sssd exiting with Input/output error when ldap_idmap_default_domain_sid parameter is used
Issue
The System Security Services Daemon (sssd) can not be started, when ldap_idmap_default_domain_sid parameter is used, even after clearing the sssd cache. The error that is logged is similar to:
Could not add domain [domain.example.com][S-1-5-21-1234567898-2081098319-1234567896][0] to ID map: [Input/output error]
Environment
- Red Hat Enterprise Linux 7
- System Security Services Daemon (sssd)
- AD providing users and groups with POSIX attributes (uidNumber, gidNumber, unixHomeDirectory)
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
