SSSD using POSIX attributes
Posted: 2018/02/08 18:39:58
SSSD does not appear to be able to grab the POSIX values from AD. With we get:
# id bob
id: bob: no such user
When we switch it to it generates a non-POSIX ID number which is incompatible with our file store.
Fresh CentOS 7 install w/latest updates
yum install chrony realmd oddjob oddjob-mkhomedir sssd adcli samba-common-toolskrb5-workstation -y
chrony points to the AD servers - time matches
Machine was joined using
/etc/sssd/sssd.conf was edited to set
After editing, is executed.
Firewalls are open, Active Directory Schema MMC snap-in was enabled and publishes: uidNumber, gidNumber, unixHomeDirectory, and loginShell.
The documentation we followed is:
https://access.redhat.com/documentation ... de/sssd-ad
Is there a better reference for this somewhere else?
Code: Select all
ldap_id_mapping = False# id bob
id: bob: no such user
When we switch it to
Code: Select all
ldap_id_mapping = TrueFresh CentOS 7 install w/latest updates
yum install chrony realmd oddjob oddjob-mkhomedir sssd adcli samba-common-toolskrb5-workstation -y
chrony points to the AD servers - time matches
Machine was joined using
Code: Select all
realm join --automatic-id-mapping=no int.domain.comCode: Select all
use_fully_qualified_names = FalseCode: Select all
systemctl stop sssd && rm -f /var/lib/sss/db/* && systemctl start sssdFirewalls are open, Active Directory Schema MMC snap-in was enabled and publishes: uidNumber, gidNumber, unixHomeDirectory, and loginShell.
The documentation we followed is:
https://access.redhat.com/documentation ... de/sssd-ad
Is there a better reference for this somewhere else?