I have a Host, which is able to use my AD to authenticate the users.
But when I use a vpn to a customer system, the connection to the AD is no longer available, and after some inactivity, the screensaver activates and prompts me for a password.
The problem now is, that my sssd_cache wont let me authenticate on the Host, and I need to restart my Host.
in the /etc/sssd/sssd.conf the option "cache_credentials" is enabled.
its a ubuntu 22.04 LTS
sssd version is 2.6.3
config:
ad_domain = domain.lanauto_private_groups = Truecache_credentials = Truedefault_shell = /bin/bashdyndns_update = Falseenumerate = Truefallback_homedir = /home/%uid_provider = adkrb5_realm = DOMAIN.LANkrb5_store_password_if_offline = Trueldap_access_order = expireldap_account_expire_policy = adldap_force_upper_case_realm = Trueldap_group_gid_number = gidNumberldap_group_name = sAMAccountNameldap_group_object_class = groupldap_id_mapping = Falseldap_user_fullname = displayNameldap_user_gecos = displayNameldap_user_home_directory = unixHomeDirectoryldap_user_name = sAMAccountNameldap_user_object_class = userldap_user_principal = userPrincipalNameldap_user_shell = loginShelloverride_homedir = /home/%urealmd_tags = manages-system joined-with-adcliuse_fully_qualified_names = Falsethere is no "cachedPassword" attribute in the ldb file
Any ideas why my sssd dont cache the passwords?
connect via vpn to a customer system, use the screensaver function, login again with the cached Password from sssd