Hi all,I having problems with a FreeIPA client running Ububtu Xenial. I can authenticate OK, I get a kerberos ticket, but cannot run sudo. I get 1 rule returned, which I expect. Many thanks,James Harrison
(Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Destroying timer event 0x1c11e30 "ltdb_timeout" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Ending timer event 0x1c11d70 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [sudosrv_get_user] (0x0400): Returning info for user [[email protected]] (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [sudosrv_get_rules] (0x0400): Retrieving rules for [x_james.harrison] from [domain.com] (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x1c11d70 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x1c11e30 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Running timer event 0x1c11d70 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Destroying timer event 0x1c11e30 "ltdb_timeout" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Ending timer event 0x1c11d70 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x1c0f550 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x1c1da40 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Running timer event 0x1c0f550 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Destroying timer event 0x1c1da40 "ltdb_timeout" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Ending timer event 0x1c0f550 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [sudosrv_get_sudorules_query_cache] (0x0200): Searching sysdb with [(&(objectClass=sudoRule)(|(sudoUser=ALL)(name=defaults)(sudoUser=x_james.harrison)(sudoUser=#1082600012)(sudoUser=%admins)(sudoUser=%ipausers)(sudoUser=%x_james.harrison)(sudoUser=+*))(&(dataExpireTimestamp<=1483618197)))] (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x1c11d70 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x1c11e30 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Running timer event 0x1c11d70 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Destroying timer event 0x1c11e30 "ltdb_timeout" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Ending timer event 0x1c11d70 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [sudosrv_get_rules] (0x2000): About to get sudo rules from cache (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x1c18790 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x1c1b720 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Running timer event 0x1c18790 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Destroying timer event 0x1c1b720 "ltdb_timeout" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Ending timer event 0x1c18790 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x1c12600 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x1c0f550 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Running timer event 0x1c12600 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Destroying timer event 0x1c0f550 "ltdb_timeout" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Ending timer event 0x1c12600 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [sudosrv_get_sudorules_query_cache] (0x0200): Searching sysdb with [(&(objectClass=sudoRule)(|(sudoUser=ALL)(sudoUser=x_james.harrison)(sudoUser=#1082600012)(sudoUser=%admins)(sudoUser=%ipausers)(sudoUser=%x_james.harrison)(sudoUser=+*)))] (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x1c0f550 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x1c0dfd0 (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Running timer event 0x1c0f550 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Destroying timer event 0x1c0dfd0 "ltdb_timeout" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [ldb] (0x4000): Ending timer event 0x1c0f550 "ltdb_callback" (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [sort_sudo_rules] (0x0400): Sorting rules with higher-wins logic (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [sudosrv_get_sudorules_from_cache] (0x0400): Returning 1 rules for [[email protected]] (Thu Jan 5 12:09:57 2017) [sssd[sudo]] [reset_idle_timer] (0x4000): Idle timer re-set for client [0x1c0e770][18] ==> sssd/sssd.log <== (Thu Jan 5 12:10:00 2017) [sssd] [service_send_ping] (0x2000): Pinging domain.com (Thu Jan 5 12:10:00 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8de810 (Thu Jan 5 12:10:00 2017) [sssd] [service_send_ping] (0x2000): Pinging nss (Thu Jan 5 12:10:00 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8f0790 (Thu Jan 5 12:10:00 2017) [sssd] [service_send_ping] (0x2000): Pinging sudo (Thu Jan 5 12:10:00 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8e9b30 (Thu Jan 5 12:10:00 2017) [sssd] [service_send_ping] (0x2000): Pinging pam (Thu Jan 5 12:10:00 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8d8720 (Thu Jan 5 12:10:00 2017) [sssd] [service_send_ping] (0x2000): Pinging ssh (Thu Jan 5 12:10:00 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8e9cb0 ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:00 2017) [sssd[sudo]] [sbus_dispatch] (0x4000): dbus conn: 0x1c06b10 (Thu Jan 5 12:10:00 2017) [sssd[sudo]] [sbus_dispatch] (0x4000): Dispatching. ==> sssd/sssd.log <== (Thu Jan 5 12:10:00 2017) [sssd] [service_send_ping] (0x2000): Pinging pac (Thu Jan 5 12:10:00 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8efea0 ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:00 2017) [sssd[sudo]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.service.ping on path /org/freedesktop/sssd/service ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:00 2017) [sssd[pam]] [sbus_dispatch] (0x4000): dbus conn: 0x2464b20 (Thu Jan 5 12:10:00 2017) [sssd[pam]] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:00 2017) [sssd[pam]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.service.ping on path /org/freedesktop/sssd/service ==> sssd/sssd.log <== (Thu Jan 5 12:10:00 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8de810 (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8d7c00 ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:00 2017) [sssd[pam]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:00 2017) [sssd[sudo]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit ==> sssd/sssd_ssh.log <== (Thu Jan 5 12:10:00 2017) [sssd[ssh]] [sbus_dispatch] (0x4000): dbus conn: 0xe9ab20 (Thu Jan 5 12:10:00 2017) [sssd[ssh]] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:00 2017) [sssd[ssh]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.service.ping on path /org/freedesktop/sssd/service (Thu Jan 5 12:10:00 2017) [sssd[ssh]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit ==> sssd/sssd_sudo.log <== ==> sssd/sssd_ssh.log <== ==> sssd/sssd.log <== (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:00 2017) [sssd] [ping_check] (0x2000): Service domain.com replied to ping (Thu Jan 5 12:10:00 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8f0790 ==> sssd/sssd_pam.log <== ==> sssd/sssd_ssh.log <== ==> sssd/sssd.log <== (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8dd870 (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. ==> sssd/sssd_pam.log <== ==> sssd/sssd.log <== (Thu Jan 5 12:10:00 2017) [sssd] [ping_check] (0x2000): Service nss replied to ping (Thu Jan 5 12:10:00 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8e9b30 (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8e21f0 (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:00 2017) [sssd] [ping_check] (0x2000): Service sudo replied to ping (Thu Jan 5 12:10:00 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8efea0 (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8e4da0 (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:00 2017) [sssd] [ping_check] (0x2000): Service pac replied to ping (Thu Jan 5 12:10:00 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8e9cb0 (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8dd340 (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:00 2017) [sssd] [ping_check] (0x2000): Service ssh replied to ping (Thu Jan 5 12:10:00 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8d8720 (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8e6d90 (Thu Jan 5 12:10:00 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:00 2017) [sssd] [ping_check] (0x2000): Service pam replied to ping (Thu Jan 5 12:10:10 2017) [sssd] [service_send_ping] (0x2000): Pinging domain.com (Thu Jan 5 12:10:10 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8d8720 (Thu Jan 5 12:10:10 2017) [sssd] [service_send_ping] (0x2000): Pinging nss (Thu Jan 5 12:10:10 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8e9cb0 (Thu Jan 5 12:10:10 2017) [sssd] [service_send_ping] (0x2000): Pinging sudo (Thu Jan 5 12:10:10 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8efea0 (Thu Jan 5 12:10:10 2017) [sssd] [service_send_ping] (0x2000): Pinging pam (Thu Jan 5 12:10:10 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8e9b30 (Thu Jan 5 12:10:10 2017) [sssd] [service_send_ping] (0x2000): Pinging ssh (Thu Jan 5 12:10:10 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8f0790 (Thu Jan 5 12:10:10 2017) [sssd] [service_send_ping] (0x2000): Pinging pac ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:10 2017) [sssd[sudo]] [sbus_dispatch] (0x4000): dbus conn: 0x1c06b10 (Thu Jan 5 12:10:10 2017) [sssd[sudo]] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:10 2017) [sssd[sudo]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.service.ping on path /org/freedesktop/sssd/service ==> sssd/sssd.log <== (Thu Jan 5 12:10:10 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8de810 ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:10 2017) [sssd[pam]] [sbus_dispatch] (0x4000): dbus conn: 0x2464b20 (Thu Jan 5 12:10:10 2017) [sssd[pam]] [sbus_dispatch] (0x4000): Dispatching. ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:10 2017) [sssd[sudo]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:10 2017) [sssd[pam]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.service.ping on path /org/freedesktop/sssd/service ==> sssd/sssd.log <== (Thu Jan 5 12:10:10 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8d8720 (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8d7c00 (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:10 2017) [sssd[pam]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit ==> sssd/sssd_ssh.log <== (Thu Jan 5 12:10:10 2017) [sssd[ssh]] [sbus_dispatch] (0x4000): dbus conn: 0xe9ab20 (Thu Jan 5 12:10:10 2017) [sssd[ssh]] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:10 2017) [sssd[ssh]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.service.ping on path /org/freedesktop/sssd/service (Thu Jan 5 12:10:10 2017) [sssd[ssh]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit ==> sssd/sssd.log <== (Thu Jan 5 12:10:10 2017) [sssd] [ping_check] (0x2000): Service domain.com replied to ping (Thu Jan 5 12:10:10 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8e9cb0 ==> sssd/sssd_ssh.log <== ==> sssd/sssd_pam.log <== ==> sssd/sssd.log <== (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8dd870 ==> sssd/sssd_ssh.log <== ==> sssd/sssd.log <== (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:10 2017) [sssd] [ping_check] (0x2000): Service nss replied to ping ==> sssd/sssd_ssh.log <== ==> sssd/sssd.log <== (Thu Jan 5 12:10:10 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8efea0 (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8e21f0 (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:10 2017) [sssd] [ping_check] (0x2000): Service sudo replied to ping (Thu Jan 5 12:10:10 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8de810 (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8e4da0 (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:10 2017) [sssd] [ping_check] (0x2000): Service pac replied to ping (Thu Jan 5 12:10:10 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8e9b30 (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8e6d90 (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:10 2017) [sssd] [ping_check] (0x2000): Service pam replied to ping (Thu Jan 5 12:10:10 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8f0790 (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8dd340 (Thu Jan 5 12:10:10 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:10 2017) [sssd] [ping_check] (0x2000): Service ssh replied to ping ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:17 2017) [sssd[pam]] [get_client_cred] (0x4000): Client creds: euid[0] egid[1082600012] pid[5470]. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [reset_idle_timer] (0x4000): Idle timer re-set for client [0x2466e50][19] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [accept_fd_handler] (0x0400): Client connected! (Thu Jan 5 12:10:17 2017) [sssd[pam]] [reset_idle_timer] (0x4000): Idle timer re-set for client [0x2466e50][19] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_cmd_get_version] (0x0200): Received client version [3]. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_cmd_get_version] (0x0200): Offered version [3]. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [reset_idle_timer] (0x4000): Idle timer re-set for client [0x2466e50][19] ==> auth.log <== Jan 5 12:10:17 pul-lp-sql-00 sudo: pam_unix(sudo:auth): authentication failure; logname=x_james.harrison uid=1082600012 euid=0 tty=/dev/pts/1 ruser=x_james.harrison rhost= user=x_james.harrison ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:17 2017) [sssd[pam]] [reset_idle_timer] (0x4000): Idle timer re-set for client [0x2466e50][19] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_cmd_authenticate] (0x0100): entering pam_cmd_authenticate (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_parse_name_for_domains] (0x0200): name 'x_james.harrison' matched without domain, user is x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): domain: not set (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): user: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): service: sudo (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): tty: /dev/pts/1 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): ruser: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): rhost: not set (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): authtok type: 1 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): newauthtok type: 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): priv: 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): cli_pid: 5470 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): logon name: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_ncache_check_str] (0x2000): Checking negative cache for [NCE/USER/domain.com/x_james.harrison] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_initgr_check_timeout] (0x4000): User [x_james.harrison] not found in PAM cache. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_dp_issue_request] (0x0400): Issuing request for [0x410090:3:[email protected]] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_dp_get_account_msg] (0x0400): Creating request for [domain.com][0x3][BE_REQ_INITGROUPS][1][name=x_james.harrison] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_add_timeout] (0x2000): 0x2469f20 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_dp_internal_get_send] (0x0400): Entering request [0x410090:3:[email protected]] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_remove_timeout] (0x2000): 0x2469f20 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_dispatch] (0x4000): dbus conn: 0x2467e60 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_dp_get_reply] (0x1000): Got reply from Data Provider - DP error code: 0 errno: 0 error message: Success (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_check_user_search] (0x0100): Requesting info for [[email protected]] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x24710e0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x24711a0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Running timer event 0x24710e0 "ltdb_callback" (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Destroying timer event 0x24711a0 "ltdb_timeout" (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Ending timer event 0x24710e0 "ltdb_callback" (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_check_user_search] (0x0400): Returning info for user [[email protected]] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_initgr_cache_set] (0x2000): [x_james.harrison] added to PAM initgroup cache (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_dp_send_req] (0x0100): Sending request with the following data: (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): command: SSS_PAM_AUTHENTICATE (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): domain: domain.com (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): user: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): service: sudo (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): tty: /dev/pts/1 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): ruser: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): rhost: not set (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): authtok type: 1 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): newauthtok type: 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): priv: 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): cli_pid: 5470 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): logon