Table of Contents

SSSD

Configuration

example /etc/sssd/sssd.conf

[sssd]
domains = mydomain.local
config_file_version = 2
services = nss, pam

[domain/mydomain.local]
ldap_idmap_range_size= 2000000
ad_domain = mydomain.local
krb5_realm = MYDOMAIN.LOCAL
realmd_tags = manages-system joined-with-adcli
cache_credentials = True
id_provider = ad
krb5_store_password_if_offline = True
default_shell = /bin/bash
ldap_id_mapping = True
use_fully_qualified_names = True
fallback_homedir = /home/%d/%u
access_provider = simple
simple_allow_groups = admins,mygroup1
simple_allow_users = administrator,myuser1

Commands

Command Function
sss_cache -E clear cache and update all records
sss_cache -d <domain> clear cache of domain
sss_cache -u <user> clear cache of user
sss_cache -g <group> clear cache of group