+++ This bug was initially created as a clone of Bug #2176378 +++

Description of problem:
- Activating Session Recording disables IPA/IDM access

Version-Release number of selected component (if applicable):
- RHEL 8.7
- cockpit-session-recording-12-1.el8.noarch


How reproducible:


Steps to Reproduce:
1. enable IPA/IDM login on a client
2. Install cockpit-session-recording: yum install cockpit-session-recording
   No file /etc/sssd/conf.d/sssd-session-recording.conf is created by default
3. Go to Cockpit web page and select
4. Set the SSSD Config to Scope = All
5. Save configuration
   The file /etc/sssd/conf.d/sssd-session-recording.conf is then created:

   ------------------------
   [sssd]
   enable_files_domain=true
   services=nss

   [session_recording]
   scope=all
   exclude_users=
   exclude_groups=
   ------------------------

6. After that the IPA/IDM login fails

Actual results:
- The IPA/IDM login fails

Expected results:
- IPA/IDM login should be possible after activating cockpit-session-recording


Root Cause Analysis:
Due to the override for "services" in The file /etc/sssd/conf.d/sssd-session-recording.conf
the IPA/IDM access is disabled.

The default /etc/sssd/sssd.conf file sets the services to
   services = nss, pam, ssh, sudo


Workaround:
Remove the line "services=nss" from /etc/sssd/conf.d/sssd-session-recording.conf