Bug 1297462 - Don't include 'enable_only=sssd' in the localauth plugin config
Don't include 'enable_only=sssd' in the localauth plugin config
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: sssd (Show other bugs)
Unspecified Unspecified
medium Severity medium
: rc
: ---
Assigned To: SSSD Maintainers
Depends On:
  Show dependency treegraph
Reported: 2016-01-11 10:15 EST by Jakub Hrozek
Modified: 2017-08-01 04:58 EDT (History)
11 users (show)

See Also:
Fixed In Version: sssd-1.15.0-1.el7
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2017-08-01 04:58:07 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Jakub Hrozek 2016-01-11 10:15:24 EST
This bug is created as a clone of upstream ticket:

This came up during an IRC discussion with Sumit as a cheap way to proceed towards fixing ticket #2707.

If we drop 'enable_only = sssd' from localauth_plugin. Then the krb5 default should be used after the SSSD plugin does not give a definitive result.
Comment 2 Jakub Hrozek 2016-01-27 10:03:07 EST
Upstream ticket:
Comment 4 Jakub Hrozek 2016-07-01 10:20:20 EDT
We already did some improvements to the localauth plugin logic, this ticket is an incremental improvement planned for the next version
Comment 5 Jakub Hrozek 2016-11-14 05:57:01 EST
master: 2658ad37cd04f211aa28b1d71acb27c4edfb03da
Comment 7 shridhar 2017-05-26 04:24:11 EDT
pls share the steps to verify this bugzilla?
Comment 8 Sumit Bose 2017-05-26 05:31:26 EDT
Just check if there is no line 'enable_only=sssd' in /var/lib/sss/pubconf/krb5.include.d/localauth_plugin.

Then content should just look like

 localauth = {
  module = sssd:/usr/lib/sssd/modules/sssd_krb5_localauth_plugin.so

or ../lib64/.. depending on the platform


Comment 9 shridhar 2017-05-26 06:05:16 EDT
Verified with 
r7-permanent ~]# rpm -q sssd 

[root@shr-r7-permanent ~]# cat /var/lib/sss/pubconf/krb5.include.d/localauth_plugin
 localauth = {
  module = sssd:/usr/lib64/sssd/modules/sssd_krb5_localauth_plugin.so
Comment 10 errata-xmlrpc 2017-08-01 04:58:07 EDT
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.


Note You need to log in before you can comment on or make changes to this bug.