-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Fri 17 May 2013 05:09:17 PM EDT, John Bossert wrote:
Am fighting a battle with sssd/ldap and udev (RHEL6/Centos6).
I have a udev rule that sets disk ownership to oracle/asmadmin at boot. The user oracle and group asmadmin are registered in ldap.
Other (udev) forums suggest that udev is executing before networking is enabled, ergo ldap is unreachable and the disks remain owned by root/root. Hmmm, could sssd caching be a solution?
Following the various tutorials, I’ve enabled sssd, with “cache_credentials = TRUE” in sssd.conf, but I’m still seeing the same results. Either sssd caching isn’t happening, or udev isn’t making use of it.
# getent --service=sss passwd oracle
oracle:*:550:400:Oracle User:/home/oracle:/bin/bash
# getent --service=sss group asmadmin
asmadmin:*:403:oracle
Any guidance, either to solve the problem else to obtain some useful diagnostics?
You haven't mentioned what version of SSSD you are using on which version of RHEL6. SSSD *should* be starting before udev on RHEL 6.4 (I'm not sure about 6.3 and older: I know it used to start too late and that was changed).
When you are doing those 'getent' calls, why are you using --service? If you omit that, are you getting different results? If so, it means that your /etc/nsswitch.conf is misconfigured.