On Wed, Jul 30, 2014 at 03:12:18PM -0400, Thomas Moore wrote:
I work in an Active Directory environment where new SIDs have RIDs
over
280,000 when attempting to set ldap_idmap_range_size in sssd.conf anything
larger that 268204 causes the following errors in the log file
(Wed Jul 30 10:38:44 2014) [sssd[be[DOMAIN.EDU]]] [load_backend_module]
(0x0010): Error (5) in module (ad) initialization (sssm_ad_id_init)!
(Wed Jul 30 10:38:44 2014) [sssd[be[DOMAIN.EDU]]] [be_process_init]
(0x0010): fatal error initializing data providers
(Wed Jul 30 10:38:44 2014) [sssd[be[DOMAIN.EDU]]] [main] (0x0010): Could
not initialize backend [5]
I have tested in both Ubuntu 14.04 and CentOS 7.0 with the same results.
Any help is greatly appreciated!
Hi,
can you try setting a larger ldap_idmap_range_size value?
Perhaps:
ldap_idmap_range_size = 400000
In order to find your largest RID currently used you can run:
ldapsearch -H ldap://ad-dc.ad.domain -b 'OU=Domain
Controllers,dc=ad,dc=domain' 'CN=Rid Set' ridNextRID"
HTH