[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: getent passwd only catch local user passwd
On Thu, Apr 30, 2015 at 01:06:54AM +0000, Yingbo Li wrote:
> If you find anything wrong, please let me know. I can only configure the client side, the LDAP server controlled by IT.
You need to find out what each component in the stack is doing.
If you have access to the LDAP server logs, try looking there to see what
operations are performed. If not, consider setting up your own LDAP server so that
you can run it at a high log-level.
Another way to check LDAP operations is to use tcpdump and/or wireshark
to capture and analyse network traffic. You will need to disable TLS for
that to be useful.
There is a fair amount of advice about debugging SSSD issues on the web,
e.g.:
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Deployment_Guide/SSSD-Troubleshooting.html
https://fedoraproject.org/wiki/How_to_debug_SSSD_problems
I would advise turning OFF nscd. It is not helpful when sssd is in use, and can
cause great confusion and problems of its own.
Andrew
--
-----------------------------------------------------------------------
| From Andrew Findlay, Skills 1st Ltd |
| Consultant in large-scale systems, networks, and directory services |
| http://www.skills-1st.co.uk/ +44 1628 782565 |
-----------------------------------------------------------------------