[Freeipa-users] FreeIPA - AD trust - SSH Public Keys
Sumit Bose
sbose at redhat.com
Fri Nov 4 10:51:26 UTC 2016
On Thu, Nov 03, 2016 at 05:23:06PM +0200, Taras Drach wrote:
> Thank for reply,
>
> Unfortunately sssd won’t start with this configuration
>
> Here is part of log
>
> (Thu Nov 3 15:16:40 2016) [sssd[be[ipa.test.loc]]] [sdap_extend_map] (0x0200): 1 extra attributes
> (Thu Nov 3 15:16:40 2016) [sssd[be[ipa.test.loc]]] [sdap_extend_map] (0x0010): Attribute sshPublicKey (altSecurityIdentities in LDAP) is already used by SSSD, please choose a different cache name
Can you check if
ldap_user_extra_attrs = originalADsshPublicKey:altSecurityIdentities
works any better?
bye,
Sumit
> (Thu Nov 3 15:16:40 2016) [sssd[be[ipa.test.loc]]] [load_backend_module] (0x0010): Error (1432158241) in module (ipa) initialization (sssm_ipa_id_init)!
> (Thu Nov 3 15:16:40 2016) [sssd[be[ipa.test.loc]]] [be_process_init] (0x0010): fatal error initializing data providers
> (Thu Nov 3 15:16:40 2016) [sssd[be[ipa.test.loc]]] [sbus_remove_watch] (0x2000): 0x7f8183df2640/0x7f8183df2420
>
> Config changes:
>
> ldap_user_extra_attrs = sshPublicKey:altSecurityIdentities
> # ldap_user_extra_attrs = altSecurityIdentities:altSecurityIdentities
> ldap_user_ssh_public_key = altSecurityIdentities
> ldap_id_mapping = False
>
> > On Nov 3, 2016, at 5:05 PM, Sumit Bose <sbose at redhat.com> wrote:
> >
> > sshPublicKey:
>
More information about the Freeipa-users
mailing list