Active directory integration (sssd) does not use AD Sites to find near DC/GC

Solution In Progress - Updated -

Issue

Using SSSD for Active Directory integration, unless I hardcode dns_discovery_domain with the Site code, SSSD doesn't seem to use sites and services to bind to a GC/Domain Controller in the current site (aka close to the host)

Using this override works:
dns_discovery_domain = Chicago._sites.acme.com

But if I don't use this override - I usually get a DC/GC in Hong Kong or London, when my host is in Chicago. adcli seems to understand the info but sssd doesn't. According to the SSSD project notes, this functionality should be in the RH7 release - but it doesn't appear to work.

[root@ll-chrhel7beta01 ~]# adcli info acme.com
...output trimmed....
[domain]
domain-name = acme.com
domain-short = ACME
domain-forest = adroot.local
domain-controller-site = Chicago
[computer]
computer-site = Chicago

Environment

Red Hat Enterprise Linux
7.0
Active Directory
sssd

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content