SSSD fails to authenticate Active Directory users with "TGS request result: Server not found in Kerberos database" error.

Solution Unverified - Updated -

Issue

  • SSSD fails to authenticate Active Directory users with TGS request result: Server not found in Kerberos database error.

  • The following symptoms have been observed during this time:

  1. id command produces expected results.
  2. getent passwd command produces expected results.
  3. kinit username command produces expected results.
  4. However, ssh -l username domain command fails with the following error message in the logs:
(Tue Nov  3 10:47:13 2015) [[sssd[krb5_child[31025]]]] [sss_child_krb5_trace_cb] (0x4000): [31025] 1446518833.79104: Response was from master KDC
(Tue Nov  3 10:47:13 2015) [[sssd[krb5_child[31025]]]] [sss_child_krb5_trace_cb] (0x4000): [31025] 1446518833.79162: TGS request result: -1765328377/Server not found in Kerberos database
(Tue Nov  3 10:47:13 2015) [[sssd[krb5_child[31025]]]] [sss_child_krb5_trace_cb] (0x4000): [31025] 1446518833.79185: Requesting tickets for host/sssd-test.example.com@AD.EXAMPLE.COM, referrals off

Environment

  • Red Hat Enterprise Linux 7.1
  • SSSD 1.12

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.