<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 TRANSITIONAL//EN">
<HTML>
<HEAD>
  <META HTTP-EQUIV="Content-Type" CONTENT="text/html; CHARSET=UTF-8">
  <META NAME="GENERATOR" CONTENT="GtkHTML/4.6.4">
</HEAD>
<BODY>
Yay, It works! Once I thumb finger the configuration files correctly.<BR>
<BR>
May I request that y'all start alphabetizing entries where sequence is not important so that it is easier for humans to find a single entry:<BR>
<BR>
[<A HREF="mailto:dean@desktop">dean@desktop</A> ~]$ sudo cat /etc/sssd/sssd.conf<BR>
[sudo] password for dean: <BR>
[sssd]<BR>
config_file_version = 2<BR>
domains = hunter.org<BR>
services = autofs, nss, pam, ssh, sudo<BR>
<BR>
[domain/hunter.org]<BR>
access_provider = ipa<BR>
auth_provider = ipa<BR>
autofs_provider = ipa<BR>
cache_credentials = True<BR>
chpass_provider = ipa<BR>
id_provider = ipa<BR>
ipa_automount_location = VM<BR>
ipa_domain = hunter.org<BR>
ipa_dyndns_update = True<BR>
ipa_hostname = desktop.hunter.org<BR>
ipa_server = _srv_, ipa.hunter.org<BR>
krb5_store_password_if_offline = True<BR>
ldap_tls_cacert = /etc/ipa/ca.crt<BR>
<BR>
# For the SUDO integration<BR>
krb5_server = ipa.hunter.org<BR>
ldap_sasl_authid = host/desktop.hunter.org<BR>
ldap_sasl_mech = GSSAPI<BR>
ldap_sasl_realm = HUNTER.ORG<BR>
ldap_sudo_search_base = ou=sudoers,dc=hunter,dc=org<BR>
ldap_uri = ldap://ipa.hunter.org<BR>
sudo_provider = ldap<BR>
<BR>
[autofs]<BR>
<BR>
[nss]<BR>
<BR>
[pac]<BR>
<BR>
[pam]<BR>
<BR>
[ssh]<BR>
<BR>
[sudo]<BR>
<BR>
<BR>
[<A HREF="mailto:dean@desktop">dean@desktop</A> ~]$ <BR>
<BR>
</BODY>
</HTML>