===== SSSD =====

==== Configuration ====

example /etc/sssd/sssd.conf
<code>
[sssd]
domains = mydomain.local
config_file_version = 2
services = nss, pam

[domain/mydomain.local]
ldap_idmap_range_size= 2000000
ad_domain = mydomain.local
krb5_realm = MYDOMAIN.LOCAL
realmd_tags = manages-system joined-with-adcli
cache_credentials = True
id_provider = ad
krb5_store_password_if_offline = True
default_shell = /bin/bash
ldap_id_mapping = True
use_fully_qualified_names = True
fallback_homedir = /home/%d/%u
access_provider = simple
simple_allow_groups = admins,mygroup1
simple_allow_users = administrator,myuser1
</code>

==== Commands ====

^  Command  ^  Function  ^
|  sss_cache -E  |  clear cache and update all records  |\\
|  sss_cache -d <domain>  |  clear cache of domain  |\\
|  sss_cache -u <user>  |  clear cache of user  |\\
|  sss_cache -g <group>  |  clear cache of group  |\\