You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
and everything works fine until we put a main.com user into [email protected]: the first user's login attempt fails, the subsequent ones are ok. If we wait some minutes (a cache expiring?), again: the first login fails, the subsequents are ok.
IMHO the above is a straightforward cross-forest group memberships case, I understood that sssd will not handle it but.. why does it works after the first failure? I expected to have no login at all, I dunno if some odd parameters (eg. a timeout) may solve my issue.
thanks and regards,
Fabrizio
The text was updated successfully, but these errors were encountered:
fdalfa
changed the title
Cross-forest trust - not s
Cross-forest trust - not supported but partially working?
Feb 13, 2025
Hello,
I know that cross-forest trust is declared as not supported but.. our environment is similar to #7544 and #6843: we have
we have then some linux machines with sssd configured for direct ad integration on sub.main.com forest and GPO access control; the GPO declares
and everything works fine until we put a main.com user into [email protected]: the first user's login attempt fails, the subsequent ones are ok. If we wait some minutes (a cache expiring?), again: the first login fails, the subsequents are ok.
IMHO the above is a straightforward cross-forest group memberships case, I understood that sssd will not handle it but.. why does it works after the first failure? I expected to have no login at all, I dunno if some odd parameters (eg. a timeout) may solve my issue.
thanks and regards,
Fabrizio
The text was updated successfully, but these errors were encountered: