Package sssd

Source package: sssd
Version: 2.6.3-alt1
Build time:  Feb 25, 2022, 01:45 PM
Category: System/Servers
Report package bug
License:  GPLv3+
Summary:  System Security Services Daemon
Provides a set of daemons to manage access to remote directories and
authentication mechanisms. It provides an NSS and PAM interface toward
the system and a pluggable backend system to connect to multiple different
account sources. It is also the basis to provide client auditing and policy
services for projects like FreeIPA.

The sssd subpackage is a meta-package that contains the deamon as well as all
the existing back ends.
List of rpms provided by this srpm: 
libipa_hbac (e2kv5, e2kv4, e2k)
libipa_hbac-debuginfo (e2kv5, e2kv4, e2k)
libipa_hbac-devel (e2kv5, e2kv4, e2k)
libsss_autofs (e2kv5, e2kv4, e2k)
libsss_autofs-debuginfo (e2kv5, e2kv4, e2k)
libsss_certmap (e2kv5, e2kv4, e2k)
libsss_certmap-debuginfo (e2kv5, e2kv4, e2k)
libsss_certmap-devel (e2kv5, e2kv4, e2k)
libsss_idmap (e2kv5, e2kv4, e2k)
libsss_idmap-debuginfo (e2kv5, e2kv4, e2k)
libsss_idmap-devel (e2kv5, e2kv4, e2k)
libsss_nss_idmap (e2kv5, e2kv4, e2k)
libsss_nss_idmap-debuginfo (e2kv5, e2kv4, e2k)
libsss_nss_idmap-devel (e2kv5, e2kv4, e2k)
libsss_simpleifp (e2kv5, e2kv4, e2k)
libsss_simpleifp-debuginfo (e2kv5, e2kv4, e2k)
libsss_simpleifp-devel (e2kv5, e2kv4, e2k)
libsss_sudo (e2kv5, e2kv4, e2k)
libsss_sudo-debuginfo (e2kv5, e2kv4, e2k)
python3-module-ipa_hbac (e2kv5, e2kv4, e2k)
python3-module-ipa_hbac-debuginfo (e2kv5, e2kv4, e2k)
python3-module-sss (e2kv5, e2kv4, e2k)
python3-module-sss-debuginfo (e2kv5, e2kv4, e2k)
python3-module-sss-murmur (e2kv5, e2kv4, e2k)
python3-module-sss-murmur-debuginfo (e2kv5, e2kv4, e2k)
python3-module-sss_nss_idmap (e2kv5, e2kv4, e2k)
python3-module-sss_nss_idmap-debuginfo (e2kv5, e2kv4, e2k)
python3-module-sssd (e2kv5, e2kv4, e2k)
python3-module-sssdconfig (noarch)
sssd (e2kv5, e2kv4, e2k)
sssd-ad (e2kv5, e2kv4, e2k)
sssd-ad-debuginfo (e2kv5, e2kv4, e2k)
sssd-client (e2kv5, e2kv4, e2k)
sssd-client-debuginfo (e2kv5, e2kv4, e2k)
sssd-dbus (e2kv5, e2kv4, e2k)
sssd-dbus-debuginfo (e2kv5, e2kv4, e2k)
sssd-debuginfo (e2kv5, e2kv4, e2k)
sssd-ipa (e2kv5, e2kv4, e2k)
sssd-ipa-debuginfo (e2kv5, e2kv4, e2k)
sssd-kcm (e2kv5, e2kv4, e2k)
sssd-kcm-debuginfo (e2kv5, e2kv4, e2k)
sssd-krb5 (e2kv5, e2kv4, e2k)
sssd-krb5-common (e2kv5, e2kv4, e2k)
sssd-krb5-common-debuginfo (e2kv5, e2kv4, e2k)
sssd-krb5-debuginfo (e2kv5, e2kv4, e2k)
sssd-ldap (e2kv5, e2kv4, e2k)
sssd-ldap-debuginfo (e2kv5, e2kv4, e2k)
sssd-nfs-idmap (e2kv5, e2kv4, e2k)
sssd-nfs-idmap-debuginfo (e2kv5, e2kv4, e2k)
sssd-pac (e2kv5, e2kv4, e2k)
sssd-pac-debuginfo (e2kv5, e2kv4, e2k)
sssd-proxy (e2kv5, e2kv4, e2k)
sssd-proxy-debuginfo (e2kv5, e2kv4, e2k)
sssd-tools (e2kv5, e2kv4, e2k)
sssd-tools-debuginfo (e2kv5, e2kv4, e2k)
sssd-winbind-idmap (e2kv5, e2kv4, e2k)
sssd-winbind-idmap-debuginfo (e2kv5, e2kv4, e2k)
Last changes:
Jan. 27, 2022 Evgeny Sinelnikov 2.6.3-alt1
- AD Domain in the AD Forest Missing after sssd latest update
- sdap_idmap.c/sssd_idmap.c incorrectly calculates rangesize from upper/lower
- Regression on rawhide with ssh auth using password
- sssd-ad broken in 2.6.2, 389 used as kerberos port
- sssd error triggers backtrace: write_krb5info_file_from_fo_server
Jan. 12, 2022 Evgeny Sinelnikov 2.6.2-alt1
- Update to latest release:
  + Lookup with fully-qualified name does not work with cache_first is True.
  + sssd_be segfault due to empty forest root name.
  + Groups are missing while performing id lookup as SSSD switching to offline
    mode due to the wrong domain name in the ldap-pings(netlogon).
  + LDAP sp_expire policy does not match other libraries.
  + Passwordless (GSSAPI) SSH not working due to missing
    includedir  /var/lib/sss/pubconf/krb5.include.d directive in /etc/krb5.conf.
  + pam responder does not call initgroups to refresh the user entry.
  + FindByValidCertificate() treats unconfigured CA as Invalid certificate provide.
  + sssd does not use kerberos port that is set.
Dec. 13, 2021 Evgeny Sinelnikov 2.6.1-alt3
- Update with latest libldb-2.3.2-alt2 fixes.
- Backport newest fixes from upstream:
  + utils: ignore systemd and sd-pam process in get_active_uid_linux()
  + cldap: use dns_resolver_server_timeout timeout for cldap ping
  + ad: only send cldap-ping to our local domain
  + ad: make ad_srv_plugin_ctx_switch_site() public
  + ad: use already discovered forest name

Back to Top