SSSD intermittent paging errors causes LDPA lookups to fail
Environment
- Red Hat Enterprise Linux
- SSSD => 1.5.1
Issue
- On the LDAP server that SSSD is connecting to, paged searches are not allowed
Resolution
- The error
Simple Paged Results Search already in progress on this connectionindicate issues when SSSD try to get paged results from an LDAP server. To fix this issue:
1. Disable paged results in /etc/sssd/sssd.conf file as shown below:
ldap_disable_paging = true
2. Restart SSSD:
# service sssd restart
NOTE:
The BZ#806765 was opened to address this issue, and a corresponding errata was released.
Root Cause
- The error above indicate the LDAP server does not support paging or the server was under a heavy load and could not handle the paged results.
Diagnostic Steps
1. Enable debugging within SSSD:
[domain/example]
debug_level = 9
2. Observe the following error:
[sssd[be[DOMAIN]]] [sdap_get_generic_done] (6): Search result: Server is unwilling to perform(53), Simple Paged Results Search already in progress on this connection
This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.
Comments