#2938 Cannot start sssd after switching to non-root
Closed: Fixed None Opened 3 years ago by lslebodn.

Reproducer:

  • enable logging to files (and not to journald)
  • start sssd as root ("user = root" in "[sssd]" section of sssd.conf
  • start sssd as non-root ("user = sssd" in "[sssd]" section of sssd.conf

sh# service sssd start
Redirecting to /bin/systemctl start  sssd.service

Message from syslogd@hp-dl2x170g6-01 at Jan 25 04:54:44 ...
 sssd[nss]:Could not open file [/var/log/sssd/sssd_nss.log]. Error: [13][Permission denied]

Message from syslogd@hp-dl2x170g6-01 at Jan 25 04:54:44 ...
 sssd[pam]:Could not open file [/var/log/sssd/sssd_pam.log]. Error: [13][Permission denied]

Message from syslogd@hp-dl2x170g6-01 at Jan 25 04:54:44 ...
 sssd[nss]:Could not open file [/var/log/sssd/sssd_nss.log]. Error: [13][Permission denied]

Message from syslogd@hp-dl2x170g6-01 at Jan 25 04:54:44 ...
 sssd[pam]:Could not open file [/var/log/sssd/sssd_pam.log]. Error: [13][Permission denied]

Message from syslogd@hp-dl2x170g6-01 at Jan 25 04:54:46 ...
 sssd[nss]:Could not open file [/var/log/sssd/sssd_nss.log]. Error: [13][Permission denied]

Message from syslogd@hp-dl2x170g6-01 at Jan 25 04:54:46 ...
 sssd[pam]:Could not open file [/var/log/sssd/sssd_pam.log]. Error: [13][Permission denied]

Message from syslogd@hp-dl2x170g6-01 at Jan 25 04:54:50 ...
 sssd[nss]:Could not open file [/var/log/sssd/sssd_nss.log]. Error: [13][Permission denied]

Message from syslogd@hp-dl2x170g6-01 at Jan 25 04:54:50 ...
 sssd[pam]:Could not open file [/var/log/sssd/sssd_pam.log]. Error: [13][Permission denied]
Job for sssd.service failed because the control process exited with error code. See "systemctl status sssd.service" and "journalctl -xe" for details.

Fields changed

owner: somebody => lslebodn
patch: 0 => 1
status: new => assigned

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.13.4

resolution: => fixed
status: assigned => closed

Metadata Update from @lslebodn:
- Issue assigned to lslebodn
- Issue set to the milestone: SSSD 1.13.4

2 years ago

Login to comment on this ticket.

Metadata