CentOS

I was able to join an AD domain just fine in 7.5.1804. Did an yum update to 7.6.1810 and it does not work anymore.

If I update after joining the domain, then cannot authenticate domain users after the update.

I get the following message when the domain join fails: (realm -v join -U myuser mydc.mydomain.com)

realmd: adcli: couldn't connect to mydomain.com domain: Couldn't authenticate to active directory: SASL(-1): generic failure: GSSAPI Error: Unspecified GSS failure. Minor code may provide more information (Cannot allocate memory)

Note ... the user appears to authenticate ok but the join fails.

Experimentation shows running "yum update -x krb5-libs", to retain the current krb5-libs package, seems to deliver a system that works with sssd but I cant say what other problems that might cause.

krb5-libs.x86_64 1.15.1-19.el7 works for me with 7.6.810

krb5-libs.i686 1.15.1-34.el7 does not work for me with 7.6.810

At this writing, release 7.6.1810 is 4 days into the public release.

If there is a place to report bugs, I should probably do that. Does anyone know where that might be?

bugs.centos.org and/or bugzilla.redhat.com depending on whether you think this is a CentOS specific problem or one inherited from RHEL.

hi,
i've this version of krb5-libs: krb5-libs-1.15.1-34.el7.x86_64

my notebook is on MS AD 2012 without problems.
The difference with you is that my notebook have a clean install of Centos 7.6.

Regards
Simone