LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 04-05-2019, 04:50 PM   #1
jonos
LQ Newbie
 
Registered: Apr 2019
Posts: 2

Rep: Reputation: Disabled
oddjob/mkhomedir not creating home directory for AD users


Hello everyone,

I've joined one Centos 7 machine on domain controller (2016 R2) sometime ago via realmd. I've noticed today that system isn't able to create home directories for AD users. For example:

Code:
[PRODUCTION root@ATPROXY01:~]su - test
Creating home directory for test@example.com.
Last login: Fri Apr  5 20:58:19 CEST 2019 on pts/0
su: warning: cannot change directory to /home/test@example.com: No such file or directory
[PRODUCTION test@example.com@ATPROXY01:root]
My best guess is that pam_oddjob_mkhomedir.so is causing the issue, but I'm not able to figure it why. Permitted users are able to log in and they are reachable with commands such id/getent. sssd logs aren't report anything wrong. I have few configuration files in pam.d that uses
Code:
session     optional      pam_oddjob_mkhomedir.so umask=0077
line. I've compared this files with files on other working host that are basically using same configuration, and they are all the same. I've made a full Centos 7 update just for sanity, but nothing has changed. I also tried with authconfig (enablemkhomedir), but everything is the same. I've also tried to with cleared sssd cache.


sssd.conf
Code:
[sssd]
domains = example.com
config_file_version = 2
services = nss, pam
default_domain_suffix = example.com

[pam]


[domain/example.com]
ad_domain = example.com
krb5_realm = EXAMPLE.COM
realmd_tags = manages-system joined-with-samba
cache_credentials = True
id_provider = ad
krb5_store_password_if_offline = True
default_shell = /bin/bash
ldap_id_mapping = True
use_fully_qualified_names = True
fallback_homedir = /home/%u@%d
access_provider = ad
I've found similar treads on internet but they are not working for me, they are either to old or not applicable for my situation. Google led me also to Red Hat support page with similar topic, but I'm not able to read since I don't have subscription But for what I can see, that started elaboration on issue with "The systems are configured properly, however pam_oddjob_mkhomedir is failing to create the home directories due to a lack of information on AD side"

I'm not sure what is left for me to debug.

Can you help me please?

Thanks,
Bojan
 
Old 04-08-2019, 06:18 AM   #2
jonos
LQ Newbie
 
Registered: Apr 2019
Posts: 2

Original Poster
Rep: Reputation: Disabled
I figured out. There was an entry in /misc/auto.home that was trying to mount home directories on nfs server which doesn't exist anymore

Thanks anyway!
B.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
oddjob selinux policy for subfolder /n/home vs /home Devyn Linux - Security 4 09-24-2015 12:00 PM
problem in installing oddjob package ushasharma84 Linux - Enterprise 4 03-20-2012 03:34 PM
Creating home directories with samba and PAM mkhomedir ferrantepunto Linux - Software 2 01-21-2004 10:13 AM
mkhomedir???? datalord7 Linux - Software 1 01-21-2004 08:42 AM
mkhomedir driving me mad :-( datalord7 Linux - Newbie 2 01-21-2004 08:09 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 07:53 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration