Hi, I hope you all head some nice days off.
I am running sssd successfully on 1.16.1 and on 1.13.4
Now I have a few old Ubuntu 14.04 machines and I cant get sssd running. Basicially I have the same config as on 1.16.1 and 1.13.4 only threw some parameters out that are not implemented in 1.11.8 yet. I checked for every parameter I've used in the config if it is existing in this very version and they do when I am not mistaken.
Error is:
(Tue Apr 14 08:43:39:879756 2020) [sssd] [sss_ini_get_config] (0x0010): Failed to parse configuration. Error 5. (Tue Apr 14 08:43:39:879806 2020) [sssd] [sss_ini_get_config] (0x0010): Errors detected while parsing: /etc/sssd/sssd.conf (Tue Apr 14 08:43:39:879893 2020) [sssd] [sss_ini_config_print_errors] (0x0020): Error (5) on line 1: Equal sign is missing. (Tue Apr 14 08:43:39:879913 2020) [sssd] [confdb_init_db] (0x0010): Failed to load configuration (Tue Apr 14 08:43:39:879942 2020) [sssd] [load_configuration] (0x0010): ConfDB initialization has failed [Input/output error] (Tue Apr 14 08:43:39:879981 2020) [sssd] [main] (0x0020): SSSD couldn't load the configuration database.
I've found some bug report saying comments should start on the beginng of the line which they are (I also removed all of them) The first line obviously is [sssd] so I dont get where an equal sign should be missing. Also as said the config is running on other versions aswell... This is the config I am using for 1.11.8
[sssd] config_file_version = 2 services = nss, pam, ssh domains = FOO
[nss] default_shell = /bin/bash override_homedir = /home/%d/%u filter_users = root filter_groups = root debug_level = 7
[pam] debug_level = 7 offline_credentials_expiration = 4
[domain/FOO] debug_level = 7 case_sensitive = False cache_credentials = True account_cache_expiration = 4
ldap_user_extra_attrs = altSecurityIdentities:altSecurityIdentities ldap_user_ssh_public_key = altSecurityIdentities
id_provider = ldap auth_provider = ldap access_provider = ldap ldap_access_order = filter, expire ldap_account_expire_policy = ad
ldap_access_filter = (xxx) ldap_id_mapping = True ldap_schema = ad
ldap_search_base = OU=xx,DC=xx,DC=xx
ldap_group_nesting_level = 1 ldap_use_tokengroups = False
ldap_tls_cacert = /etc/sssd/root-ca.crt
ldap_uri = ldaps://xxxx:636
ldap_default_bind_dn = CN=xxx ldap_default_authtok_type = obfuscated_password ldap_default_authtok = AAAQAGtLXaf5yvs2e00KaMiPq8/FPF/ks97V4TcQmNJGFgQ4xMvg8wSIy54PU7xP09Kf/Z2KcHvcAAQID
ignore_group_members = True re_expression = (((?P<domain>[^\]+)\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?P<name>[^@\]+)$))
Just a blind shot. Could you check that there are not some invisible characters on the first line (like unicode BOM)? I know that the parsing library is sensitive to such things.
HTH Tom
On Tue, Apr 14, 2020 at 9:41 AM Jannis Mann jannismann1337@gmail.com wrote:
Hi, I hope you all head some nice days off.
I am running sssd successfully on 1.16.1 and on 1.13.4
Now I have a few old Ubuntu 14.04 machines and I cant get sssd running. Basicially I have the same config as on 1.16.1 and 1.13.4 only threw some parameters out that are not implemented in 1.11.8 yet. I checked for every parameter I've used in the config if it is existing in this very version and they do when I am not mistaken.
Error is:
(Tue Apr 14 08:43:39:879756 2020) [sssd] [sss_ini_get_config] (0x0010): Failed to parse configuration. Error 5. (Tue Apr 14 08:43:39:879806 2020) [sssd] [sss_ini_get_config] (0x0010): Errors detected while parsing: /etc/sssd/sssd.conf (Tue Apr 14 08:43:39:879893 2020) [sssd] [sss_ini_config_print_errors] (0x0020): Error (5) on line 1: Equal sign is missing. (Tue Apr 14 08:43:39:879913 2020) [sssd] [confdb_init_db] (0x0010): Failed to load configuration (Tue Apr 14 08:43:39:879942 2020) [sssd] [load_configuration] (0x0010): ConfDB initialization has failed [Input/output error] (Tue Apr 14 08:43:39:879981 2020) [sssd] [main] (0x0020): SSSD couldn't load the configuration database.
