On Mon, Sep 21, 2020 at 01:47:43PM +0200, Ronald Wimmer via FreeIPA-users wrote:
We decided to register a bunch of legacy systems with IPA. Despite the
fact that we could not change theses systems's FQDNs it worked for our
use case (allowing AD users to log on to these systems).
Today I found a RHEL 6.10 (SSSD 1.13.3) machine that did not work and
I could not find out why.
I am seeing this in /var/log/secure:
Sep 21 13:40:14 as00093 sshd[2899]: pam_sss(sshd:auth): received for
user myADUser: 4 (System error)
and this in /var/log/messages:
Sep 21 13:40:14 as00093 [sssd[krb5_child[2935]]]: Client not found in
Kerberos database
Hi,
more context is needed here to understand at which step the error is
returned by the KDC or AD DC. If this happens during ticket validation
you can disable ticket validation to see if it works better.
bye,
Sumit
What could this mean?
Cheers,
Ronald
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/[email protected]
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/[email protected]
