-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 08/17/2010 07:57 AM, Andy Kannberg wrote: > Hi, > > I've checked the uid from the user, it is far above 1000, so that can > not be the issue. >
It might not just be the LDAP UID. If the user's primary GID is below 1000, it will still fail. I think at this point you'll want to turn on the debug logs and check those. Add 'debug_level = 9' to the /etc/sssd/sssd.conf in the [domain/LDAP] section and restart the SSSD. Then attempt to log in again, and check /var/log/sssd/sssd_LDAP.log for any indication about why it failed. (Ideally, sanitize any sensitive server names/IPs and then send the log for us to look at). - -- Stephen Gallagher RHCE 804006346421761 Delivering value year after year. Red Hat ranks #1 in value among software vendors. http://www.redhat.com/promo/vendor/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iEYEARECAAYFAkxqeicACgkQeiVVYja6o6OAbACghigY382PhA+X9VNireNoYYV1 UtQAnRBjKO41qENdrmSlKxtSweYpIjKW =E78U -----END PGP SIGNATURE----- _______________________________________________ sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/sssd-devel
