Re: getent passwd only catch local user passwd

[Jakub Hrozek <jakub.hrozek@posteo.se>]

On 30.04.2015 13:56, Andrew Findlay wrote:
> On Thu, Apr 30, 2015 at 01:06:54AM +0000, Yingbo Li wrote:
>
> > If you find anything wrong, please let me know. I can only configure 
> > the client side, the LDAP server controlled by IT.
>
> You need to find out what each component in the stack is doing.
> If you have access to the LDAP server logs, try looking there to see 
> what
> operations are performed. If not, consider setting up your own LDAP
> server so that
> you can run it at a high log-level.
>
> Another way to check LDAP operations is to use tcpdump and/or wireshark
> to capture and analyse network traffic. You will need to disable TLS 
> for
> that to be useful.
>
> There is a fair amount of advice about debugging SSSD issues on the 
> web,
> e.g.:
>
> https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Deployment_Guide/SSSD-Troubleshooting.html
> https://fedoraproject.org/wiki/How_to_debug_SSSD_problems

There's also (fairly recent) 
https://fedorahosted.org/sssd/wiki/Troubleshooting

Either way, I suspect this thread is off-topic for this list. The 
sssd-users list might be a better match:
https://lists.fedorahosted.org/mailman/listinfo/sssd-users

> I would advise turning OFF nscd. It is not helpful when sssd is in use, 
> and can
> cause great confusion and problems of its own.
>
> Andrew