[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Cached user info?
- To: openldap-technical@openldap.org
- Subject: Re: Cached user info?
- From: Braden McDaniel <braden@endoframe.com>
- Date: Mon, 07 May 2012 02:04:34 -0400
- Dkim-signature: v=1; a=rsa-sha1; c=relaxed; d=endoframe.com; h= message-id:subject:from:to:date:in-reply-to:references :content-type:content-transfer-encoding:mime-version; s= endoframe.com; bh=sIFKEH/FLPmvAcaA1tLXRbAbRm4=; b=CvAZl77loQOnz1 rrbdbjXq2pjZ0odx9/hFbemMH/Lm1Xk9TH5t66a/ggSg48j0WZqWmJ3tDAK/Dbpi 0HZGN9ri1NKMFapF8vTSzXI3euGmudk0aG6SSWiKd0nCURqx7dquU7+Jee0zuEp5 ClL4+z1Kk0ms9y+4IwxeRT7OIZXwQ=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=endoframe.com; h=message-id :subject:from:to:date:in-reply-to:references:content-type :content-transfer-encoding:mime-version; q=dns; s=endoframe.com; b=TBibVUrEbMcrlN1DQGTopFYDirNiYI0iGvHDCk+IYeCeiAY3sdSIvF/XzdaVA UrOhdKq4VVT4S9XzllDRdEYuvtWWtOIEuSEu2OU0Q5OXdpL+Rw0CtDarO7KvjFP5 aug9ZffHTzUfL0E2p6w/mlS3JDhXO3NoLKypTs5OaCFZT8=
- In-reply-to: <6C447584419BFE4E83D46E88F81314869E033D58A5@EXCH07-05.apollogrp.edu>
- References: <6C447584419BFE4E83D46E88F81314869E033D58A5@EXCH07-05.apollogrp.edu>
On Sun, 2012-05-06 at 22:21 -0700, Chris Jacobs wrote:
> Or restarted sssd?
I've restarted both the client machine and the server; so, yes.
> What is your OS?
Fedora 17 prerelease.
> Have you googled for ldap cache and your os?
I have. I haven't come up with much, so far.
Might pam be caching any of this stuff?
> What else have you tried?
If I remove the user from the group in LDAP, that is reflected in the
output of "groups". But, when I add it back, "groups" shows the (local)
group associated with the old GID, not the new one.
So it's as if something on the client side has gotten the group *name*
from LDAP and has locally cached an association with the old GID. The
old GID is getting passed along and is associated with the group that it
maps to locally by a tool like "groups".
--
Braden McDaniel <braden@endoframe.com>