Hi,
I am using FILE. From my /etc/krb5.conf: default_ccache_name =
FILE:/tmp/krb5cc_%{uid}
I am also not using krb5_renew_interval. Maybe someone else is causing these
tickets to be destroyed.
Thomas
________________________________________
From: Lukas Slebodnik <[email protected]>
Sent: Wednesday, October 11, 2017 12:11 PM
To: End-user discussions about the System Security Services Daemon
Subject: [SSSD-users] Re: debugging sssd / autofs problem
On (11/10/17 14:44), Thomas Beaudry wrote:
>Hi Lukas,
>
>I'm sorry i wasn't clear enough, the problem has been evolving, I no longer
>think there is an issue with autofs
>
>Essentially what is happening on 1 machine is that kerebos tickets are getting
>destroyed before their expiration. These tickets should be valid for 10
>hours, but after 30+ mins, when a user types klist, they don't see their
>ticket anymore.
>
What type of kerberos ccache do you use?
FILE, DIR, KEYRING ...
Because sssd does not call equivalent to "kdestroy"
It can refresh krb5 ticket if it is online and option
krb5_renew_interval is configured
You can find more details in man sssd-krb5.
LS
_______________________________________________
sssd-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
_______________________________________________
sssd-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