name: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_add_timeout] (0x2000): 0x2470c00 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_dom_forwarder] (0x0100): pam_dp_send_req returned 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_dp_req_destructor] (0x0400): Deleting request: [0x410090:3:[email protected]] ==> syslog <== Jan 5 12:10:17 pul-lp-sql-00 kernel: [ 1272.582518] audit: type=1400 audit(1483618217.180:43): apparmor="ALLOWED" operation="open" profile="/usr/sbin/sssd" name="/run/systemd/users/1082600012" pid=5570 comm="krb5_child" requested_mask="r" denied_mask="r" fsuid=0 ouid=0 ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_remove_timeout] (0x2000): 0x2470c00 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_dispatch] (0x4000): dbus conn: 0x2467e60 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_dp_process_reply] (0x0200): received: [0 (Success)][domain.com] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_reply] (0x0200): pam_reply called with result [0]: Success. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): start ldb transaction (nesting: 0) (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x247c620 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x247c6e0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Running timer event 0x247c620 "ltdb_callback" (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Destroying timer event 0x247c6e0 "ltdb_timeout" (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Ending timer event 0x247c620 "ltdb_callback" (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): commit ldb transaction (nesting: 0) (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_reply] (0x0200): pam_reply called with result [0]: Success. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_reply] (0x0200): blen: 84 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [reset_idle_timer] (0x4000): Idle timer re-set for client [0x2466e50][19] ==> auth.log <== Jan 5 12:10:17 pul-lp-sql-00 sudo: pam_sss(sudo:auth): authentication success; logname=x_james.harrison uid=1082600012 euid=0 tty=/dev/pts/1 ruser=x_james.harrison rhost= user=x_james.harrison ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:17 2017) [sssd[pam]] [reset_idle_timer] (0x4000): Idle timer re-set for client [0x2466e50][19] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_cmd_acct_mgmt] (0x0100): entering pam_cmd_acct_mgmt (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_parse_name_for_domains] (0x0200): name 'x_james.harrison' matched without domain, user is x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): command: SSS_PAM_ACCT_MGMT (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): domain: not set (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): user: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): service: sudo (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): tty: /dev/pts/1 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): ruser: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): rhost: not set (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): authtok type: 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): newauthtok type: 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): priv: 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): cli_pid: 5470 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): logon name: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sss_ncache_check_str] (0x2000): Checking negative cache for [NCE/USER/domain.com/x_james.harrison] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_initgr_check_timeout] (0x2000): User [x_james.harrison] found in PAM cache. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_check_user_search] (0x0100): Requesting info for [[email protected]] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x2478550 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x247bc80 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Running timer event 0x2478550 "ltdb_callback" (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Destroying timer event 0x247bc80 "ltdb_timeout" (Thu Jan 5 12:10:17 2017) [sssd[pam]] [ldb] (0x4000): Ending timer event 0x2478550 "ltdb_callback" (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_check_user_search] (0x0400): Returning info for user [[email protected]] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_dp_send_req] (0x0100): Sending request with the following data: (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): command: SSS_PAM_ACCT_MGMT (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): domain: domain.com (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): user: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): service: sudo (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): tty: /dev/pts/1 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): ruser: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): rhost: not set (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): authtok type: 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): newauthtok type: 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): priv: 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): cli_pid: 5470 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_print_data] (0x0100): logon name: x_james.harrison (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_add_timeout] (0x2000): 0x246dd70 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_dom_forwarder] (0x0100): pam_dp_send_req returned 0 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_remove_timeout] (0x2000): 0x246dd70 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_dispatch] (0x4000): dbus conn: 0x2467e60 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_dp_process_reply] (0x0200): received: [0 (Success)][domain.com] (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_reply] (0x0200): pam_reply called with result [0]: Success. (Thu Jan 5 12:10:17 2017) [sssd[pam]] [pam_reply] (0x0200): blen: 35 (Thu Jan 5 12:10:17 2017) [sssd[pam]] [reset_idle_timer] (0x4000): Idle timer re-set for client [0x2466e50][19] ==> auth.log <== Jan 5 12:10:17 pul-lp-sql-00 sudo: x_james.harrison : user NOT authorized on host ; TTY=pts/1 ; PWD=/home/x_james.harrison ; USER=root ; COMMAND=/bin/bash ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:17 2017) [sssd[pam]] [reset_idle_timer] (0x4000): Idle timer re-set for client [0x2466e50][19] ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:17 2017) [sssd[sudo]] [reset_idle_timer] (0x4000): Idle timer re-set for client [0x1c0e770][18] ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:17 2017) [sssd[pam]] [client_recv] (0x0200): Client disconnected! ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:17 2017) [sssd[sudo]] [client_recv] (0x0200): Client disconnected! ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:17 2017) [sssd[pam]] [client_destructor] (0x2000): Terminated client [0x2466e50][19] ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:17 2017) [sssd[sudo]] [client_destructor] (0x2000): Terminated client [0x1c0e770][18] ==> sssd/sssd.log <== (Thu Jan 5 12:10:20 2017) [sssd] [service_send_ping] (0x2000): Pinging domain.com (Thu Jan 5 12:10:20 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8f0790 (Thu Jan 5 12:10:20 2017) [sssd] [service_send_ping] (0x2000): Pinging nss (Thu Jan 5 12:10:20 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8e9b30 (Thu Jan 5 12:10:20 2017) [sssd] [service_send_ping] (0x2000): Pinging sudo (Thu Jan 5 12:10:20 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8de810 (Thu Jan 5 12:10:20 2017) [sssd] [service_send_ping] (0x2000): Pinging pam (Thu Jan 5 12:10:20 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8efea0 (Thu Jan 5 12:10:20 2017) [sssd] [service_send_ping] (0x2000): Pinging ssh ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:20 2017) [sssd[sudo]] [sbus_dispatch] (0x4000): dbus conn: 0x1c06b10 (Thu Jan 5 12:10:20 2017) [sssd[sudo]] [sbus_dispatch] (0x4000): Dispatching. ==> sssd/sssd.log <== (Thu Jan 5 12:10:20 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8e9cb0 (Thu Jan 5 12:10:20 2017) [sssd] [service_send_ping] (0x2000): Pinging pac ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:20 2017) [sssd[sudo]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.service.ping on path /org/freedesktop/sssd/service ==> sssd/sssd.log <== (Thu Jan 5 12:10:20 2017) [sssd] [sbus_add_timeout] (0x2000): 0x8d8720 ==> sssd/sssd_sudo.log <== (Thu Jan 5 12:10:20 2017) [sssd[sudo]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:20 2017) [sssd[pam]] [sbus_dispatch] (0x4000): dbus conn: 0x2464b20 (Thu Jan 5 12:10:20 2017) [sssd[pam]] [sbus_dispatch] (0x4000): Dispatching. ==> sssd/sssd.log <== ==> sssd/sssd_sudo.log <== ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:20 2017) [sssd[pam]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.service.ping on path /org/freedesktop/sssd/service ==> sssd/sssd.log <== (Thu Jan 5 12:10:20 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8e9b30 ==> sssd/sssd_ssh.log <== (Thu Jan 5 12:10:20 2017) [sssd[ssh]] [sbus_dispatch] (0x4000): dbus conn: 0xe9ab20 (Thu Jan 5 12:10:20 2017) [sssd[ssh]] [sbus_dispatch] (0x4000): Dispatching. ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:20 2017) [sssd[pam]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit ==> sssd/sssd_ssh.log <== (Thu Jan 5 12:10:20 2017) [sssd[ssh]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.service.ping on path /org/freedesktop/sssd/service ==> sssd/sssd.log <== (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8dd870 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. ==> sssd/sssd_ssh.log <== (Thu Jan 5 12:10:20 2017) [sssd[ssh]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit ==> sssd/sssd.log <== (Thu Jan 5 12:10:20 2017) [sssd] [ping_check] (0x2000): Service nss replied to ping ==> sssd/sssd_ssh.log <== ==> sssd/sssd.log <== (Thu Jan 5 12:10:20 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8f0790 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8d7c00 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:20 2017) [sssd] [ping_check] (0x2000): Service domain.com replied to ping (Thu Jan 5 12:10:20 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8de810 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8e21f0 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:20 2017) [sssd] [ping_check] (0x2000): Service sudo replied to ping (Thu Jan 5 12:10:20 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8efea0 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8e6d90 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:20 2017) [sssd] [ping_check] (0x2000): Service pam replied to ping (Thu Jan 5 12:10:20 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8d8720 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8e4da0 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:20 2017) [sssd] [ping_check] (0x2000): Service pac replied to ping (Thu Jan 5 12:10:20 2017) [sssd] [sbus_remove_timeout] (0x2000): 0x8e9cb0 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): dbus conn: 0x8dd340 (Thu Jan 5 12:10:20 2017) [sssd] [sbus_dispatch] (0x4000): Dispatching. (Thu Jan 5 12:10:20 2017) [sssd] [ping_check] (0x2000): Service ssh replied to ping ==> sssd/sssd_pam.log <== (Thu Jan 5 12:10:22 2017) [sssd[pam]] [pam_initgr_cache_remove] (0x2000): [x_james.harrison] removed from PAM initgroup cache root@pul-lp-sql-00:/var/log# fg tail -f auth.log syslog sssd/*.log ^C root@pul-lp-sql-00:/var/log#
-- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
