[CentOS] LDAP / NSCD shadow caching problem

Fri Jul 16 00:11:49 UTC 2010
Gordon Messmer <yinyang at eburg.com>

On 07/15/2010 10:32 AM, Brian Marshall wrote:
> Does the fact that I am testing without SSL, TLS or Kerberos enabled
> have any effect on this?

No, it doesn't.

> I'm grasping at straws at this point. I'm starting feel like maybe
> LDAP was not such a great idea since linux clients can't operate in
> the absence of a network if the user doesn't have local
> passwd/group/shadow entries.

Prior to sssd, LDAP was only appropriate for fixed workstations.  This 
is why sssd was written.

> Any other ideas? I'm totally stuck and feel like crying over a beer.
> Maybe I should just go get a beer :-)

I won't tell you not to. :)