Hi I have this case I'm working on and it's driving me crazy. I try to setup something like this:
AD setup is like this with be-directional approbation: - example.com \-- chlld.example.com Have users registered in example.com => [email protected] computers are registered in child.eample.com => [email protected] I want to connect with user1 to server1 with ssh and sssd. Before any debug process I want to make sure this is possible because i'm running in circle. When setting up sssd et krb5 confs with child.example.com: -- sssd nss says: example.com is created as a subdomain of child.example.com -- but AD backend is online for child.example.com and i can query it -- the query for [email protected] works great but the AD server in child.example.com does not know the user and can't query his master AD server. When setting up sssd et krb5 confs with example.com -- it attempts kinit with host/server1.child.example.com and fails to get a tgt. AD is set to offline and it cannot query it. When trying to mix up theses solutions I find something similar to the cases above. If it is possible can someone point me towards the configuration I'm suppose to make. Don't know if it's the place but GG for the debugging options provides with SSSD, it is clear and powerful. _______________________________________________ sssd-users mailing list -- [email protected] To unsubscribe send an email to [email protected]
