[SSSD-users] Multiple logins by the same user at the same host at nearly the exact time

result in: pam_sss(sshd:account): Access denied for user rundeck: 4 (System error) I know this has been an issue in the past per some info I see in places like: https://access.redhat.com/solutions/1477473 any chance there's been a regression bringin

[SSSD-users] Re: Announcing SSSD 1.16.1

> On 12 Mar 2018, at 14:59, Joakim Tjernlund > wrote: > > On Sun, 2018-03-11 at 21:38 +0100, Jakub Hrozek wrote: >> CAUTION: This email originated from outside of the organization. Do not >> click links or open attachments unless you recognize the sender and know the >> content is safe. >>

[SSSD-users] Re: [Freeipa-users] nss_getpwnam: name 't...@my.dom@localdomain' does not map into domain 'nix.my.dom'

TomK wrote: > On 3/7/2018 1:11 PM, Rob Crittenden wrote: > Hey Rob, > > When starting idmapd or stopping it, logs on the LDAP server don't > change.  But UID and GID's change to nfsnobody when I set Nobody-User > and Nobody-Group to nfsnobody in /etc/idmapd.conf . I don't know that merely restart

[SSSD-users] Re: Experiencing a bug on users' name and ID

On Mon, Mar 12, 2018 at 11:04 AM, Asif Iqbal wrote: > > > On Mon, Mar 12, 2018 at 5:59 AM, Sumit Bose wrote: > >> On Sun, Mar 11, 2018 at 10:25:24AM -0400, Asif Iqbal wrote: >> > I still like some help with any workaround in dealing with string. >> > >> > IT LDAP team do not have any attribute v

[SSSD-users] Re: Experiencing a bug on users' name and ID

On Mon, Mar 12, 2018 at 5:59 AM, Sumit Bose wrote: > On Sun, Mar 11, 2018 at 10:25:24AM -0400, Asif Iqbal wrote: > > I still like some help with any workaround in dealing with string. > > > > IT LDAP team do not have any attribute value with real number. Is it > > possible to create a local DB to

[SSSD-users] Re: Experiencing a bug on users' name and ID

On Mon, Mar 12, 2018 at 5:59 AM, Sumit Bose wrote: > On Sun, Mar 11, 2018 at 10:25:24AM -0400, Asif Iqbal wrote: > > I still like some help with any workaround in dealing with string. > > > > IT LDAP team do not have any attribute value with real number. Is it > > possible to create a local DB to

[SSSD-users] Re: Announcing SSSD 1.16.1

On Sun, 2018-03-11 at 21:38 +0100, Jakub Hrozek wrote: > CAUTION: This email originated from outside of the organization. Do not click > links or open attachments unless you recognize the sender and know the > content is safe. > > > > On 9 Mar 2018, at 14:45, Joakim Tjernlund > > wrote: > >

[SSSD-users] Re: Experiencing a bug on users' name and ID

On Sun, Mar 11, 2018 at 10:25:24AM -0400, Asif Iqbal wrote: > I still like some help with any workaround in dealing with string. > > IT LDAP team do not have any attribute value with real number. Is it > possible to create a local DB to map the mnetid to a real number and then > use that table as

[SSSD-users] Re: SSSD kerberos problem in multiple AD domains

On Mon, Mar 05, 2018 at 04:24:50PM +0100, Roger Martensson wrote: > I've always used a fully qualified hostname. My example was a cleanup > version and I was to lazy to write subdomain1.example.com. > > I've set ad_hostname to the correct hostname. Your question made me take a > look into other s

[SSSD-users] Re: Apache/php integration

It is indeed - I see it's even in the official Rhel repo! Thanks, Ondrej -Original Message- From: Sumit Bose [mailto:sb...@redhat.com] Sent: Monday, March 12, 2018 8:55 AM To: sssd-users@lists.fedorahosted.org Subject: [SSSD-users] Re: Apache/php integration On Fri, Mar 09, 2018 at 02:4

[SSSD-users] Re: Apache/php integration

On Fri, Mar 09, 2018 at 02:43:11PM +, Ondrej Valousek wrote: > Hi all, > > I see there is a new client API available for sssd 1.16. Is it possible to > integrate it somehow with Apache/php? > I.e. example: I authenticate user via mod_auth_gssapi obtaining username (and > possibly TGT) so I n