I wrote this topic because I have an issue on a CentOS 7.7.1908 server.
When I'm trying to login via ssh to this server, the connection "wait" 30 seconds. It's the same when I'm already logged in and I try to login with an AD user.
Here is the output of my /var/log/secure :
Code: Select all
Oct 31 09:04:00 centossrv sshd[2785]: Accepted password for root from 10.237.170.0 port 61246 ssh2
Oct 31 09:04:30 centossrv sshd[2785]: pam_systemd(sshd:session): Failed to create session: Connection reset by peer
Oct 31 09:04:30 centossrv sshd[2785]: pam_unix(sshd:session): session opened for user root by (uid=0)
Code: Select all
# uname -msr
Linux 5.3.7-1.el7.elrepo.x86_64 x86_64
Here is the output of journalctl
Code: Select all
# journalctl --boot --unit sshd
Oct 31 09:12:40 centossrv su[8578]: (to myuser) root on pts/2
Oct 31 09:13:10 centossrv su[8578]: pam_systemd(su-l:session): Failed to create session: Connection reset by peer
Oct 31 09:13:10 centossrv su[8578]: pam_unix(su-l:session): session opened for user myuser by root(uid=0)
Code: Select all
# grep -v ^# /etc/nsswitch.conf
passwd: files sss
shadow: files sss
group: files nis
hosts: files dns
bootparams: nisplus [NOTFOUND=return] files
ethers: files
netmasks: files
networks: files
protocols: files
rpc: files
services: files
netgroup: files
publickey: nisplus
automount: files nis
aliases: files nisplus
Code: Select all
# grep -v ^# /etc/sssd/sssd.conf
[sssd]
config_file_version = 2
reconnection_retries = 3
services = nss,pam
domains = mydomain.com
[nss]
filter_groups = root
filter_users = root
reconnection_retries = 3
[pam]
reconnection_retries = 3
[domain/mydomain.com]
access_provider = ad
ad_domain = mydomain.com
cache_credentials = True
debug_level = 0
default_shell = /bin/bash
dns_discovery_domain = mydomain.com
fallback_homedir = /u/users/%u
id_provider = ad
ignore_group_members = True
krb5_realm = mydomain.com
krb5_store_password_if_offline = True
ldap_id_mapping = False
ldap_idmap_range_min = 1824600000
ldap_idmap_range_size = 2000000
realmd_tags = manages-system joined-with-samba
subdomains_provider = none
use_fully_qualified_names = False
ad_gpo_ignore_unreadable = True
What can I do to troubleshoot my server and fix this issue ?
Thank you very much for your help.
Best regards,