Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [sssd]

System Security Services Daemon (SSSD) - This project provides a set of daemons to manage access to remote directories and authentication mechanisms, it provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for FreeIPA, LDAP, & Active Directory.

353 questions
1
vote
1 answer

Ubuntu 18.04/20.04 SSSD Configuration Issues

I would like to first mention that I have more experience with the CentOS/RHEL world than I do with configuration of Ubuntu. Most of the Ubuntu systems that I have had to build use default configurations or I have been able to figure out what the…
abrousseau001
  • 11
  • 2
1
vote
0 answers

NFS : permission denied - home dir NFS Qtree from Netapp

I have centos7 box NFS Qtree used for home dir from Netapp is able to mount just fine Export policy shows : any any any ...ie super user access as well is any When i am root user on client box , can cd to user home dir of any user We have SSSD…
user3769149
  • 19
  • 3
1
vote
1 answer

adcli fails to join AD with LDAPS option

Having issues with the adcli on ubuntu 18.04 which was updated recently with the ldaps option. It can't seem to find the shortname for AD and also doesn't manage to connect to LDAP even when the CA is specified in the command and with…
jamboNum5
  • 361
  • 1
  • 2
  • 10
1
vote
1 answer

Wrong LDAP user ID is mapped into Slurm account management service

I configured a Slurm head node as follows: sssd to contact openLDAP slurmctld/slurmdbd/slurmd/munged to act as the Slurm controller and compute node ...where ray.williams is an LDAP user. Its UID can be mapped on the node. SSH login works…
Nicolas De Jay
  • 209
  • 2
  • 11
1
vote
1 answer

Using SSSD with multiple LDAP servers/domains

I need to authenticate users using two separate LDAP servers. Have configured SSSD with two domains but only one seems to be working. I ran the command authconfig --enablemkhomedir --enablesssd --enablesssdauth --updateall and updated sssd.conf as…
AGI-Chandler
  • 38
  • 7
1
vote
2 answers

Why can users just not login with SSH while everything else seems to work?

I have set up a pair of OpenLDAP servers on Ubuntu 20 with directional failover using Syncrepl. Things that an LDAP user can successfully do include: login su - remote bind from PHPLDAPAdmin or Apache Directory Studio id However, the…
Stephen Winnall
  • 165
  • 1
  • 8
1
vote
1 answer

Using Samba as an AD domain member with consistent automatically generated POSIX attributes across Linux members

I am trying to join multiple Linux devices to a Windows Active Directory Domain with both Domain logon and Samba file sharing functionality. I am trying to avoid manually adding POSIX attributes to AD users and groups here. Although seeming simple…
James Hopwood
  • 37
  • 1
  • 6
1
vote
2 answers

what is the difference between sssd (realm join) and net ads join?

I have been using ubuntu 18.04 with sssd to join my servers to my active directory domain for a while now. This worked quite nicely, enabling me to ssh to the servers with AD users and create samba shares with AD authentication as well. what I…
GKman
  • 495
  • 3
  • 9
  • 16
1
vote
1 answer

Active Directory as uid/gid provider within a cluster

I have a CentOS 8 HPC cluster setup with a login node that is connected to an active directory via sssd/kerberos. Only the login node is accessible from the user network. Users use their normal domain account to access the login node. All the…
DayAndNight
  • 11
  • 1
1
vote
1 answer

autofs with samba, sssd, openldap, kerberos

I want to mount a samba share with autofs. srv.xxxxxxx.net is the samba server (proxmox container, Debian 10) ldap2.xxxxxxx.net is the openldap (proxmox container, Debian 10) gui.xxxxxxx.net is the client (proxmox vm, Ubuntu 18.04) Samba runs in…
user12682985
  • 23
  • 4
1
vote
0 answers

Is it possible to use sssd to login to the samba domain controller

We use sssd for user management with the account information from a Samba AD Domain Controller. The sssd-configuration on linux clients looks as follows: [sssd] services = nss, pam,ssh config_file_version = 2 domains = EXAMPLE.DOMAIN.EU…
DoRe
  • 41
  • 5
1
vote
1 answer

Why does realmd list multiples of the same realm?

I'm setting up an Ubuntu server so that users can authenticate against a Windows AD server. Not knowing about realmd, I used Samba Winbind's net join command to join the machine to the domain. Afterwards, I installed realmd and tried realm…
watkipet
  • 242
  • 2
  • 3
  • 11
0
votes
1 answer

Home directory for Active Directory authenticated users based on parsed username

I have an NFS share with user home directories mounted on a web server. I want to enable UserDir in apache, but the home directories are not a straight-forward "/home/username" path. Instead, they're organized into a hierarchy based on their…
aswift
  • 1
0
votes
1 answer

Login limited to a LDAP group using SSD and Kerberos

I'm trying to learn how PAM, SSSD and nsswitch works. I think these services are so useful although all the documentation over there is a little bit outdated and "esoteric". So I'm here asking for some help. This is how I configured my…
DRI
  • 23
  • 5
0
votes
2 answers

LDAP PAM client error "cannot find name for user ID"

I had ldap authentication working great last night, then today it doesn't seem to work. I can authenticate as a user, but the client can't seem to look up info about the user: Example logging in as ldap user "ts121207": $ su - ts121207 Password: $…
Ben Davis
  • 280
  • 1
  • 6
  • 18
1 2 3
23 24