On Wed, Apr 03, 2013 at 09:34:22AM -0400, Sutton, Harry (GSSE) wrote: > On 04/03/2013 08:20 AM, Jakub Hrozek wrote: > >Hm, interesting, I would only expect this message if cache_credentials > >was set to False > > > >Are you sure the user suttonh you are logging in as has logged in before > >to establish the cached credentials? This is how you can be completely > >sure: > > * install the ldb-tools package > > * run: > > $ ldbsearch -H /var/lib/sss/db/cache_AMERICAS.CPQCORP.NET.ldb > > name=suttonh > > this search should yield the cached entry for the user named suttonh > > and you should see a cachedPassword attribute that contains the > > salted password hash > > > >If the password hash is there, can you check the debug logs > >(/var/log/sssd/sssd_AMERICAS.CPQCORP.NET.log) if there is anything of > >interest? > > > > > I installed ldb-tools and ran the ldbsearch query; it came up empty, > so I confirmed the user is currently logged in (which is what I > would expect would trigger the cache entry...?) > > [root@tobyws ~]# ldbsearch -H /var/lib/sss/db/cache_AMERICAS.CPQCORP.NET.ldb > name=suttonh > asq: Unable to register control with rootdse! > # returned 0 records > # 0 entries > # 0 referrals
Ok, the name might be different (cased perhaps), can you try searching all the entries? ldbsearch -H /var/lib/sss/db/cache_AMERICAS.CPQCORP.NET.ldb (I might have gotten the ldb file location wrong, tab completion is your friend) _______________________________________________ sssd-users mailing list [email protected] https://lists.fedorahosted.org/mailman/listinfo/sssd-users
