Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-18431

Excessive logging to sssd_nss and sssd_be in multi-domain AD forest

XMLWordPrintable

    • sssd-2.9.4-1.el8
    • None
    • Moderate
    • ZStream
    • rhel-sst-idm-sssd
    • ssg_idm
    • 20
    • 21
    • 0
    • Dev ack
    • False
    • Hide

      None

      Show
      None
    • None
    • Red Hat Enterprise Linux
    • None
    • Approved Blocker
    • x86_64
    • None

      What were you trying to do that didn't work?

      After upgrading to RHEL 8.9, SSSD produces thousands of "Unknown domain" messages a minute in the sssd_nss.log & sssd_be.log files. Setting 'debug_level = 0' does not stop the logging.

      The host has a direct AD integration in a multi-domain forest. All of the unknown domains in the logs are excluded from the 'ad_enabled_domains' setting in sssd.conf

      Please provide the package NVR for which bug is seen:

      sssd-2.9.1-4.el8_9.x86_64

      sssd-ad-2.9.1-4.el8_9.x86_64
      sssd-client-2.9.1-4.el8_9.x86_64
      sssd-common-2.9.1-4.el8_9.x86_64
      sssd-common-pac-2.9.1-4.el8_9.x86_64
      sssd-dbus-2.9.1-4.el8_9.x86_64
      sssd-ipa-2.9.1-4.el8_9.x86_64
      sssd-kcm-2.9.1-4.el8_9.x86_64
      sssd-krb5-2.9.1-4.el8_9.x86_64
      sssd-krb5-common-2.9.1-4.el8_9.x86_64
      sssd-ldap-2.9.1-4.el8_9.x86_64
      sssd-nfs-idmap-2.9.1-4.el8_9.x86_64
      sssd-proxy-2.9.1-4.el8_9.x86_64
      sssd-tools-2.9.1-4.el8_9.x86_64

      How reproducible:

      Steps to reproduce

      1.  
      2.  
      3.  

      Expected results

      Actual results

              atikhono@redhat.com Alexey Tikhonov
              rhn-support-rlundgren Runar Lundgren
              SSSD Maintainers SSSD Maintainers
              Shridhar Gadekar Shridhar Gadekar
              Votes:
              1 Vote for this issue
              Watchers:
              16 Start watching this issue

                Created:
                Updated:
                Resolved: