Want to say thanks for all the help! I finally found my problem, I needed
to have 'nss' listed as one of my 'services' in the 'sssd' section
of
/etc/sssd/sssd.conf. At some point, I removed that service from the list
and that seems to be very very bad.
[sssd]
services = pam, nss
Now I can read ldap user information via 'getent passwd user' and I can ssh
via 'ssh user@server'.
Thank you again for all of the help!
On Tue, Mar 25, 2014 at 10:16 AM, kevin sullivan
<kevin4sullivan(a)gmail.com>wrote:
>That's odd. Which version of SSSD are you using on which
platform?
I am using sssd-1.9.2-82.el6. I am running rhel 6.4. I can't budge on the
OS, but I can update the RPM if necessary.
>Can you use strace to trace the authentication process form the sshd
>side? Some thing like
>
>strace -o /tmp/strace.out -s 256 -p PID_of_the_main_sshd_process
You mean the main sshd process correct? Not the ssh process that I create
when I try to ssh as my user?
root 25000 1 0 14:00 ? 00:00:00 /usr/sbin/sshd
I ran the strace and I will send that to you very soon.
Thanks,
Kevin
On Tue, Mar 25, 2014 at 5:02 AM, Sumit Bose <sbose(a)redhat.com> wrote:
> On Mon, Mar 24, 2014 at 06:25:36PM -0400, kevin sullivan wrote:
> > Lukas and Sumit, thanks for your responses.
> >
> > >According to the logs your password has
> > >13 characters, does this make sense?
> > No, my password doesn't have 13 characters. I did notice that no matter
> > what I typed, the authtok size was always 13.
> >
>
> That's odd. Which version of SSSD are you using on which platform?
>
> Can you use strace to trace the authentication process form the sshd
> side? Some thing like
>
> strace -o /tmp/strace.out -s 256 -p PID_of_the_main_sshd_process
>
> should work.
>
> The output will contain your password, please send the file to me
> directly and not to the list. From the output I would be able to see if
> the 13 character password is send to SSSD already from the sshd.
>
> bye,
> Sumit
> _______________________________________________
> sssd-users mailing list
> sssd-users(a)lists.fedorahosted.org
>
https://lists.fedorahosted.org/mailman/listinfo/sssd-users
>