SSSD code 1: could not resolve domain of Active Directory

activedirectory

(Gabor) #1

I have luckily the same error suddenly today: Account provider generic error: SSSD exit code 1, and noone is able to login to SOGo, Nextcloud etc…
I did not touch the server the past few weeks in regards of updates.
Could someone please tell me what the solution here was?
I looked also at the post SSSD ldap error: Cannot contact any KDC but it is unclear to me what has to be done to fix the issue.
Do I have to delete the file /var/lib/machines/nsdc/var/lib/samba/private/krb5.conf and then run a config restore?


Account provider generic error: SSSD exit code 1
(Gabor) #2

Those errors are in message logs:

Jun 11 23:40:17 core sssd: tkey query failed: GSSAPI error: Major = Unspecified GSS failure. Minor code may provide more information, Minor = Server not found in Kerberos database.

Jun 12 01:03:55 core httpd: [ERROR] NethServer\Tool\GroupProvider: Account provider generic error: SSSD exit code 1
Jun 12 01:03:55 core httpd: [ERROR] Could not resolve domain ad.domannamehere.com Jun 12 01:04:00 core admin-todos: [ERROR] admin-todos: /etc/nethserver/todos.d/20ad_credentials exit code 31744


(Davide Principi) #3

@hector had a similar problem in the past days: Samba is not working (SSSD accountsprovider error)

We tried to troubleshoot it. You can find some commands to gather more info: please have a look at it and ask for any doubt!

Your error is different


(Gabor) #4

Thanks everyone for the good tips.
There seems to be a ghost in my server, cause the issue disappeared without me doing anything at all, apart from rebooting few times yesterday evening.
Anyhow, if it comes back, I know what steps to try and post the results here.


(Davide Principi) #5

A reboot is recommended by upstream release notes. Why did you say “few times”? One is not enough?


(Gabor) #6

Hope is last to die. After rebooting the first time nothing changed, nor did it after the 3rd, but…


(Davide Principi) #7

Can you give more info about your installation?

Please attach the output of

yum history pkg-info nethserver-dc
last -50

(Gabor) #8

sure
output of yum history pkg-info nethserver-dc:

Loaded plugins: changelog, fastestmirror, nethserver_events
Transaction ID : 16
Begin time     : Tue May 29 12:59:58 2018
Package        : nethserver-dc-1.5.0-1.ns7.x86_64
State          : Updated
Size           : 14,584,075
Build host     : b41.nethserver.org
Build time     : Thu Apr 26 14:26:52 2018
License        : GPLv3+
URL            : http://github.com/NethServer/nethserver-dc
Source RPM     : nethserver-dc-1.5.0-1.ns7.src.rpm                                                                                                                      
Commit Time    : Thu Apr 26 13:00:00 2018                                                                                                                               
Committer      : Davide Principi <davide.principi@nethesis.it>                                                                                                          
Reason         : user                                                                                                                                                   
From repo      : nethserver-updates                                                                                                                                     
Installed by   : System <unset>                                                                                                                                         
                                                                                                                                                                        
Transaction ID : 16                                                                                                                                                     
Begin time     : Tue May 29 12:59:58 2018                                                                                                                               
Package        : nethserver-dc-1.5.1-1.ns7.x86_64                                                                                                                       
State          : Update                                                                                                                                                 
Size           : 14,584,402                                                                                                                                             
Build host     : b47.nethserver.org                                                                                                                                     
Build time     : Tue May 15 17:01:48 2018                                                                                                                               
License        : GPLv3+                                                                                                                                                 
URL            : http://github.com/NethServer/nethserver-dc
Source RPM     : nethserver-dc-1.5.1-1.ns7.src.rpm
Commit Time    : Tue May 15 13:00:00 2018
Committer      : Davide Principi <davide.principi@nethesis.it>
Reason         : user
From repo      : nethserver-base
Installed by   : System <unset>
Changed by     : System <unset>

