hey all, Im new to sssd and ldap so be gentle =)
I've followed some guides on how to set up sssd ldap client authentication on Centos 6.3 but mine doesnt seem to be working here is my sssd.conf
----- [sssd] config_file_version = 2 services = nss, pam domains = default
[nss] filter_users = root,ldap,named,avahi,haldaemon,dbus,radiusd,news,nscd
[pam]
[domain/default] auth_provider = ldap debug_level = 9 enumerate = True cache_credentials = True chpass_provider = ldap entry_cache_timeout = 600 krb5_realm = EXAMPLE.COM krb5_server = kerberos.example.com ldap_chpass_uri = ldaps://xx.xx.xx.xx:<PORT>/ ldap_force_upper_case_realm = True id_provider = ldap ldap_group_member = uniquemember ldap_group_object_class = group ldap_id_use_start_tls = False ldap_pwd_policy = none ldap_search_base = ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example ldap_schema = rfc2307bis ldap_tls_cacertdir = /etc/openldap/cacerts ldap_tls_reqcert = never ldap_uri = ldaps://xx.xx.xx.xx:<PORT>/ ldap_user_gecos = displayName ldap_user_home_directory = unixHomeDirectory ldap_user_name = cn ldap_user_object_class = user
------
ldapsearcg -z 'cn=username' comes back with all the information about the user
but id username takes a really long time and then returns no such user.
here is a piece of the log:
-------------------------------------------------------------------------- (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [server_setup] (0x0400): CONFDB: /var/lib/sss/db/config.ldb (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [recreate_ares_channel] (0x0100): Initializing new c-ares channel (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [resolv_get_family_order] (0x1000): Lookup order: ipv4_first (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [fo_context_init] (0x0400): Created new fail over context, retry timeout is 30 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [confdb_get_domain_internal] (0x1000): pwd_expiration_warning is -1 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sysdb_domain_init_internal] (0x0200): DB File for default: /var/lib/sss/db/cache_default.ldb (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x14778c0
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x148d4d0
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Destroying timer event 0x148d4d0 "ltdb_timeout"
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Ending timer event 0x14778c0 "ltdb_callback"
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x0400): asq: Unable to register control with rootdse! (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x148f840
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x148d4d0
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Destroying timer event 0x148d4d0 "ltdb_timeout"
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Ending timer event 0x148f840 "ltdb_callback"
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x14778c0
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x1490390
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Destroying timer event 0x1490390 "ltdb_timeout"
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Ending timer event 0x14778c0 "ltdb_callback"
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_init_connection] (0x0200): Adding connection 14905E0 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_add_watch] (0x2000): 0x1490a30/0x148f9e0 (15), -/W (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x1490a30/0x148d2f0 (15), R/- (disabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [monitor_common_send_id] (0x0100): Sending ID: (%BE_default,1) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_add_timeout] (0x2000): 0x1490db0 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x1490a30/0x148d2f0 (15), R/- (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x1490a30/0x148f9e0 (15), -/W (disabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sss_names_init] (0x0100): Using re [(?P<name>[^@]+)@?(?P<domain>[^@]*$)]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [create_socket_symlink] (0x1000): Symlinking the dbus path /var/lib/sss/pipes/private/sbus-dp_default.639 to a link /var/lib/sss/pipes/private/sbus-dp_default (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_new_server] (0x0400): D-BUS Server listening on unix:path=/var/lib/sss/pipes/private/sbus-dp_default.639,guid=604ced1a38c1615f3905892500000097 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_add_watch] (0x2000): 0x148cec0/0x148da70 (16), R/- (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x1000): Loading backend [ldap] with path [/usr/lib64/sssd/libsss_ldap.so]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_uri has value ldaps://xx.xx.xx.xx:<port>/ (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_backup_uri has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_search_base has value ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_default_bind_dn has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_default_authtok_type has value password (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_default_authtok has no binary value. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_search_timeout has value 6 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_network_timeout has value 6 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_opt_timeout has value 6 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_tls_reqcert has value never (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_user_search_base has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_user_search_scope has value sub (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_user_search_filter has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_group_search_base has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_group_search_scope has value sub (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_group_search_filter has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_service_search_base has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sudo_search_base has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sudo_full_refresh_interval has value 21600 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sudo_smart_refresh_interval has value 900 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sudo_use_host_filter is TRUE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sudo_hostnames has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sudo_ip has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sudo_include_netgroups is TRUE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sudo_include_regexp is TRUE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_autofs_search_base has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_schema has value rfc2307bis (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_offline_timeout has value 60 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_force_upper_case_realm is FALSE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_enumeration_refresh_timeout has value 300 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_purge_cache_timeout has value 10800 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_tls_cacert has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_tls_cacertdir has value /etc/openldap/cacerts (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_tls_cert has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_tls_key has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_tls_cipher_suite has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_id_use_start_tls is FALSE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_id_mapping is FALSE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sasl_mech