On Thu, Apr 21, 2022 at 9:16 AM David Wittwer <dw.fedproj(a)planet9.ch> wrote:
I've got a problem with step #3: How can I force SSSD to renew
the
cached password of the user as soon as the LDAP server becomes
available? (As mentioned, the VPN connection is activated *after*
the user logs in.)
Something needs to trigger an authentication attempt while sssd is in
online mode. For example, locking and then unlocking the screen would
do it.
It might be possible to automate locking the screen, as part of a
post-VPN-up hook script…