Windows Active Directory 사용자 이름을 사용하여 Redhat 시스템에 로그인할 수 있도록 sssd를 구성해야 합니다.
sssd.conf 파일에 대해 다음 구성 파일이 있습니다
로그에 다음 오류가 표시됩니다.
무엇이 문제일까요?
[sssd]
config_file_version = 2
domains = CORE.MYCOMPANY.COM
services = nss, pam
[domain/CORE.MYCOMPANY.COM]
# Uncomment if you need offline logins
cache_credentials = true
id_provider = ad
auth_provider = ad
access_provider = ad
# Uncomment if service discovery is not working
ad_server = CORE.MYCOMPANY.COM
# Uncomment if you want to use POSIX UIDs and GIDs set on the AD side
# ldap_id_mapping = False
# Comment out if the users have the shell and home dir set on the AD side
default_shell = /bin/bash
fallback_homedir = /home/%d/%u
# Uncomment and adjust if the default principal SHORTNAME$@REALM is not available
# ldap_sasl_authid = host/[email protected]
# Comment out if you prefer to user shortnames.
use_fully_qualified_names = True
서비스 시작
[cloud-user@d760770 ~]$ sudo service sssd restart
Redirecting to /bin/systemctl restart sssd.service
Job for sssd.service failed. See 'systemctl status sssd.service' and 'journalctl -xn' for details.
오류 기록
sssd_CORE.MYCOMPANY.COM.log
(Wed Mar 4 19:41:21 2015) [sssd[be[CORE.MYCOMPANY.COM]]] [be_process_init] (0x0010): fatal error initializing data providers
(Wed Mar 4 19:41:21 2015) [sssd[be[CORE.MYCOMPANY.COM]]] [main] (0x0010): Could not initialize backend [2]
(Wed Mar 4 19:41:25 2015) [sssd[be[CORE.MYCOMPANY.COM]]] [load_backend_module] (0x0010): Error (2) in module (ad) initialization (sssm_ad_id_init)!
SSD 로그
(Wed Mar 4 18:45:04 2015) [sssd] [mt_svc_exit_handler] (0x0010): Process [CORE.MYCOMPANY.COM], definitely stopped!
(Wed Mar 4 19:41:25 2015) [sssd] [mt_svc_exit_handler] (0x0010): Process [CORE.MYCOMPANY.COM], definitely stopped!