On Tue, Aug 15, 2017 at 12:07:19PM -0700, Omen Wild wrote:
I have a sssd install on Ubuntu 16.04 (1.13.4-1ubuntu1.6) and one of
subdomains in the forest is having issues (cannot be contacted from my
host), which is causing a `ls' in a directory to take a minute after all
the timeouts. The 'cannot contact' seems to get cached for 60 seconds,
because immediate ls's are quick, but a minute later go back to slow.
Is there any way to limit which subdomains sssd can, or cannot,
contact? We have a split config, where the computers are in one
subdomain, and the users in a child subdomain, so I cannot just set
"subdomains_provider = none", though that did solve the slow directory
lookups, it killed my ability to login with users from the domain.
Did you try to only list the reachable domains using the