ldap_id_mapping makes sssd-ad fail

Jurjen Bokma

January 2014


Troubleshooting broken sssd-ad concerning ldap_id_mapping = false

Table of Contents

The Problem

On a test machine, I run Ubuntu Trusty, which is to be released in April. When in /etc/sssd/sssd.conf I set

  id_provider = ad
  auth_provider = ad
  # This is the culprit
  ldap_id_mapping = false

, ... then sssd -i stops running after a few seconds, while it's supposed to keep running until I kill it. To make matters worse, neither service sssd start nor service sssd stop will return any more, and this makes my Puppet module run forever.