[Freeipa-users] confused about replica role and use
Karl Forner
karl.forner at gmail.com
Thu Dec 17 19:10:48 UTC 2015
>
> Unfortunately it is, it is a bug in the way we update the krb5 libraries
> to point to a KDC.
>
> SSSD updates this information in a file under /var/lib/sss/pubconf and
> krb5 libraries read from it, however kinit cannot force sssd to
> re-evaluate if the file needs updating.
>
Is there a work-around ? I've run into this: Imy main server that is stuck
with the previous kdc, which is down.
And it can not pick up the new kdc. The problem is that the apache server
can not authenticate users anymore
for my kerberos-enabled web apps. How can I do without rebooting my server
?
Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20151217/0a6c3fd0/attachment.htm>
More information about the Freeipa-users
mailing list