Here's another possible clue. I have a machine running sssd 1.8.2-0ubuntu1. On startup with debug_level = 0x470 it logs the following.
(Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_get_groups_next_base] (0x0400): Searching for groups with base [dc=cmpny,dc=com] (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x0400): calling ldap_search_ext with [(&(objectclass=group)(msSFU30Name=*)(&(gidNumber=*)(!(gidNumber=0))))][dc=cmpny,dc=com]. (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_done] (0x0400): Search result: Success(0), no errmsg set (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_get_groups_process] (0x0400): Search for groups, returned 4 results. (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group devel (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group publish (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group domadmins (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group domusers (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_grpmem] (0x0400): Storing members for group devel (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_grpmem] (0x0400): Storing members for group publish (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_grpmem] (0x0400): Storing members for group domadmins (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_grpmem] (0x0400): Storing members for group domusers (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_process_group_send] (0x0040): No Members. Done! (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group devel (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group publish (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group domadmins (Sat Sep 15 21:16:05 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group domusers Sssd 1.9.0~rc1-0ubuntu1 logs the following. (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_get_groups_next_base] (0x0400): Searching for groups with base [dc=cmpny,dc=com] (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_step] (0x0400): calling ldap_search_ext with [(&(objectclass=group)(msSFU30Name=*)(&(gidNumber=*)(!(gidNumber=0))))][dc=cmpny,dc=com]. (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_get_generic_ext_done] (0x0400): Search result: Success(0), no errmsg set (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_get_groups_process] (0x0400): Search for groups, returned 4 results. (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group devel (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group publish (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group domadmins (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group domusers (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_grpmem] (0x0400): Storing members for group devel (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_grpmem] (0x0400): Storing members for group publish (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_grpmem] (0x0040): Failed to save user domadmins (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_groups] (0x0040): Failed to store group 2 members. (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_grpmem] (0x0400): Storing members for group domusers (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_process_group_send] (0x0040): No Members. Done! (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group devel (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group publish (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group domadmins (Sat Sep 15 21:10:21 2012) [sssd[be[SAMBA]]] [sdap_save_group] (0x0400): Storing info for group domusers Notice that sdap_save_groups reported a failure for one of the four groups. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1049186 Title: sssd forgets group memberships of foo when foo logs in; remembers them after ten seconds after restarting sssd To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/sssd/+bug/1049186/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