Transaction ID : 3
Begin time     : Sat May 12 14:52:37 2018
Package        : nethserver-dc-1.5.0-1.ns7.x86_64
State          : Install
Size           : 14,584,075
Build host     : b41.nethserver.org
Build time     : Thu Apr 26 14:26:52 2018
License        : GPLv3+
URL            : http://github.com/NethServer/nethserver-dc
Source RPM     : nethserver-dc-1.5.0-1.ns7.src.rpm
Commit Time    : Thu Apr 26 13:00:00 2018
Committer      : Davide Principi <davide.principi@nethesis.it>
Reason         : user
From repo      : nethserver-updates
Installed by   : System <unset>
history pkg-info

output of last -50:

root     pts/0        pc.............. Tue Jun 12 22:02   still logged in   
root     pts/0        pc.............. Tue Jun 12 21:59 - 22:02  (00:02)    
reboot   system boot  3.10.0-862.3.2.e Tue Jun 12 02:32 - 22:05  (19:33)    
reboot   system boot  3.10.0-862.3.2.e Tue Jun 12 02:01 - 01:32  (00:-29)   
reboot   system boot  3.10.0-862.3.2.e Tue Jun 12 01:51 - 01:32  (00:-19)   
root     pts/0        192.168.1.222    Tue Jun 12 00:49 - down   (00:01)    
reboot   system boot  3.10.0-862.3.2.e Tue Jun 12 01:41 - 00:50  (00:-50)   
root     pts/0        192.168.1.222    Tue Jun 12 00:17 - 00:36  (00:18)    
reboot   system boot  3.10.0-862.3.2.e Tue Jun 12 00:50 - 00:40  (00:-9)    
reboot   system boot  3.10.0-862.3.2.e Tue Jun 12 00:48 - 00:40  (00:-7)    
reboot   system boot  3.10.0-862.3.2.e Tue Jun 12 00:38 - 00:40  (00:02)    
root     pts/0        pc.............. Thu May 24 10:17 - 00:08  (13:51)    
root     pts/0        192.168.1.222    Mon May 21 23:35 - 02:47  (03:11)    
root     pts/0        pc.............. Sun May 20 02:19 - 02:34  (00:14)    
root     pts/0        pc.............. Tue May 15 02:51 - 03:06  (00:15)    
root     pts/0        pc.............. Tue May 15 00:10 - 02:36  (02:25)    
reboot   system boot  3.10.0-862.2.3.e Mon May 14 23:27 - 00:40 (28+01:13)  
reboot   system boot  3.10.0-862.2.3.e Mon May 14 23:20 - 00:40 (28+01:20)  
root     pts/0        pc.............. Mon May 14 21:33 - 21:41  (00:08)    
root     pts/0        pc.............. Mon May 14 19:19 - 20:01  (00:41)    
root     pts/0        pc.............. Mon May 14 14:34 - 17:07  (02:32)    
root     pts/0        pc.............. Mon May 14 12:47 - 12:49  (00:01)    
reboot   system boot  3.10.0-862.2.3.e Mon May 14 00:32 - 21:42  (21:09)    
root     pts/0        pc.............. Sun May 13 01:57 - 12:07  (10:09)    
reboot   system boot  3.10.0-862.2.3.e Sun May 13 01:50 - 12:47  (10:56)    
reboot   system boot  3.10.0-862.2.3.e Sun May 13 01:29 - 00:49  (00:-39)   
root     pts/0        pc.............. Sat May 12 23:51 - 00:04  (00:13)    
reboot   system boot  3.10.0-862.2.3.e Sun May 13 00:46 - 00:49  (00:03)    
reboot   system boot  3.10.0-862.2.3.e Sat May 12 15:45 - 00:49  (09:04)    
reboot   system boot  3.10.0-693.el7.x Sat May 12 14:18 - 00:49  (10:31)