Learn more about these different git repos.
Other Git URLs
In the following scenario:
- user is not logged in, but had logged in some time ago - user tries to log in with ssh - user's password is expired and needs to be renewed
sssd cannot switch to a new ccache file with a random name during the change password task because due to the privilege separation in sshd there is a sshd process running with the UID of the user.
To force sssd to use a new ccache file with a random name the authentication task can remove the current ccache file from disk and from the cache if the krb5_child returns PAM_NEW_AUTHTOK_REQD.
Fields changed
description: In the following scenario:
To force sssd to use a new ccache file with a random name the authentication task can remove the current ccache file from disk and from the cache if the krb5_child returns PAM_NEW_AUTHTOK_REQD. => In the following scenario:
Related ticket https://bugzilla.redhat.com/show_bug.cgi?id=711416
milestone: NEEDS_TRIAGE => SSSD 1.6.0
patch: 0 => 1
Fixed by 00b53b9
resolution: => fixed status: new => closed
Backported to sssd-1-5
8ab03b3
milestone: SSSD 1.6.0 => SSSD 1.5.9 rhbz: =>
rhbz: => 0
Metadata Update from @sbose: - Issue assigned to sbose - Issue set to the milestone: SSSD 1.5.9
SSSD is moving from Pagure to Github. This means that new issues and pull requests will be accepted only in SSSD's github repository.
This issue has been cloned to Github and is available here: - https://github.com/SSSD/sssd/issues/1930
If you want to receive further updates on the issue, please navigate to the github issue and click on subscribe button.
subscribe
Thank you for understanding. We apologize for all inconvenience.
Login to comment on this ticket.