sssd error with Samba 4.0 LDAP_PROTOCOL_ERROR
Rowland Penny
repenny at f2s.com
Fri Apr 19 12:43:36 MDT 2013
On 19/04/13 18:14, steve wrote:
> On 04/19/2013 07:00 PM, Rowland Penny wrote:
>> On 19/04/13 15:55, steve wrote:
>>> Hi
>>> I'm trying to pinpoint a problem with sssd. When a user logs in, his
>>> rfc2307 attributes _should_ be pulled from AD (not the cache),
>>> however instead and upon login, Samba 4.0 gives us
>>> LDAP_PROTOCOL_ERROR. It occurs once upon authentication and once
>>> again upon logout. The session goes ahead fine but without recent
>>> changes to the user in the directory (e.g. group membership) until
>>> the sssd cache expires.
>>>
>>> Could you tell us what would produce the protocol error?
>>> Cheers,
>>> Steve
>>>
>>>
>>>
>> Hi Steve, I think that this is coming from sssd not Samba4 so you
>> might be better asking about this over on the sssd-devel list.
>>
>> If this is happening on the S4 server, you could try what I am doing,
>> rely on winbind on the server and just use sssd on the clients.
>>
>> Rowland
>>
>>
>>
> Hi yes. I've had a thread open there too. They just found it. We need:
> ldap_referrals=False
> It not only removes the error but speeds propogation of new users and
> group members considerably. Not sure of any implications with that but
> will report back if the sssd gurus advise me of any pending fatalities.
> Cheers,
> Steve
>
>
>
Hi Steve, Ah that explains why I never had that problem, I already had
that in my sssd.conf ;-)
Rowland
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the samba-technical
mailing list