Red Hat Bugzilla – Bug 591131
Kerberos provider needs to rewrite kdcinfo file when going online
Last modified: 2015-01-04 18:42:16 EST
Description of problem:
The ability to write the kdcinfo file with a default (unreachable) IP address when the KDC can't be reached at startup was recently implemented.
However, the side-effect of this is that the KDC can thereafter not be reached by any application seeking to use it until an SSSD-provided kerberos login is performed.
We should add an online callback to forcibly invoke be_resolve_server_send() to ensure that this file gets rewritten as soon as we are online.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
This request was evaluated by Red Hat Product Management for inclusion in a Red
Hat Enterprise Linux major release. Product Management has requested further
review of this request by Red Hat Engineering, for potential inclusion in a Red
Hat Enterprise Linux Major release. This request is not yet committed for
/var/lib/sss/pubconf/kdcinfo.REALM file gets removed and re-created successfully as soon as SSSD is restarted.
Verified. Version sssd-1.2.1-21.
Red Hat Enterprise Linux 6.0 is now available and should resolve
the problem described in this bug report. This report is therefore being closed
with a resolution of CURRENTRELEASE. You may reopen this bug report if the
solution does not work for you.