-
Notifications
You must be signed in to change notification settings - Fork 235
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
disabled root ad domain causes subdomains to be marked offline #5770
Labels
Comments
sumit-bose
added a commit
to sumit-bose/sssd
that referenced
this issue
Sep 2, 2021
Even if the forest root is disabled for user and group lookups a sdap object is needed to lookup trusted domains. This already works if the forest root is discovered for the first time at runtime. But if SSSD is restarted only the domain object but not the sdap object is created. Resolves: SSSD#5770
sumit-bose
added a commit
to sumit-bose/sssd
that referenced
this issue
Sep 21, 2021
Even if the forest root is disabled for user and group lookups a sdap object is needed to lookup trusted domains. This already works if the forest root is discovered for the first time at runtime. But if SSSD is restarted only the domain object but not the sdap object is created. Resolves: SSSD#5770 :fixes: Even is the forest root is disabled for lookups all required internal data is initialized to be able to refresh the list of trusted domains in the forest from a DC of the forest root.
sumit-bose
added a commit
to sumit-bose/sssd
that referenced
this issue
Sep 24, 2021
Even if the forest root is disabled for user and group lookups a sdap object is needed to lookup trusted domains. This already works if the forest root is discovered for the first time at runtime. But if SSSD is restarted only the domain object but not the sdap object is created. Resolves: SSSD#5770 :fixes: Even if the forest root is disabled for lookups all required internal data is initialized to be able to refresh the list of trusted domains in the forest from a DC of the forest root.
pbrezina
pushed a commit
that referenced
this issue
Sep 24, 2021
Even if the forest root is disabled for user and group lookups a sdap object is needed to lookup trusted domains. This already works if the forest root is discovered for the first time at runtime. But if SSSD is restarted only the domain object but not the sdap object is created. Resolves: #5770 :fixes: Even if the forest root is disabled for lookups all required internal data is initialized to be able to refresh the list of trusted domains in the forest from a DC of the forest root. Reviewed-by: Pavel Březina <pbrezina@redhat.com> (cherry picked from commit 2a617c0)
shridhargadekar
pushed a commit
to shridhargadekar/sssd
that referenced
this issue
Apr 1, 2022
Even if the forest root is disabled for user and group lookups a sdap object is needed to lookup trusted domains. This already works if the forest root is discovered for the first time at runtime. But if SSSD is restarted only the domain object but not the sdap object is created. Resolves: SSSD#5770 :fixes: Even if the forest root is disabled for lookups all required internal data is initialized to be able to refresh the list of trusted domains in the forest from a DC of the forest root. Reviewed-by: Pavel Březina <pbrezina@redhat.com>
etrunko
pushed a commit
to etrunko/sssd
that referenced
this issue
Nov 16, 2023
Even if the forest root is disabled for user and group lookups a sdap object is needed to lookup trusted domains. This already works if the forest root is discovered for the first time at runtime. But if SSSD is restarted only the domain object but not the sdap object is created. Resolves: SSSD#5770 :fixes: Even if the forest root is disabled for lookups all required internal data is initialized to be able to refresh the list of trusted domains in the forest from a DC of the forest root. Reviewed-by: Pavel Březina <pbrezina@redhat.com> (cherry picked from commit 2a617c0)
etrunko
pushed a commit
to etrunko/sssd
that referenced
this issue
Nov 16, 2023
Even if the forest root is disabled for user and group lookups a sdap object is needed to lookup trusted domains. This already works if the forest root is discovered for the first time at runtime. But if SSSD is restarted only the domain object but not the sdap object is created. Resolves: SSSD#5770 :fixes: Even if the forest root is disabled for lookups all required internal data is initialized to be able to refresh the list of trusted domains in the forest from a DC of the forest root. Reviewed-by: Pavel Březina <pbrezina@redhat.com> (cherry picked from commit 2a617c0)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 2000238
The text was updated successfully, but these errors were encountered: