> while on 26.04 it uses invoke-rc.d --skip-systemd-native which appears to fire immediately
Actually, invoke-rc.d with that argument will do nothing if it detects that sssd has a native systemd unit, so this is a noop for the sssd case. Indeed the problem is related to ordering. First all packages are unpacked and their files placed on disk. This removes any capabilities from them. Then sssd-common is "set up", which means its postinst is run. That restarts services. At this time, ldap_child has no capability. Then sssd-krb5-common runs its postinst, which sets the capabilities on ldap_child, but it's too late now. I'll evaluate some options. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2155002 Title: Update to SSSD 2.12.0-1ubuntu5 breaks AD join due to SSSD inability to read keytab To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/sssd/+bug/2155002/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
