SSSD fails to store sysdb cache for particular group/user

Solution Verified - Updated -

Issue

  • SSSD is as an LDAP client and perform user/group lookups, but there is a problem with one or more groups wheregetent command output returns nothing or is missing groups:
$ getent group <groupname>

When enabling debug mode, the logs show that sssd was to get the group details, but it fails to process it, the last few error messages are:

(Mon Aug  5 15:09:06 2013) [sssd[be[domain]]] [sysdb_set_entry_attr] (0x0080): ldb_modify failed: [Attribute or value exists]
(Mon Aug  5 15:09:06 2013) [sssd[be[domain]]] [sysdb_set_entry_attr] (0x0400): Error: 17 (File exists)
(Mon Aug  5 15:09:06 2013) [sssd[be[domain]]] [sysdb_add_group] (0x0400): Error: 17 (File exists)
(Mon Aug  5 15:09:06 2013) [sssd[be[domain]]] [ldb] (0x4000): cancel ldb transaction (nesting: 1)
(Mon Aug  5 15:09:06 2013) [sssd[be[domain]]] [sysdb_store_group] (0x0400): Error: 17 (File exists)
(Mon Aug  5 15:09:06 2013) [sssd[be[domain]]] [save_group] (0x0040): Could not add group to cache
(Mon Aug  5 15:09:06 2013) [sssd[be[domain]]] [ldb] (0x4000): cancel ldb transaction (nesting: 0)
(Mon Aug  5 15:09:06 2013) [sssd[be[domain]]] [get_gr_name] (0x0040): Cannot save group [17]: File exists
(Mon Aug  5 15:09:06 2013) [sssd[be[domain]]] [get_gr_name] (0x0040): proxy -> getgrnam_r failed for '<group>' <17>: File exists
(Mon Aug  5 15:09:06 2013) [sssd[be[domain]]] [acctinfo_callback] (0x0100): Request processed. Returned 3,17,Internal Error (Failure setting user credentials)

Environment

  • Red Hat Enterprise Linux

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In