Hi,
I have a fresh install of Saucy (VM in Virtualbox), sssd is installed as binary package
available in distribution.
To be sure, I uninstalled sssd and installed it again.
To be sure that sssd.conf works, I started sssd in 13.04-Raring with the copy of sssd.conf
from Saucy;
One of domains is not tested yet (
su.c.example.com);
sssd works for other domains in Raring
Both machines are in the same network.
Output from:
ldbsearch -H /var/lib/sss/db/config.ldb > txt.txt
# record 1
dn: cn=sssd,cn=config
cn: sssd
config_file_version: 2
debug_level: 9
domains:
su.c.example.com,
st.example.com,
n.c.example.com,
a.c.example.com
reconnection_retries: 3
sbus_timeout: 30
services: nss, pam
distinguishedName: cn=sssd,cn=config
# record 2
dn: cn=config
version: 2
lastUpdate: 1379420119
distinguishedName: cn=config
# record 3
dn: cn=nss,cn=config
cn: nss
debug_level: 9
default_shell: /bin/bash
filter_groups: root
filter_users:
root,lightdm,ldap,named,avahi,haldaemon,dbus,radvd,tomcat,radiusd,news,mailman,nscd
reconnection_retries: 3
distinguishedName: cn=nss,cn=config
# record 4
dn: cn=a.c.example.com,cn=domain,cn=config
access_provider: ad
auth_provider: ad
cache_credentials: true
chpass_provider: ad
cn:
a.c.example.com
debug_level: 9
dns_discovery_domain:
a.c.example.com
enumerate: false
id_provider: ad
krb5_realm:
EXAMPLE.COM
ldap_access_order: expire
ldap_account_expire_policy: ad
ldap_force_upper_case_realm: true
ldap_group_name: sAMAccountName
ldap_group_object_class: group
ldap_group_search_base: dc=a,dc=c,dc=example,dc=com # record 5
dn: cn=n.c.example.com,cn=domain,cn=config
access_provider: ad
auth_provider: ad
cache_credentials: true
chpass_provider: ad
cn:
n.c.example.com
debug_level: 9
dns_discovery_domain:
n.c.example.com
enumerate: false
id_provider: ad
krb5_realm:
N.C.EXAMPLE.COM
ldap_access_order: expire
ldap_account_expire_policy: ad
ldap_force_upper_case_realm: true
ldap_group_name: sAMAccountName
ldap_group_object_class: group
ldap_group_search_base: dc=n,dc=c,dc=example,dc=com
ldap_schema: rfc2307bis
ldap_user_fullname: displayName
ldap_user_name: sAMAccountName
ldap_user_object_class: user
ldap_user_principal: userPrincipalName
ldap_user_search_base: dc=n,dc=c,dc=example,dc=com
override_homedir: /home/%u
distinguishedName: cn=n.c.example.com,cn=domain,cn=config
# record 6
dn: cn=st.example.com,cn=domain,cn=config
access_provider: krb5
auth_provider: krb5
cache_credentials: true
chpass_provider: krb5
cn:
st.example.com
debug_level: 9
dns_discovery_domain:
c.example.com
enumerate: false
id_provider: ad
krb5_realm:
C.EXAMPLE.COM
ldap_account_expire_policy: ad
ldap_force_upper_case: true
ldap_group_name: sAMAccountName
ldap_group_object_class: group
ldap_group_search_base: dc=c,dc=example,dc=com
ldap_schema: rfc2307bis
ldap_search_base: dc=c,dc=example,dc=com
ldap_user_fullname: displayName
ldap_user_home_directory: unixHomeDirectory
ldap_user_name: sAMAccountName
ldap_user_object_class: user
ldap_user_principal: no_existing_name
ldap_user_search_base: dc=c,dc=example,dc=com
override_homedir: /home/%u
distinguishedName: cn=st.example.com,cn=domain,cn=config
ldap_schema: rfc2307bis
ldap_user_fullname: displayName
ldap_user_name: sAMAccountName
ldap_user_object_class: user
ldap_user_principal: no_existing_name
ldap_user_search_base: dc=a,dc=c,dc=example,dc=com
override_homedir: /home/%u
distinguishedName: cn=a.c.example.com,cn=domain,cn=config
# record 7
dn: cn=pam,cn=config
cn: pam
