Sssd cache

From UVOO Tech Wiki
Revision as of 16:46, 27 July 2022 by Busk (talk | contribs)
Jump to navigation Jump to search

https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/deployment_guide/sssd-cache 

Most commonly, this is used to clear the cache and update all records:
~]# sss_cache -E
The sss_cache command can also clear all cached entries for a particular domain:
~]# sss_cache -Ed LDAP1
If the administrator knows that a specific record (user, group, or netgroup) has been updated, then sss_cache can purge the records for that specific account and leave the rest of the cache intact:
~]# sss_cache -u jsmith

https://pagure.io/SSSD/sssd/issue/3886 

SSS_NSS_USE_MEMCACHE=NO

https://access.redhat.com/discussions/3352911

https://serverfault.com/questions/506507/sssd-and-ldap-authentication-cache#:~:text=You%20can't%20disable%20caching,if%20that's%20what%20you%20want. 

You can't disable caching completely with sssd.

You can disable sss as an authentication provider completely and just query LDAP directly if that's what you want.

For example, in /etc/nsswitch.conf, change lines like:

passwd:     files sss
to

passwd:     files ldap
Retrieved from "https://tech.uvoo.io/index.php?title=Sssd_cache&oldid=3301"