On (29/07/20 15:27), xcorvis(a)gmail.com wrote:
I've been using sssd + AD to do auth for a few years now. Offline
authentication is enabled and works normally. In that time I've upgraded my Ubuntu
laptop several times, and each time I noticed that after the update, I cannot log in
unless I'm on the corp network with direct access to AD. That hasn't really been a
problem until now. I'm working from home over vpn all the time and don't have to
option of going in to get on the corp network.
I know the workaround is to use a local account, get on the VPN, authenticate with my AD
account and populate the cache, but IT doesn't like me creating local users and
it's a pain. I haven't tried the latest update yet (19.10 -> 20.04, sssd
currently 2.2.0).
You can use `sss_seed` to add user to the cache even when you are offline.
https://linux.die.net/man/8/sss_seed
But you need to run as root.
LS