On Fri, Feb 15, 2019 at 09:47:46AM -0000, CharlesLee wrote:
Hi sumit,
Thanks for your reply.
I'm using windows server 2008R2 AD. I use "ldap_id_mapping=False" because I want the AD's user in linux UID is gidNumber, if I use "ldap_id_mapping=True" the user's uid in linux will can not control.
I want to the AD user in linux can use gidNumber and AD user login linux use AD password. So, How should I do ?
Do you already have the IDs created and stored in AD?
One thing you might need to do after switching the ID mapping on or off is to clear the sssd cache. With newer versions: sssctl cache-remove or with older versions: rm -f /var/lib/sss/db/* systemctl restart sssd