Stack Overflow
Stack Overflow

Questions tagged [sssd]

SSSD is a system daemon that provides access to identity and authentication remote resource through a common framework that can provide caching and offline support to the system.

SSSD provides a set of daemons to manage access to remote directories and authentication mechanisms.

It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources as well as a D-Bus interface.

It is also the basis to provide client auditing and policy services for centralised identity management systems such as FreeIPA and Active Directory.

In addition, it provides a more robust database to store local users as well as extended user data.

67 questions
-1
votes
1 answer

Identity provider vs authentication provider

What is the difference between an identity provider and an authentication provider? This is specifically for System Security Services Daemon(SSSD) in Redhat 6/7. I assume the identity provider is like Google or Facebook providing logins to 3rd party…
Boney Jacob
  • 19
  • 3
-1
votes
1 answer

Active Directory User failed to login with Error: pam_sss(sshd:account): Access denied

I'm trying to domain join my AWS redhat linux machine to Azure AD. I've made all the required configuration following this document. Error Message sshd[18242]: pam_sss(sshd:auth): authentication success; logname= uid=0 euid=0 tty=ssh ruser=…
Prathyush P
  • 413
  • 2
  • 4
  • 13
-1
votes
2 answers

can't change AD password on ubuntu with sssd

I've configured sssd on an Ubuntu 18.04 server in aws to join an AD domain. I've already managed to sucessfully login using an active directory account, so i'm assuming all AD services are correctly configured in this machine. The issue appears when…
LocoLuke
  • 49
  • 1
  • 8
-1
votes
1 answer

Specify both AND and OR conditions in ldap_access_filter

How do i add filter with both AND and OR condition in ldap_access_filter? I have my ldap search filter as below with multiple groups. I now want to add one more condition where users need to be part of a primary group and then part of any mentioned…
user3629042
  • 21
  • 6
-2
votes
1 answer

Joined linux host to AD server using realmd. Unable to change ad user passwords from the command line

Have a fairly simple setup of one AD server with various linux hosts. We attached the linux hosts to our domain by using: realm discover domain.example.com realm join domain.example.com -U user.adm Our /etc/sssd/sssd.conf looks like: [sssd] domains…
IT_User
  • 729
  • 9
  • 27
-2
votes
1 answer

MS Active Directory & Linux: Auth with sssd

I'm using AWS Directory server (MS Active Directory type) to auth into my Linux machines. I followed this and all is working fine but I have a misconfiguration into /etc/sssd/sssd.conf. Before add the linux machine to the MS domain I this is my…
icalvete
  • 987
  • 2
  • 16
  • 50
-3
votes
1 answer

Single Sign On partially works for Linux+AD

I enabled AD authentication for my Linux cluster via SSSD service. One side effect is I'm able to do SSO for the cluster now, but it works for some accounts and doesn't for the others. For example, I have two Linux boxes they all registered to the…
user3593261
  • 560
  • 4
  • 17
1 2 3 4
5