Re: [Freeipa-users] Failed to connect, going offline (5 [Input/output error])

Hi, Do you need any other information ? On Fri, Jan 6, 2017 at 12:51 PM, rajat gupta wrote: > sssd.conf from the ilt-gif-ipa02 > > [root@ilt-gif-ipa02 ~]# cat /etc/sssd/sssd.conf > [domain/ipa.preprod.local] > > cache_credentials = True > krb5_store_password_if_offline =

[Freeipa-users] Kerberos Clock Skew too great

Hi, I am using a Freeipa 4.2.0 server. I sometimes see, "clock skew too great" errors in /var/log/krb5kdc.log. And when this happens, usually logins or new ipa-cleint-install fails. When I checked on one of the hosts for which the clock skew was reported, #> ntpq -p remote refid

[Freeipa-users] ipa_server and ipa_backup_server failover time

Hi, all The purpose of this email is to know more about timeout ipa server failover. Env: # rpm -qa | grep sssd sssd-krb5-common-1.13.0-40.el7_2.12.x86_64 python-sssdconfig-1.13.0-40.el7_2.12.noarch sssd-ipa-1.13.0-40.el7_2.12.x86_64 sssd-client-1.13.0-40.el7_2.12.x86_64

Re: [Freeipa-users] Effect of reversing trust relationship

On to, 05 tammi 2017, William Muriithi wrote: Hello, Curious, two weeks ago, we established a two way trust between AD and FreeIPA. This has been working fine till yesterday when AD started having DNS issues. I am 99% certain trust had nothing to do with DNS issue, but want to reverse the

Re: [Freeipa-users] [sssd[pam]] [pam_reply] (0x0200): pam_reply called with result [6]: Permission denied.

On 1/8/2017 12:22 AM, TomK wrote: Hey All, Wanted to tap your experience a bit. Do you recall under which conditions this error can be triggered under? (Sun Jan 8 00:15:17 2017) [sssd[pam]] [pam_dp_process_reply] (0x0200): received: [6 (Permission denied)][mds.xyz] (Sun Jan 8 00:15:17 2017)