On Mon, Sep 21, 2015 at 07:35:13PM +0100, John Beranek wrote:
I don't understand quite why SSSD might be performing a reverse
lookup
on a selected DC's IP, and then using that in a Kerberos request, if
that is in fact what it's doing.
btw this might not be sssd, but rather libkrb5 or cyrus-sasl. I haven't
seen the logs, but I wonder if rdns=False in krb5.conf would help here?