On 09/22/2016 12:40 PM, Jakub Hrozek wrote:
Yes, because your ldapsearch authenticates as a user DN, but sssd
doesn't authenticate by default.

Try adding:
ldap_sasl_mech = gssapi
krb5_server = algol.beta
krb5_realm = BETA

to your sssd.conf.

I wonder if this is visible in server logs for future..

Thanks Jakub, it works now.

So, ticket #3186 isn't bug.

Would you like to have similiar messages about filter
and attributes in ldap answer in our logs?


Petr^4 Čech
sssd-devel mailing list -- sssd-devel@lists.fedorahosted.org
To unsubscribe send an email to sssd-devel-le...@lists.fedorahosted.org

Reply via email to