I added the certificate using the ldapmodify option "read from file" and the content for the user certificate retrieved by the ldapsearch on the LDAP server, also the content mapped by SSSD on the sssd client proved that the format of the user certificate was okay. What I get in the sssd_ssh.log is the same errror as before, i.e. "certificate is not valid"
So, now I need to find out only why is this certificate not valid. Is it because of the trust or revocation status that can not be retrieved from the CRL list which can not be downloaded due to the lack of connection to Internet or both.. What is your opinion on this?
BR, Hristina