Skip to content

sssd, kerberos,AD mixed case login names

For reasons unknown, any mixed case letter login (for example JamesBond) is no longer allowed access to a LINUX host. Yes, it used to work, but now it does not. In the past this issue was dealt with the presence of the following entry in the /etc/sssd/sssd.conf file:

case_sensitive = False

Today, someone discovered that if this line is removed the ability for the mixed case logins returns!

Ansible to the rescue!

A new group (named scom) containing the appropriate hosts is entered into the file /etc/ansible/hosts and followed with this two “statements”

# ansible -a "sed -i -e '/case_sensitive = False/d' /etc/sssd/sssd.conf" scom

# ansible -a "service sssd restart" scom

A few hours of work compressed into a minute or two – thanks Ansible!

Posted in LINUX.

Tagged with , , , , , , .

0 Responses

Stay in touch with the conversation, subscribe to the RSS feed for comments on this post.

Some HTML is OK

or, reply to this post via trackback.

WordPress Anti Spam by WP-SpamShield

Copyright © 2016 - 2018 Waldemar Mark Duszyk. All Rights Reserved. Created by Blog Copyright.