Michael I have the same number of users and groups present in output of "getent passwd" and "getent group" vs host which is configured with pam_ldap and ldap_nss but not sssd.
If I specify in /etc/nsswitch.conf, shown below, thus removing order "files ldap sss," then restarting sssd and nslcd things still work. passwd: files sss shadow: files sss group: files sss So is there *really* an issue? The OS: Red Hat Enterprise Linux AS release 4 (Nahant Update 3) The LDAP: OpenLDAP: slapd 2.2.13 (Aug 18 2005 22:23:00) Thanks again for so much assistance. Doug Thanks, Douglas Duckworth, MSc, LFCS HPC System Administrator Physiology and Biophysics Weill Cornell Medicine E: [email protected] O: 212-746-5454 F: 212-746-8690 On Tue, Aug 16, 2016 at 6:37 PM, Michael Ströder <[email protected]> wrote: > Douglas Duckworth wrote: > > Thanks so much for the assistance. > > > > Added: > > > > ldap_disable_paging = true > > > > Does this mean the problem's resolved? > > > > I login successfully then error repeats.... > > So the issue is likely not solved. ;-) > > Which LDAP server is this? > > Note that you might run into a size or time limit while retrieving all > entries. > I'd check with ldapsearch command-line tool binding as the very same > identity > whether you can retrieve all needed entries via LDAP. > > Ciao, Michael. > >
_______________________________________________ sssd-users mailing list [email protected] https://lists.fedorahosted.org/admin/lists/[email protected]
