On Thu, May 09, 2013 at 12:00:46PM +0200, steve wrote:
On 09/05/13 11:26, Jakub Hrozek wrote:
On Thu, May 09, 2013 at 08:34:50AM +0200, steve wrote:
On 08/05/13 23:53, Lukas Slebodnik wrote:
On (08/05/13 22:46), steve wrote:
Hi We have 1.10.0beta1 on lubuntu 13.04
We have added dyndns_update=true dyndns_refresh=1 to sssd.conf
We expect to see an update request after 1 minute, but nothing happens. Are we correct to expect this behaviour?
Cheers, Steve
From manual page "sssd-ad"
dyndns_refresh_interval (integer) How often should the back end perform periodic DNS update in addition to the automatic update performed when the back end goes online. This option is optional and applicable only when dyndns_update is true. Default: 86400 (24 hours)
It is not explicitelly written, but you could noticed, that default value is in seconds. (86400 seconds == 24 hours)
Hi. Thanks. I changed it to: dyndns_update=true dyndns_refresh=60
No DNS request is made. We have a Samba4 dc which accepts dns requests from the windows clients so it seems to be working. I have set the log level to 6 but nothing gets logged. I'm looking in: /usr/local/var/log/sssd, /var/log/sssd
It's starting OK and getent and user logins work fine, just not the dns update requests. sudo sssd -i -d3 (Thu May 9 08:25:32 2013) [sssd[be[default]]] [sssm_simple_access_init] (0x0040): No rules supplied for simple access provider. Access will be granted for all users. (Thu May 9 08:25:32 2013) [sssd[be[default]]] [be_process_init] (0x0080): No SUDO module provided for [default] !! (Thu May 9 08:25:32 2013) [sssd[be[default]]] [be_process_init] (0x0020): No selinux module provided for [default] !! (Thu May 9 08:25:32 2013) [sssd[be[default]]] [be_process_init] (0x0020): No host info module provided for [default] !! (Thu May 9 08:25:32 2013) [sssd[be[default]]] [be_process_init] (0x0020): Subdomains are not supported for [default] !!
Here is our sssd.conf. What are we missing to be able to trigger the dns update requests? [sssd] debug_level = 6 services = nss, pam config_file_version = 2 domains = default
[nss]
[pam]
[domain/default] debug_level=6 dyndns_update=true dyndns_refresh_interval=60 ldap_schema = rfc2307bis access_provider = simple enumerate = FALSE cache_credentials = true #entry_cache_timeout = 60 id_provider = ldap
^^^^
Currently the dyndns updates are only supported with id_provider=ad or id_provider=ipa
Since you're using the POSIX attributes, you'd want to configure a domain similar to:
id_provider = ad ad_server = hh16.hh3.site ad_domain = HH3.SITE ldap_id_mapping = False
Hi OK. Changed that but then sssd crashes after the first DNS update and no update is performed: sudo sssd -i -d3 (Thu May 9 11:55:25 2013) [sssd[be[default]]] [sssm_simple_access_init] (0x0040): No rules supplied for simple access provider. Access will be granted for all users. (Thu May 9 11:55:25 2013) [sssd[be[default]]] [be_process_init] (0x0080): No SUDO module provided for [default] !! (Thu May 9 11:55:25 2013) [sssd[be[default]]] [be_process_init] (0x0080): No autofs module provided for [default] !! (Thu May 9 11:55:25 2013) [sssd[be[default]]] [be_process_init] (0x0020): No selinux module provided for [default] !! (Thu May 9 11:55:25 2013) [sssd[be[default]]] [be_process_init] (0x0020): No host info module provided for [default] !! (Thu May 9 11:55:25 2013) [sssd[be[default]]] [be_process_init] (0x0020): Subdomains are not supported for [default] !! (Thu May 9 11:55:41 2013) [sssd[be[default]]] [be_run_online_cb] (0x0080): Going online. Running callbacks. (Thu May 9 11:55:41 2013) [sssd[be[default]]] [ad_dyndns_nsupdate_done] (0x0040): DNS update finished (Thu May 9 11:55:43 2013) [sssd[be[default]]] [resolv_gethostbyname_done] (0x0040): querying hosts database failed [5]: Error de entrada/salida (Thu May 9 11:55:43 2013) [sssd[be[default]]] [nsupdate_get_addrs_done] (0x0040): Could not resolve address for this machine, error [5]: Error de entrada/salida, resolver returned: [11]: Could not contact DNS servers (Thu May 9 11:55:43 2013) [sssd[be[default]]] [nsupdate_get_addrs_done] (0x0040): (Thu May 9 11:55:44 2013) [sssd] [sbus_dispatch] (0x0080): Connection is not open for dispatching. (Thu May 9 11:55:44 2013) [sssd[nss]] [sbus_dispatch] (0x0020): Performing auto-reconnect (Thu May 9 11:55:44 2013) [sssd[pam]] [sbus_dispatch] (0x0020): Performing auto-reconnect (Thu May 9 11:55:44 2013) [sssd] [mt_svc_exit_handler] (0x0040): Child [default] terminated with signal [11]
Oof, I suspect we don't handle the situation where we can't get the machine host name well: https://fedorahosted.org/sssd/ticket/1913
Can you get us a backtrace, please?