On Thu, Mar 26, 2015 at 09:25:34AM +0000, Matt John wrote:
It seems that auth_provider cannot be none when using local as the id_provider.
[sssd] [confdb_get_domain_internal] (0x0010): Local ID provider does not support [none] as an AUTH provider. [sssd] [confdb_get_domains] (0x0010): Error (22 [Invalid argument]) retrieving domain [autofsd], skipping!
Ugh, another subtle bug :-)
auth_provider=local would work as well, then. Also setting the ldap_search_base to some part of subtree that doesn't hit the users would "solve" the problem, but nonexisting entries would fire two ldap searches in this case against both of the domains.