debug_level: 9
pam_verbosity: 3
reconnection_retries: 3
distinguishedName: cn=pam,cn=config
# record 8
dn: cn=su.c.example.com,cn=domain,cn=config
access_provider: ad
auth_provider: ad
cache_credentials: true
chpass_provider: ad
cn:
su.c.example.com
debug_level: 9
dns_discovery_domain:
su.c.example.com
enumerate: false
id_provider: ad
krb5_realm:
SU.C.EXAMPLE.COM
ldap_account_expire_policy: ad
ldap_force_upper_case: true
ldap_group_name: sAMAccountName
ldap_group_object_class: group
ldap_group_search_base: dc=su,dc=c,dc=example,dc=com
ldap_user_fullname: displayName
ldap_user_name: sAMAccountName
ldap_user_object_class: user
ldap_user_principal: no_existing_name
ldap_user_search_base: dc=su,dc=c,dc=example,dc=com
override_homedir: /home/%u
distinguishedName: cn=su.c.example.com,cn=domain,cn=config
# returned 8 records
# 8 entries
# 0 referrals
Best
Longina
-----Original Message-----
From: sssd-users-bounces(a)lists.fedorahosted.org
[mailto:sssd-users-bounces@lists.fedorahosted.org] On Behalf Of Jakub Hrozek
Sent: 18. september 2013 10:12
To: sssd-users(a)lists.fedorahosted.org
Subject: Re: [SSSD-users] Ubuntu Saucy sssd-1.11.0 not starting
On Tue, Sep 17, 2013 at 09:13:23AM +0000, Longina Przybyszewska wrote:
Some more debugging output:
root@saucy:/etc/sssd# sssd -i -d 9 -c /etc/sssd/sssd.conf (Mon Sep 16
20:21:20:853610 2013) [sssd] [check_file] (0x0400): lstat for [/var/run/nscd/socket]
failed: [2][No such file or directory].
(Mon Sep 16 20:21:20:874930 2013) [sssd] [ldb] (0x0400): server_sort:Unable to register
control with rootdse!
(Mon Sep 16 20:21:20:962370 2013) [sssd] [ldb] (0x4000): no modules
required by the db (Mon Sep 16 20:21:20:962802 2013) [sssd] [ldb]
(0x4000): No modules specified for this database (Mon Sep 16
20:21:20:963211 2013) [sssd] [ldb] (0x4000): start ldb transaction
(nesting: 0) (Mon Sep 16 20:21:20:974202 2013) [sssd] [ldb] (0x4000):
commit ldb transaction (nesting: 0) (Mon Sep 16 20:21:20:984829 2013)
[sssd] [ldb] (0x4000): start ldb transaction (nesting: 0) (Mon Sep 16
20:21:20:995549 2013) [sssd] [ldb] (0x4000): commit ldb transaction
(nesting: 0) (Mon Sep 16 20:21:21:005729 2013) [sssd] [ldb] (0x4000):
start ldb transaction (nesting: 0) (Mon Sep 16 20:21:21:016172 2013)
[sssd] [ldb] (0x4000): commit ldb transaction (nesting: 0) (Mon Sep 16 20:21:21:028011
2013) [sssd] [confdb_init_db] (0x0010): Config file version could not be determined (Mon
Sep 16 20:21:21:028790 2013) [sssd] [load_configuration] (0x0010): ConfDB initialization
has failed [Input/output error] (Mon Sep 16 20:21:21:029986 2013) [sssd] [main] (0x0020):
SSSD couldn't load the configuration database.
root@saucy:/etc/sssd# ls -l /var/lib/sss/db total 1256
-rw------- 1 root root 1286144 Sep 16 20:21 config.ldb
root@saucy:/etc/sssd# file /var/lib/sss/db/config.ldb
/var/lib/sss/db/config.ldb: TDB database version 6, little-endian hash
size 10000 bytes
It seems that I am missing something..
Can you do just:
# ldbsearch -H /var/lib/sss/db/config.ldb
To see if anything was dumped in the config database at all?
Can you post more complete (sanitized) output of the startup? There should be an LDIF the
SSSD parsed out of the config file and dumps into the database.
How did you install the packages, just from the main saucy repo or compiled yourself?
_______________________________________________
sssd-users mailing list
sssd-users(a)lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo/sssd-users