Hi Jakub,
Thanks for your time and tips about sssd cache! I did the test and let me explain what I got: - After step 4 I can see dataExpireTimestamp to 1 for the user. - After step 7 dataExpireTimestamp is back to 0 but the user data have not changed. The first line after the command ldbsearch is: asq: Unable to register control with rootdse! Is it a problem? We are not using nscd service. Please let me know if you need to do some other tests. Thanks in advance! On 09/04/2013 10:31 AM, Jakub Hrozek wrote: > On Wed, Sep 04, 2013 at 10:18:13AM -0500, [email protected] wrote: >> Hi Chris, >> >> Thanks for your reply!....I forgot to mention that we tried sss_cache >> (sss_cache -u user_id and sss_cache -U) in other RH6 ipa client and it >> did not work...If we delete manually all /var/lib/sss/db we can see the >> change but it is not going to be a nice solution. > This sounds really strange. Can you run a little experiment for me? > > Can you install the ldb-tools package and then run: > > 1) getent passwd $username > 2) ldbsearch -H /var/lib/sss/db/cache_$domain.ldb name=$username > 3) modify the entry > 4) sss_cache -U > 5) ldbsearch -H /var/lib/sss/db/cache_$domain.ldb name=$username > 6) getent passwd $username > 7) ldbsearch -H /var/lib/sss/db/cache_$domain.ldb name=$username > > after you run 2) you should see how the entry looks in the cache with > the old attributes. After running 5) you should see the same attributes, > except for dataExpireTimestamp that should be set to "1". > > After running 6), getent should yield the updated data and 7) should reflect > > _______________________________________________ > Freeipa-users mailing list > [email protected] > https://www.redhat.com/mailman/listinfo/freeipa-users _______________________________________________ Freeipa-users mailing list [email protected] https://www.redhat.com/mailman/listinfo/freeipa-users
