D36DDE.27450B80

Accountability, Collaboration, Respect, Initiative and Courage

 

 


Notice:

This email and any attachments may contain information that is personal,
confidential, legally privileged and/or copyright. No part of it should be
reproduced, adapted or communicated without the prior written consent of the
copyright owner.

It is the responsibility of the recipient to check for and remove viruses.

If you have received this email in error, please notify the sender by return
email, delete it from your system and destroy any copies. You are not authorised
to use, communicate or rely on the information contained in this email.

Please consider the environment before printing this email.