Hey,
Need some help here, I am unable to log-in. when trying to use kinit on my
user, I am getting an error:
kinit: Failed to store credentials: Internal credentials cache error while
getting initial credentials
sssd runs. log shows:
Oct 13 20:32:59 user.mydomain.com krb5_child[4846]: Internal credentials cache
error
sssd_kcm.log states:
* (2023-10-13 21:17:43): [kcm] [local_db_check_peruid_number_of_secrets]
(0x0040): [CID#8708] Cannot store any more secrets for this client (basedn
cn=190741,cn=persistent,cn=kcm) as the maximum allowed limit (66) has been
reached
** BACKTRACE DUMP ENDS HERE
*
(2023-10-13 21:17:43): [kcm] [sss_sec_update] (0x0040): [CID#8708]
local_db_check_number_of_secrets failed [1432158289]: The maximum number of
stored secrets has been reached
(2023-10-13 21:17:43): [kcm] [sec_update] (0x0040): [CID#8708] Cannot write the
secret [1432158289]: The maximum number of stored secrets has been reached
** PREVIOUS MESSAGE WAS TRIGGERED BY THE FOLLOWING
BACKTRACE:
* (2023-10-13 21:17:43): [kcm] [sss_sec_update] (0x0040): [CID#8708]
local_db_check_number_of_secrets failed [1432158289]: The maximum number of
stored secrets has been reached
* (2023-10-13 21:17:43): [kcm] [sec_update] (0x0040): [CID#8708] Cannot
write the secret [1432158289]: The maximum number of stored secrets has been
reached
** BACKTRACE DUMP ENDS HERE
*
(2023-10-13 21:17:43): [kcm] [kcm_ccdb_mod_done] (0x0040): [CID#8708] Failed to
create ccache [1432158289]: The maximum number of stored secrets has been
reached
(2023-10-13 21:17:43): [kcm] [kcm_op_set_kdc_offset_mod_done] (0x0040):
[CID#8708] Cannot modify ccache [1432158289]: The maximum number of stored
secrets has been reached
** PREVIOUS MESSAGE WAS TRIGGERED BY THE FOLLOWING
BACKTRACE:
* (2023-10-13 21:17:43): [kcm] [kcm_ccdb_mod_done] (0x0040): [CID#8708]
Failed to create ccache [1432158289]: The maximum number of stored secrets has
been reached
* (2023-10-13 21:17:43): [kcm] [kcm_op_set_kdc_offset_mod_done] (0x0040):
[CID#8708] Cannot modify ccache [1432158289]: The maximum number of stored
secrets has been reached
** BACKTRACE DUMP ENDS HERE
*
(2023-10-13 21:17:43): [kcm] [kcm_cmd_done] (0x0040): [CID#8708] op receive
function failed [1432158289]: The maximum number of stored secrets has been
reached
(2023-10-13 21:17:43): [kcm] [kcm_cmd_request_done] (0x0040): [CID#8708] KCM
operation failed [1432158289]: The maximum number of stored secrets has been
reached
** PREVIOUS MESSAGE WAS TRIGGERED BY THE FOLLOWING
BACKTRACE:
* (2023-10-13 21:17:43): [kcm] [kcm_cmd_done] (0x0040): [CID#8708] op
receive function failed [1432158289]: The maximum number of stored secrets has
been reached
* (2023-10-13 21:17:43): [kcm] [kcm_cmd_request_done] (0x0040): [CID#8708]
KCM operation failed [1432158289]: The maximum number of stored secrets has
been reached
** BACKTRACE DUMP ENDS HERE
*
KRB5_TRACE=/dev/stderr ipa --debug ping
ipa: DEBUG: importing plugin module ipaclient.plugins.trust
ipa: DEBUG: importing plugin module ipaclient.plugins.user
ipa: DEBUG: importing plugin module ipaclient.plugins.vault
ipa: DEBUG: trying https://workstation.mydomain.com/ipa/json
ipa: DEBUG: Created connection context.rpcclient_140066561958480
ipa: DEBUG: raw: ping(version='2.252')
ipa: DEBUG: ping(version='2.252')
ipa: DEBUG: [try 1]: Forwarding 'ping/1' to json server
'https://workstation.mydomain.com/ipa/json'
ipa: DEBUG: New HTTP connection (workstation.mydomain.com)
ipa: DEBUG: HTTP connection destroyed (workstation.mydomain.com)
Traceback (most recent call last):
File "/usr/lib/python3.11/site-packages/ipalib/rpc.py", line 644, in
get_auth_info
response = self._sec_context.step()
File "/usr/lib/python3.11/site-packages/decorator.py", line 232, in fun
return caller(func, *(extras + args), **kw)
File "/usr/lib64/python3.11/site-packages/gssapi/_utils.py", line 165, in
check_last_err
return func(self, *args, **kwargs)
^^^
File "/usr/lib/python3.11/site-packages/decorator.py", line 232, in fun
return caller(func, *(extras + args), **kw)
File "/usr/lib64/python3.11/site-packages/gssapi/_utils.py", line 131, in
catch_and_return_token
return func(self, *args, **kwargs)
^^^
File "/usr/lib64/python3.11/site-packages/gssapi/sec_contexts.py", line 584,
in step
return self._initiator_step(token=token)
^
File "/usr/lib64/python3.11/site-packages/gssapi/sec_contexts.py", line 606,
in