1. Run sssd as "/usr/sbin/sssd -i -f -d9". 2. Relevant sssd.conf domain section: [domain/default] debug_level = 9 id_provider = ldap ldap_uri = ldap://cobra.lab.eng.pnq.redhat.com ldap_search_base = dc=example,dc=com #auth_provider = ldap #ldap_tls_cacert = /etc/openldap/cacerts/cacert.asc auth_provider = krb5 krb5_server = cobra.lab.eng.pnq.redhat.com krb5_realm = EXAMPLE.COM krb5_lifetime = 120 krb5_renew_interval = 10 krb5_renewable_lifetime = 150m krb5_ccname_template = FILE:%d/krb5cc_%u krb5_ccachedir = /tmp/krb5_cache 3. Auth as a kerberos user. Result: No crash seen. TGT renewals are successful. Verified in version: # rpm -qi sssd | head Name : sssd Relocations: (not relocatable) Version : 1.5.1 Vendor: Red Hat, Inc. Release : 34.el5 Build Date: Tue 03 May 2011 10:46:07 PM IST Install Date: Tue 10 May 2011 01:20:13 AM IST Build Host: x86-003.build.bos.redhat.com Group : Applications/System Source RPM: sssd-1.5.1-34.el5.src.rpm Size : 3486753 License: GPLv3+ Signature : (none) Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla> URL : http://fedorahosted.org/sssd/ Summary : System Security Services Daemon
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2011-0975.html