SSSD reports Realm not local to KDC

Solution Verified - Updated -

Issue

  • We changed the end of our hostname of our SSSD client and now users cannot authenticate.
  • Our machine lives in a different DNS Domain than our LDAP.
  • SSSD is searching the wrong DNS domain for Kerberos servers.
  • The client lives in a DNS Domain that we do not want it to use for authentication.

Environment

  • Red Hat Enterprise Linux
  • SSSD

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content