I've found some bug report saying comments should start on the beginng of the line which they are (I also removed all of them) The first line obviously is [sssd] so I dont get where an equal sign should be missing. Also as said the config is running on other versions aswell... This is the config I am using for 1.11.8
[sssd] config_file_version = 2 services = nss, pam, ssh domains = FOO
[nss] default_shell = /bin/bash override_homedir = /home/%d/%u filter_users = root filter_groups = root debug_level = 7
[pam] debug_level = 7 offline_credentials_expiration = 4
[domain/FOO] debug_level = 7 case_sensitive = False cache_credentials = True account_cache_expiration = 4
ldap_user_extra_attrs = altSecurityIdentities:altSecurityIdentities ldap_user_ssh_public_key = altSecurityIdentities
id_provider = ldap auth_provider = ldap access_provider = ldap ldap_access_order = filter, expire ldap_account_expire_policy = ad
ldap_access_filter = (xxx) ldap_id_mapping = True ldap_schema = ad
ldap_search_base = OU=xx,DC=xx,DC=xx
ldap_group_nesting_level = 1 ldap_use_tokengroups = False
ldap_tls_cacert = /etc/sssd/root-ca.crt
ldap_uri = ldaps://xxxx:636
ldap_default_bind_dn = CN=xxx ldap_default_authtok_type = obfuscated_password ldap_default_authtok = AAAQAGtLXaf5yvs2e00KaMiPq8/FPF/ks97V4TcQmNJGFgQ4xMvg8wSIy54PU7xP09Kf/Z2KcHvcAAQID
ignore_group_members = True re_expression = (((?P<domain>[^\]+)\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?P<name>[^@\]+)$)) _______________________________________________ sssd-users mailing list -- sssd-users@lists.fedorahosted.org To unsubscribe send an email to sssd-users-leave@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/sssd-users@lists.fedorahosted.o...
Hi Tomas,
thank you! It was definitely some coding format / space character thing. I've copied the content of the config and pasted it to a new file. Its working now.
Thanks again
Am Di., 14. Apr. 2020 um 16:59 Uhr schrieb Tomas Halman <thalman@redhat.com
:
Just a blind shot. Could you check that there are not some invisible characters on the first line (like unicode BOM)? I know that the parsing library is sensitive to such things.
HTH Tom
On Tue, Apr 14, 2020 at 9:41 AM Jannis Mann jannismann1337@gmail.com wrote:
Hi, I hope you all head some nice days off.
I am running sssd successfully on 1.16.1 and on 1.13.4
Now I have a few old Ubuntu 14.04 machines and I cant get sssd running. Basicially I have the same config as on 1.16.1 and 1.13.4 only threw some parameters out that are not implemented in 1.11.8 yet. I checked for every parameter I've used in the config if it is existing in this very version and they do when I am not mistaken.
Error is:
(Tue Apr 14 08:43:39:879756 2020) [sssd] [sss_ini_get_config] (0x0010): Failed to parse configuration. Error 5. (Tue Apr 14 08:43:39:879806 2020) [sssd] [sss_ini_get_config] (0x0010): Errors detected while parsing: /etc/sssd/sssd.conf (Tue Apr 14 08:43:39:879893 2020) [sssd] [sss_ini_config_print_errors] (0x0020): Error (5) on line 1: Equal sign is missing. (Tue Apr 14 08:43:39:879913 2020) [sssd] [confdb_init_db] (0x0010): Failed to load configuration (Tue Apr 14 08:43:39:879942 2020) [sssd] [load_configuration] (0x0010): ConfDB initialization has failed [Input/output error] (Tue Apr 14 08:43:39:879981 2020) [sssd] [main] (0x0020): SSSD couldn't load the configuration database.
I've found some bug report saying comments should start on the beginng of the line which they are (I also removed all of them) The first line obviously is [sssd] so I dont get where an equal sign should be missing. Also as said the config is running on other versions aswell... This is the config I am using for 1.11.8
[sssd] config_file_version = 2 services = nss, pam, ssh domains = FOO
[nss] default_shell = /bin/bash override_homedir = /home/%d/%u filter_users = root filter_groups = root debug_level = 7
[pam] debug_level = 7 offline_credentials_expiration = 4
[domain/FOO] debug_level = 7 case_sensitive = False cache_credentials = True account_cache_expiration = 4
ldap_user_extra_attrs = altSecurityIdentities:altSecurityIdentities ldap_user_ssh_public_key = altSecurityIdentities
id_provider = ldap auth_provider = ldap access_provider = ldap ldap_access_order = filter, expire ldap_account_expire_policy = ad
ldap_access_filter = (xxx) ldap_id_mapping = True ldap_schema = ad
ldap_search_base = OU=xx,DC=xx,DC=xx
ldap_group_nesting_level = 1 ldap_use_tokengroups = False
ldap_tls_cacert = /etc/sssd/root-ca.crt
ldap_uri = ldaps://xxxx:636
ldap_default_bind_dn = CN=xxx ldap_default_authtok_type = obfuscated_password ldap_default_authtok = AAAQAGtLXaf5yvs2e00KaMiPq8/FPF/ks97V4TcQmNJGFgQ4xMvg8wSIy54PU7xP09Kf/Z2KcHvcAAQID
ignore_group_members = True re_expression = (((?P<domain>[^\]+)\(?P<name>.+$))|((?P<name>[^@]+)@(?P<domain>.+$))|(^(?P<name>[^@\]+)$)) _______________________________________________ sssd-users mailing list -- sssd-users@lists.fedorahosted.org To unsubscribe send an email to sssd-users-leave@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/sssd-users@lists.fedorahosted.o...
-- Tomas Halman
sssd-users mailing list -- sssd-users@lists.fedorahosted.org To unsubscribe send an email to sssd-users-leave@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/sssd-users@lists.fedorahosted.o...
sssd-users@lists.fedorahosted.org