You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I am investigating an ongoing issue. We are working with vendor support also, but we have still not been able to find a solution.
SSSD Version: 2.9.4 OS: RHEL 7/8/9
SSSD is connected upstream to a RedHat IdM (FreeIPA) cluster.
There seems to be two related issues.
SSSD is being killed by watchdog. We think external load from backups is causing this to happen, but it is still unclear for certain.
SSSD is not restarted after being killed by Watchdog.
When this happens users become unable to login via SSH. We have tried the following to resolve the issue, but we continue to see SSSD get killed by Watchdog without being restarted.
Upgrading SSSD to latest version available to RHEL.
Increasing SSSD timeout.
Adding 'Restart=on-failure' to the SSSD systemd unit.
Looking for selinux alerts and setting selinux to permissive.
Disabling third party security services.
Validating the configs.
Reviewing relevant logs.
As a temporary fix we added a cron job to restart the service, but this does not work reliably. I can collect logs, or configs, at request to further this investigation. I am seeking feedback regarding known issues or ways I may continue to look for root cause.
Thank you in advance.
The text was updated successfully, but these errors were encountered:
Enable 'debug_level = 9' in all relevant section of 'sssd.conf' (main '[sssd]' section and components that are being terminated by a watchdog).
Then inspect the logs to figure out what happens around "Child [...] (...) was terminated by own WATCHDOG" message in the sssd.log
Both to understand what the component was blocked on and why did it fail to restart.
We've already tried adding the "timeout" option to EVERY section including the main SSSD section. No value whatsoever in examining the logs or rectifying the problem.
I am investigating an ongoing issue. We are working with vendor support also, but we have still not been able to find a solution.
SSSD Version: 2.9.4
OS: RHEL 7/8/9
SSSD is connected upstream to a RedHat IdM (FreeIPA) cluster.
There seems to be two related issues.
When this happens users become unable to login via SSH. We have tried the following to resolve the issue, but we continue to see SSSD get killed by Watchdog without being restarted.
As a temporary fix we added a cron job to restart the service, but this does not work reliably. I can collect logs, or configs, at request to further this investigation. I am seeking feedback regarding known issues or ways I may continue to look for root cause.
Thank you in advance.
The text was updated successfully, but these errors were encountered: