[Freeipa-users] Slow ipa performance -- why so many ldap lookups ?
Dmitri Pal
dpal at redhat.com
Fri Apr 5 12:19:21 UTC 2013
On 04/05/2013 08:00 AM, Jan-Frode Myklebust wrote:
> On Fri, Mar 22, 2013 at 06:43:07PM +0100, Jan-Frode Myklebust wrote:
>>> Does the problem go away if you set:
>>> selinux_provider = none
> Sorry, no. Also the "No SELinux user maps found!" didn't go away.
>
> At "Apr 5 13:46:22" I was denied access again by pam_access, and then
> seconds later I could log in:
>
> Apr 5 13:46:22 ipa2 sshd[15417]: pam_access(sshd:account): access denied for user `janfrode' from `login2.example.com'
> Apr 5 13:46:29 ipa2 sshd[15423]: pam_unix(sshd:session): session opened for user janfrode by (uid=0)
> Apr 5 13:46:33 ipa2 su: pam_unix(su-l:session): session opened for user root by janfrode(uid=15019)
>
> debug=6 logs attached. Any other suggestions?
SELinux seems to be OK but the log definitely showing that not all users
are successfully stored in a group.
>
> -jf
>
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
--
Thank you,
Dmitri Pal
Sr. Engineering Manager for IdM portfolio
Red Hat Inc.
-------------------------------
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20130405/d3a35ef7/attachment.htm>
More information about the Freeipa-users
mailing list