more automount
> information.
> - Using trusted domains with non-qualified names (shortnames).
> - How auto-discovery of trusted domains works.
> - How auto-discovery of AD site works.
>
> Correct me if I'm wrong. Also I added some more comments bellow.
>
> On 5/13/21 1:05 P
Hi,
I'm coming from other OS - Arch Linux. So from my point of view:
- for NSS you pasted full config file and it is great
https://sssd.io/docs/ad/ad-provider-manual.html#nss-pam-configuration
- do the same for pam.d config so nobody gets confused
- add info on which sssd/krb5
wt., 11 maj 2021 o 18:09 Sumit Bose napisał(a):
> Am Tue, May 11, 2021 at 03:31:22PM +0200 schrieb Paweł Szafer:
> > Hi, sure.
> > My auth files are based on this:
> > -
> https://wiki.archlinux.org/title/LDAP_authentication#PAM_Configuration_2
> > - and this: https
(a):
> Am Tue, May 11, 2021 at 02:46:39PM +0200 schrieb Paweł Szafer:
> > Hi again,
> >
> > Last week I had to change my sssd.conf to ldap_sasl_mech=GSSAPI.
> > SSSD is 2.4.2 on Arch Linux.
> > Don't know if it is related but now I can't change password with this
>
Hi again,
Last week I had to change my sssd.conf to ldap_sasl_mech=GSSAPI.
SSSD is 2.4.2 on Arch Linux.
Don't know if it is related but now I can't change password with this
machine (last time it was working in February).
Anyway passwd is asking me for current password and after typing it + Enter
Hi,
I had to add
ldap_sasl_mech=GSSAPI
to domain part of my sssd.conf
But honestly I don't understand why SPNEGO is not working, any ideas?
czw., 6 maj 2021 o 09:59 Paweł Szafer napisał(a):
> Hello,
>
> Today morning I had a bad surprise. Suddenly I cannot login anymore to my
>
Hello,
Today morning I had a bad surprise. Suddenly I cannot login anymore to my
PC.
My OS is Arch based, with SSSD 2.4.2, updated yesterday (it was working
after update, last login occurred around 7pm 05.05.2021, today 7am
06.05.2021 cannot login anymore)
Maybe you have any idea what's wrong.
100, Paweł Szafer wrote:
> > Hi,
> > I built and installed sssd from sources.
> > I got more logs:
> >
> https://gist.github.com/pszafer/7ab47cd7d4de05f965f4c8e9985af8fa#file-krb5_child-log-not-working-with-krb5-trace
> >
> > Is this important? -> "PKI
time:
[375772]
How to find why this function is never called?
-
Pawel
wt., 16 lut 2021 o 17:38 Paweł Szafer napisał(a):
> Thanks for the response!
>
> Commenting out "udp_preference_limit" doesn't change anything
> unfortunately...
> I will rebuild sssd from sou
Thanks for the response!
Commenting out "udp_preference_limit" doesn't change anything
unfortunately...
I will rebuild sssd from source, so I can get more meaningful logs.
-
Pawel
wt., 16 lut 2021 o 17:20 Sumit Bose napisał(a):
> On Tue, Feb 16, 2021 at 03:46:38PM +0100,
t to email, too big).
Maybe you can find out if it's something with config or maybe Arch
compilation of krb5 or sssd.
-
Pawel
pon., 15 lut 2021 o 11:13 Paweł Szafer napisał(a):
> yes, typo, sorry. It's valid till 20.02.2021.
> Unfortunately I cannot find anything about password expira
yes, typo, sorry. It's valid till 20.02.2021.
Unfortunately I cannot find anything about password expiration in the sssd
logs.
Pawel
pon., 15 lut 2021, 11:08 użytkownik Tomas Halman
napisał:
>
>
> On Sat, Feb 13, 2021 at 6:22 PM Paweł Szafer wrote:
>
>>
>> > U
Hi,
I added:
pwd_expiration_warning=14 to domain section
and to pam section:
pam_pwd_expiration_warning=14
but still no warning at all.
-
Best regards,
Pawel
pt., 12 lut 2021 o 09:39 Sumit Bose napisał(a):
> On Thu, Feb 11, 2021 at 06:47:46PM +0100, Paweł Szafer wrote:
> >
Hi,
I want to warn users when password expiration days are less than 14 days.
I have GPO Default domain policy with this number of days.
I have sssd.conf as:
[sssd]
domains = internal.domain.tld
config_file_version = 2
services = nss, pam
[domain/internal.domain.tld]
cache_credentials = True
14 matches
Mail list logo