Cloudera Community

Community Articles

Find and share helpful community-sourced technical articles.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search

SSSD

avatar
author-rank cdraper
Rising Star

Created on ‎03-31-2017 06:45 PM

After a few hours of debugging SSSD and mapping users/groups I wanted to make a post here to try and save someone the pain.

I had SSD configured correctly using the following document:

https://github.com/HortonworksUniversity/Security_Labs#lab-1

What I found by adding debug_level=7 to the sssd.conf file was this cryptic message:

Trying to resolve service 'AD_GC'

I realized at some point I was firewall'd off to the Active Directory Global Catalog port 3286, once I opened this I can now get the correct groups mapped to my SSSD users.

Hope this saves someone some time in the future!

2,958 Views
Comments

Re: SSSD

avatar
author-rank Kkalita
Rising Star

Created on ‎04-28-2017 03:29 AM

Is the port 3286, It should be 3268

Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements
Version history
Last update:
‎03-31-2017 06:45 PM
Updated by:
Rising Star
Contributors