Hi List,
I am experiencing a strange error with sssd-1.11.6-30 on RHEL-6 machine it produces error:
(Wed Apr 29 12:05:02 2015) [sssd[be[default]]] [sdap_get_generic_ext_done] (0x0040): Unexpected result from ldap: Referral(10), 0000202B: RefErr: DSID-03100742, data 0, 1 access points
ref 1: 'ad.example.com'
(Wed Apr 29 12:05:02 2015) [sssd[be[default]]] [sdap_get_generic_done] (0x0100): sdap_get_generic_ext_recv failed [5]: Input/output error
(Wed Apr 29 12:05:02 2015) [sssd[be[default]]] [ad_subdomains_get_slave_domain_done] (0x0040): sdap_get_generic_send request failed.
And it also produces incomplete list of groups for user (via id –a)
Trying the same configuration on Centos-7 and sssd-1.12.2-58 is working just fine.
My configuration:
[sssd]
services = autofs, nss, pam
config_file_version = 2
debug_level = 5
domains = default
[nss]
[domain/default]
debug_level = 5
ldap_id_mapping = False
ad_domain = PRAGUE.AD.EXAMPLE.COM
id_provider = ad
auth_provider = ad
chpass_provider = ad
autofs_provider = ldap
cache_credentials = True
# ldap_sasl_authid = RH6HOST$@PRAGUE.AD.EXAMPLE.COM
dns_discovery_domain = prague.ad.example.com
krb5_realm = PRAGUE.AD.EXAMPLE.COM
krb5_canonicalize = False
# interval (in seconds) to renew Kerberos TGTs
krb5_renew_interval = 3600
# request renewable Kerberos tickets
krb5_renewable_lifetime = 30d
ldap_sasl_mech = GSSAPI
ldap_referrals = False
ldap_autofs_entry_key = cn
ldap_autofs_entry_object_class = nisObject
ldap_autofs_entry_value = nisMapEntry
ldap_autofs_map_name = nisMapName
ldap_autofs_map_object_class = nisMap
Is there something wrong with my setup or the sssd is broken in RH-6?
Please advise.
Thanks,
Ondrej