On a RHEL5.8 system authenticating to Windows 2008 using sssd, fail-over doesn't seem to work when multiple AD servers are specified

Solution Verified - Updated -

Issue

  • On a RHEL5.8 system authenticating to Windows 2008using sssd, fail-over doesn't seem to work when multiple AD servers are specified
  • When sssd is used for AD authentication kerberos fail-over doesn't work when multiple AD controllers are mentioned

Example: In the below example we have 3 AD servers mentioned

            krb5_server = server1.example.com, server2.example.com, server3.example.com  
            ldap_uri = ldap://server1.example.com, ldap://server2.example.com, ldap://server3.example.com

if server1, server2 are unavailable sssd fails to use the server3 AD server to authenticate the user.

Environment

  • Red Hat Enterprise Linux 5.8
  • sssd-1.5.1-49.el5_8.1.x86_64
  • Windows 2008 R2 servers
  • 4 AD controllers are mentioned in sssd.conf for failover

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.