Hi Jakub,

Thanks for the workaround, for the ID -1 I couldn't find this ID in the whole system I have checked both passwd and group but nothing, so there is no such application running with -1 ID.

1- I increased the negative cache time out to 5 mins not sure the impact of it ?

2- I have defined min_id and max_id (question: this min_id and max_id is being checked at client level by sssd or it goes to LDAP server and then we get the answer?)

Doing the above 2 have fixed hitting the LDAP server which was for me a pain because of its high frequency to hit the server from many machines.

Thanks again.

Best regards,

Majid

From: Jakub Hrozek <jhrozek@redhat.com>
To: sssd-users@lists.fedorahosted.org
Sent: Tuesday, April 28, 2015 3:31 PM
Subject: Re: [SSSD-users] uidNumber=4294967295 is being appearing in the log frequently

On Tue, Apr 28, 2015 at 11:17:53AM +0000, Majid Khan wrote:
> so is there any work around to fix this? and does it have any impact on the LDAP server?, one thing is for sure that the server is getting hit with these request quite frequently like after 4 secs and we have many other client machine hitting wiht the same frequency.

Ideally find out which application is requesting this ID and stop it from
doing so.

Alternatively, increase the negative cache timeout. Or even limit the ID
range with min_id/max_id options.

btw this is not a sssd-specific problem, except maybe the inability to
setup the permanent negative cache per ID. Even if you were running
nss_ldap or something else, the queries would get through.

_______________________________________________
sssd-users mailing list
sssd-users@lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo/sssd-users