#1257 Unable to bind to IPA server when minssf set

Created 5 years ago by sgallagh
Modified 4 months ago

https://bugzilla.redhat.com/show_bug.cgi?id=803436 (Fedora)

Description of problem:
I changed the configuration of my IPA server and set minssf to 56, as is
documented n the IPA guide. All my RHEL based systems continue to function. But
my one fedora desktop is now unable to bind to the server, and as such is not
getting any updated information.

From the logs:
Unexpected result from ldap: Server is unwilling to perform(53), Minimum SSF
not met.


Version-Release number of selected component (if applicable):
sssd-1.8.0-6.fc16.x86_64

How reproducible:
set minssf on server, watch sssd fail to bind. Frankly with all the caching
that goes on I wouldn't have even noticed that it wasn't working except for a
password change that arose after minssf was set.

As I said this continues to work fine in RHEL 5 and 6, so chances are this is
something new or a bugfix that wasn't forward ported.

-Erinn

Fields changed

blockedby: =>
blocking: =>
coverity: =>
feature_milestone: =>
owner: somebody => sgallagh
patch: 0 => 1
status: new => assigned
tests: => 0
testsupdated: => 0
upgrade: => 0

Fixed by:
- f65143669a49b8394dbd99a2215392a36e7aef7a (master)
- f28ab6e572445cb9c12ba23c328d4424eebeecb5 (sssd-1-8)

resolution: => fixed
status: assigned => closed

4 months ago

Metadata Update from @sgallagh:
- Issue assigned to sgallagh
- Issue set to the milestone: SSSD 1.8.2 (LTM)

Login to comment on this ticket.

defect

LDAP Provider

1.8.1

0

1

https://bugzilla.redhat.com/show_bug.cgi?id=803436

cancel