has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sasl_authid has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sasl_realm has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sasl_minssf has value -1 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_krb5_keytab has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_krb5_init_creds is TRUE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option krb5_server has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option krb5_backup_server has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option krb5_realm has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option krb5_canonicalize is TRUE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_pwd_policy has value none (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_referrals is TRUE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option account_cache_expiration has value 0 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_dns_service_name has value ldap (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_krb5_ticket_lifetime has value 86400 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_access_filter has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_netgroup_search_base has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_group_nesting_level has value 2 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_deref has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_account_expire_policy has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_access_order has value filter (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_chpass_uri has value ldaps://xx.xx.xx.xx:<port>/ (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_chpass_backup_uri has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_chpass_dns_service_name has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_chpass_update_last_change is FALSE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_enumeration_search_timeout has value 60 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_auth_disable_tls_never_use_in_production is FALSE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_page_size has value 1000 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_deref_threshold has value 10 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_sasl_canonicalize is FALSE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_connection_expire_timeout has value 900 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_disable_paging is FALSE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_idmap_range_min has value 200000 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_idmap_range_max has value 2000200000 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_idmap_range_size has value 200000 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_idmap_autorid_compat is FALSE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_idmap_default_domain has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_idmap_default_domain_sid has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_groups_use_matching_rule_in_chain is FALSE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [dp_get_options] (0x0400): Option ldap_initgroups_use_matching_rule_in_chain is FALSE (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldap_get_options] (0x0400): Option ldap_user_search_base set to ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldap_get_options] (0x0400): Option ldap_group_search_base set to ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldap_get_options] (0x0400): Option ldap_netgroup_search_base set to ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldap_get_options] (0x0400): Option ldap_service_search_base set to ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [common_parse_search_base] (0x0100): Search base added: [DEFAULT][ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example][SUBTREE][] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [common_parse_search_base] (0x0100): Search base added: [USER][ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example][SUBTREE][] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [common_parse_search_base] (0x0100): Search base added: [GROUP][ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example][SUBTREE][] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [common_parse_search_base] (0x0100): Search base added: [NETGROUP][ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example][SUBTREE][] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [common_parse_search_base] (0x0100): Search base added: [SERVICE][ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example][SUBTREE][] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_entry_usn has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_rootdse_last_usn has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_object_class has value user (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_name has value cn (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_pwd has value userPassword (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_uid_number has value uidNumber (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_gid_number has value gidNumber (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_gecos has value displayName (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_home_directory has value unixHomeDirectory (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_shell has value loginShell (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_principal has value krbPrincipalName (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_fullname has value cn (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_member_of has value memberOf (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_uuid has value nsUniqueId (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_objectsid has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_primary_group has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_modify_timestamp has value modifyTimestamp (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_entry_usn has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_shadow_last_change has value shadowLastChange (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_shadow_min has value shadowMin (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_shadow_max has value shadowMax (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_shadow_warning has value shadowWarning (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_shadow_inactive has value shadowInactive (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_shadow_expire has value shadowExpire (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_shadow_flag has value shadowFlag (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_krb_last_pwd_change has value krbLastPwdChange (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_krb_password_expiration has value krbPasswordExpiration (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_pwd_attribute has value pwdAttribute (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_authorized_service has value authorizedService (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_ad_account_expires has value accountExpires (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_ad_user_account_control has value userAccountControl (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_ns_account_lock has value nsAccountLock (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_authorized_host has value host (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_nds_login_disabled has value loginDisabled (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_nds_login_expiration_time has value loginExpirationTime (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_nds_login_allowed_time_map has value loginAllowedTimeMap (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_user_ssh_public_key has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_group_object_class has value group (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_group_name has value cn (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_group_pwd has value userPassword (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_group_gid_number has value gidNumber (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_group_member has value uniquemember (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_group_uuid has value nsUniqueId (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_group_objectsid has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_group_modify_timestamp has value modifyTimestamp (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_group_entry_usn has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_netgroup_object_class has value nisNetgroup (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_netgroup_name has value cn (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_netgroup_member has value memberNisNetgroup (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_netgroup_triple has value nisNetgroupTriple (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_netgroup_uuid has value nsUniqueId (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_netgroup_modify_timestamp has value modifyTimestamp (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_service_object_class has value ipService (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_service_name has value cn (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_service_port has value ipServicePort (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_service_proto has value ipServiceProtocol (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_service_entry_usn has no value (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [krb5_try_kdcip] (0x0100): No KDC found in configuration, trying legacy option (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sssm_ldap_id_init] (0x1000): Service name for discovery set to ldap (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [fo_new_service] (0x0400): Creating new service 'LDAP' (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_urls_init] (0x0400): Added URI ldaps://xx.xx.xx.xx:<port>/ (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [fo_add_server] (0x0080): Adding new server 'xx.xx.xx.xx', to service 'LDAP' (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Added timed event "ltdb_callback": 0x149a4b0
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Added timed event "ltdb_timeout": 0x149a5a0
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Destroying timer event 0x149a5a0 "ltdb_timeout"
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldb] (0x4000): Ending timer event 0x149a4b0 "ltdb_callback"
(Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldap_id_enumerate_set_timer] (0x0400): Scheduling next enumeration at 1366735849.298624 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_process_init] (0x2000): ID backend target successfully loaded from provider [ldap]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x1000): Backend [ldap] already loaded. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sssm_ldap_id_init] (0x2000): Re-using sdap_id_ctx for this provider (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_process_init] (0x2000): AUTH backend target successfully loaded from provider [ldap]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x0200): no module name found in confdb, using [permit]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_process_init] (0x2000): ACCESS backend target successfully loaded from provider [permit]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x1000): Backend [ldap] already loaded. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sssm_ldap_id_init] (0x2000): Re-using sdap_id_ctx for this provider (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [fo_new_service] (0x0400): Creating new service 'LDAP_CHPASS' (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_urls_init] (0x0400): Added URI ldaps://xx.xx.xx.xx:<port>/ (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [fo_add_server] (0x0080): Adding new server 'xx.xx.xx.xx', to service 'LDAP_CHPASS' (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_process_init] (0x2000): CHPASS backend target successfully loaded from provider [ldap]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_process_init_sudo] (0x0400): SUDO is not listed in services, disabling SUDO module. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_process_init] (0x0080): No SUDO module provided for [default] !! (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x0200): no module name found in confdb, using [ldap]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x1000): Backend [ldap] already loaded. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sssm_ldap_id_init] (0x2000): Re-using sdap_id_ctx for this provider (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_autofs_init] (0x2000): Initializing autofs LDAP back end (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [ldap_get_autofs_options] (0x0200): Option ldap_autofs_search_base set to ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [common_parse_search_base] (0x0100): Search base added: [AUTOFS][ou=organizationunit3,ou=organizationunit2,ou=organizationunit1,o=example][SUBTREE][] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_autofs_map_object_class has value automountMap (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_autofs_map_name has value automountMapName (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_autofs_entry_object_class has value automount (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_autofs_entry_key has value automountKey (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sdap_get_map] (0x0400): Option ldap_autofs_entry_value has value automountInformation (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_process_init] (0x2000): autofs backend target successfully loaded from provider [ldap]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x0200): no module name found in confdb, using [ldap]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x1000): Backend [ldap] already loaded. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_process_init] (0x0020): No selinux module provided for [default] !! (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x0200): no module name found in confdb, using [ldap]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x1000): Backend [ldap] already loaded. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_process_init] (0x0020): No host info module provided for [default] !! (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x0200): no module name found in confdb, using [ldap]. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [load_backend_module] (0x1000): Backend [ldap] already loaded. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_process_init] (0x0020): Subdomains are not supported for [default] !! (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [main] (0x0400): Backend provider (default) started! (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): dbus conn: 14905E0 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): dbus conn: 14905E0 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x1490a30/0x148d2f0 (15), R/- (disabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x1490a30/0x148f9e0 (15), -/W (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x1490a30/0x148d2f0 (15), R/- (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x1490a30/0x148f9e0 (15), -/W (disabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_remove_timeout] (0x2000): 0x1490db0 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): dbus conn: 14905E0 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): Dispatching. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [id_callback] (0x0100): Got id ack and version (1) from Monitor (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_server_init_new_connection] (0x0200): Entering. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_server_init_new_connection] (0x0200): Adding connection 0x149b3f0. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_init_connection] (0x0200): Adding connection 149B3F0 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_add_watch] (0x2000): 0x149a760/0x149bb40 (18), -/W (disabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x149a760/0x1499570 (18), R/- (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_server_init_new_connection] (0x0200): Got a connection (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_client_init] (0x0100): Set-up Backend ID timeout [0x149be50] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): dbus conn: 149B3F0 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x149a760/0x1499570 (18), R/- (disabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x149a760/0x149bb40 (18), -/W (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x149a760/0x1499570 (18), R/- (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x149a760/0x149bb40 (18), -/W (disabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): dbus conn: 149B3F0 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): Dispatching. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_message_handler] (0x4000): Received SBUS method [RegisterService] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [client_registration] (0x0100): Cancel DP ID timeout [0x149be50] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [client_registration] (0x0100): Added Frontend client [PAM] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_server_init_new_connection] (0x0200): Entering. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_server_init_new_connection] (0x0200): Adding connection 0x14a0b80. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_init_connection] (0x0200): Adding connection 14A0B80 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_add_watch] (0x2000): 0x14a11c0/0x149c0c0 (19), -/W (disabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x14a11c0/0x149c110 (19), R/- (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_server_init_new_connection] (0x0200): Got a connection (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [be_client_init] (0x0100): Set-up Backend ID timeout [0x14a1430] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): dbus conn: 14A0B80 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x14a11c0/0x149c110 (19), R/- (disabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x14a11c0/0x149c0c0 (19), -/W (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x14a11c0/0x149c110 (19), R/- (enabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_toggle_watch] (0x4000): 0x14a11c0/0x149c0c0 (19), -/W (disabled) (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): dbus conn: 14A0B80 (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): Dispatching. (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [sbus_message_handler] (0x4000): Received SBUS method [RegisterService] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [client_registration] (0x0100): Cancel DP ID timeout [0x14a1430] (Tue Apr 23 12:50:39 2013) [sssd[be[default]]] [client_registration] (0x0100): Added Frontend client [NSS] (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): dbus conn: 14A0B80 (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): Dispatching. (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [sbus_message_handler] (0x4000): Received SBUS method [getDomains] (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [be_get_subdomains] (0x2000): Undefined backend target. (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): dbus conn: 14A0B80 (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [sbus_dispatch] (0x4000): Dispatching. (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [sbus_message_handler] (0x4000): Received SBUS method [getAccountInfo] (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [be_get_account_info] (0x0100): Got request for [4097][1][name=testuser] (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [sdap_id_op_connect_step] (0x4000): beginning to connect (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [fo_resolve_service_send] (0x0100): Trying to resolve service 'LDAP' (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [get_server_status] (0x1000): Status of server 'xx.xx.xx.xx' is 'name not resolved' (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [get_port_status] (0x1000): Port status of port <port> for server 'xx.xx.xx.xx' is 'neutral' (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [fo_resolve_service_activate_timeout] (0x2000): Resolve timeout set to 10 seconds (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [get_server_status] (0x1000): Status of server 'xx.xx.xx.xx' is 'name not resolved' (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [set_server_common_status] (0x0100): Marking server 'xx.xx.xx.xx' as 'resolving name' (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [set_server_common_status] (0x0100): Marking server 'xx.xx.xx.xx' as 'name resolved' (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [be_resolve_server_process] (0x1000): Saving the first resolved server (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [be_resolve_server_process] (0x0200): Found address for server xx.xx.xx.xx: [xx.xx.xx.xx] TTL 7200 (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [sdap_uri_callback] (0x0400): Constructed uri 'ldaps://xx.xx.xx.xx:<port>/' (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [sss_ldap_init_send] (0x4000): Using file descriptor [20] for LDAP connection. (Tue Apr 23 12:50:40 2013) [sssd[be[default]]] [sss_ldap_init_send] (0x0400): Setting 6 seconds timeout for connecting (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_ldap_connect_callback_add] (0x1000): New LDAP connection to [ldaps://xx.xx.xx.xx:<port>/??base] with fd [20]. (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_rootdse_send] (0x4000): Getting rootdse (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x0400): calling ldap_search_ext with [(objectclass=*)][]. (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [*] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [altServer] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [namingContexts] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [supportedControl] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [supportedExtension] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [supportedFeatures] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [supportedLDAPVersion] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [supportedSASLMechanisms] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [domainControllerFunctionality] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [defaultNamingContext] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [lastUSN] (Tue Apr 23 12:51:29 2013) [sssd[be[default]]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [highestCommittedUSN] ---------------------------------------------------------------------------
To me it looks like its searching but not finding for some reason
any help would be much appreciated.
-Brandon